PHP Object Injection Vulnerability in Tiki before 24.2 via TikiImporter Blog WordPress

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Tiki before 24.2 allows lib/importer/tikiimporter_blog_wordpress.php PHP Object Injection by an admin because of an unserialize call.

Learn more about our Wordpress Pen Testing.