[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fgaElurf96L5L4AJeIpZRxR8tJyQ40zIkRi9mhmJ2Zlg":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2023-4314","wpdatatables-tables-table-charts-authenticatedadministrator-php-object-injection","wpDataTables - Tables & Table Charts \u003C= 2.1.65 - Authenticated(Administrator+) PHP Object Injection","The wpDataTables - Tables & Table Charts plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.1.65 via deserialization of untrusted input in multiple functions. This allows authenticated attackers with administrator capabilities to inject a PHP Object. The additional presence of a POP chain may allow attackers to delete arbitrary files.","wpdatatables",null,"\u003C2.1.66","2.1.66","medium",6.6,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Deserialization of Untrusted Data","2023-08-16 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F0c458644-a799-4bea-abcb-06a946dc19df?source=api-prod",160]