CVE-2025-54007

CWE-502Deserialization of Untrusted Data3 documents3 sources
Severity
N/A
No vector
EPSS
0.1%
top 71.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Pickplugins Post Grid AND Gutenberg Blocks
Timeline
PublishedAug 20

Description

Deserialization of Untrusted Data vulnerability in PickPlugins Post Grid and Gutenberg Blocks post-grid allows Object Injection.This issue affects Post Grid and Gutenberg Blocks: from n/a through <= 2.3.11.

Affected Packages1 packages

🔴Vulnerability Details

2
CVEList
WordPress Post Grid and Gutenberg Blocks Plugin <= 2.3.11 - PHP Object Injection Vulnerability2025-08-20
GHSA
GHSA-4wg9-c8v8-c5qc: Deserialization of Untrusted Data vulnerability in PickPlugins Post Grid and Gutenberg Blocks allows Object Injection2025-08-20
CVE-2025-54007 | Deserialization of Untrusted Data v | cvebase.io