Description
CVE-2020-9493 identified a deserialization issue that was present in Apache Chainsaw. Prior to Chainsaw V2.0 Chainsaw was a component of Apache Log4j 1.2.x where the same issue exists.
Remediation
References
Related Vulnerabilities
WordPress Plugin Product Filter for WooCommerce Security Bypass (8.1.1)
WordPress Plugin Social Share Icons & Social Share Buttons Security Bypass (3.0.2)
WordPress 4.5.x Arbitrary File Deletion Vulnerability (4.5 - 4.5.14)
PHP Other Vulnerability (CVE-2015-6834)
WordPress Plugin Elementor Addon Elements Cross-Site Request Forgery (1.6.3)