Description b2evolution 6.7.6 suffer from an Object Injection vulnerability in /htsrv/call_plugin.php. Remediation References CVE-2016-8901 Related Vulnerabilities WordPress Plugin Product Catalog for WordPress Unspecified Vulnerability (1.4.5) WordPress Plugin Google Doc Embedder Arbitrary File Disclosure (2.4.6) Ruby on Rails Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2021-22885) Internet Information Services Other Vulnerability (CVE-2001-0004) MySQL CVE-2017-10227 Vulnerability (CVE-2017-10227) Severity Critical Classification CVE-2016-8901 CWE-138 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities