CVE-2025-0767 Information

Description

WP Activity Log 5.3.2 was found to be vulnerable. Unvalidated user input is used directly in an unserialize function in myapp/classes/Writers/class-csv-writer.php.

Reference

https://co.wordpress.org/plugins/wp-security-audit-log/ https://fluidattacks.com/advisories/skims-9/