CVE-2021-4451

Name of the Vulnerable Software and Affected Versions NinjaFirewall plugin for WordPress versions up to, and including, 4.3.3

Description The issue allows authenticated attackers to perform phar deserialization on the server, which can enable other plugin or theme exploits if vulnerable software is present, including WordPress and NinjaFirewall.

Recommendations For NinjaFirewall plugin for WordPress versions up to, and including, 4.3.3, update to a version higher than 4.3.3 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.