CyberRota
← Ana sayfaya dön

CVE-2026-10749

HIGH · CVSS 7.2 EPSS %0.30

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-24T07:16:25.970 · Çekilme zamanı: 2026-06-30T18:30:56.394189+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-10749
Severity
HIGH
CVSS
7.2
EPSS
%0.30
WordPress

Orijinal NVD Açıklaması

The Post Duplicator WordPress plugin before 3.0.15 does not safely handle custom meta-data during post duplication, storing attacker-supplied serialized values without the WordPress meta API's double-serialization protection, allowing users with Contributor-level access and above to inject a PHP Object.