wp-includes/functions.php in WordPress prior to 3.6.1 does not properly determine whether data has been serialized, which allows remote malicious users to execute arbitrary code by triggering erroneous PHP unserialize operations.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wordpress wordpress |