CVE-2023-1549

Published: May 15, 2023Modified: Jun 17, 2026

7.2

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.2 / Impact: 5.9

Source: NVD

Description

The Ad Inserter WordPress plugin before 2.7.27 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present

Affected (1)

Products: Ad Inserter Project: Ad Inserter

Ad Inserter Project

1 product

Ad Inserter

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ad Inserter Project Ad Inserter	Before 2.7.27

References (2)

https://wpscan.com/vulnerability/c94b3a68-673b-44d7-9251-f3590cc5ee9e

Source: contact@wpscan.com

Exploit

https://wpscan.com/vulnerability/c94b3a68-673b-44d7-9251-f3590cc5ee9e

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

Timeline

No history available yet.