CVE-2022-4327 Information

Description

The Anti-Malware Security and Brute-Force Firewall WordPress plugin through 4.21.85 is prone to a PHP Object Injection vulnerability due to the unsafe use of unserialize() function. A potential attacker authenticated as high privilege user could exploit this vulnerability by sending specially crafted requests to the web application containing malicious serialized input.

Reference

https://wpscan.com/vulnerability/2c94e7b6-a9dd-47d4-bb17-20acb072c825