The Revive Old Posts WordPress plugin before 9.0.11 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present.CreditsNguyen Huu DoWPScanReferenceshttps://wpscan.com/vulnerability/f4197386-975d-4e53-8fc9-9425732da9af
