Description WordPress before 5.5.2 mishandles deserialization requests in wp-includes/Requests/Utility/FilteredIterator.php. Remediation References CVE-2020-28032 Related Vulnerabilities WordPress Plugin Site Reviews Cross-Site Scripting (5.17.2) MySQL CVE-2015-4772 Vulnerability (CVE-2015-4772) MySQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-0882) Oracle Database Server Other Vulnerability (CVE-2007-3855) WordPress Plugin Email Log Cross-Site Scripting (2.4.7) Severity Critical Classification CVE-2020-28032 CWE-502 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities