CVE-2023-28782

CVSS V2 None CVSS V3 None
Description
Deserialization of Untrusted Data vulnerability in Rocketgenius Inc. Gravity Forms.This issue affects Gravity Forms: from n/a through 2.7.3.
Overview
  • CVE ID
  • CVE-2023-28782
  • Assigner
  • Patchstack
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-12-20T14:46:58.105Z
  • Last Modified Date
  • 2023-12-20T14:46:58.105Z
Weakness Enumerations
CWE URL
CWE-502 http://cwe.mitre.org/data/definitions/502.html
References
Reference URL Reference Tags
https://patchstack.com/database/vulnerability/gravityforms/wordpress-gravity-forms-plugin-2-7-3-unauthenticated-php-object-injection-vulnerability?_s_id=cve vdb-entry
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2023-28782
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28782
History
Created Old Value New Value Data Type Notes
2024-06-25 10:47:01 Added to TrackCVE