CVE-2025-22510

Currently unrated

Key Information:

Vendor: CVE Published:; 9 January 2025

Badges

👾 Exploit Exists🟡 Public PoC

Summary

Deserialization of Untrusted Data vulnerability in Konrad Karpieszuk WC Price History for Omnibus allows Object Injection.This issue affects WC Price History for Omnibus: from n/a through 2.1.4.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-22510
Created by DoTTak

References

https://patchstack.com/database/wordpress/plugin/wc-price...

Timeline

Vulnerability published
Jan 9, 2025
🟡
Public PoC available
Jan 8, 2025
👾
Exploit known to exist
Jan 8, 2025