CVE Daily

CVE-2025-31422

Deserialization of Untrusted Data vulnerability in designthemes Visual Art | Gal...

High CVSS 8.8

Overview

Deserialization of Untrusted Data vulnerability in designthemes Visual Art | Gallery WordPress Theme allows Object Injection. This issue affects Visual Art | Gallery WordPress Theme: from n/a through 2.4.

CWE: CWE-502 Published: 2025-07-16T12:15:26.010
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 8.8 (HIGH)
  • Detected tags: deserialization, wordpress (tag impact: MODERATE)

Recommended actions:

  • Avoid untrusted deserialization; prefer safe formats (JSON) and signatures.

Recommended tools

Tags