CVE-2025-23944

Name of the Vulnerable Software and Affected Versions WOOEXIM versions n/a through 5.0.0

Description The issue is related to the deserialization of untrusted data, allowing object injection. This can lead to a deserialization attack, potentially permitting an attacker to inject malicious objects into the system.

Recommendations For versions n/a through 5.0.0, consider disabling object injection functionality until a patch is available. As a temporary workaround, restrict access to potentially vulnerable endpoints to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.