The Formidable Forms WordPress plugin before 6.2 unserializes user input, which could allow anonymous users to perform PHP Object Injection when a suitable gadget is present.CreditsNguyen Huu DoWPScanReferenceshttps://wpscan.com/vulnerability/8c727a31-ff65-4472-8191-b1becc08192a/
