CVE-2023-49777

HIGH WAF: Medium

CVSS 8.8 Published: 2023-12-31

CWE-502

Deserialization of Untrusted Data vulnerability in YITH YITH WooCommerce Product Add-Ons.This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.3.0.

WAF Coverage Analysis

Insecure Deserialization Medium WAF Coverage

OWASP: A08:2021 Software and Data Integrity Failures

944xxx - Java Attack

Affected Software

Vendor	Product	Version
yithemes	yith_woocommerce_product_add-ons	up to 4.3.0

References

patchstack.com (Third Party Advisory)

Back to CVE Database