CVE Catalog
CVE-2026-39478
HighCVSS 8.8Exploitation Probability (EPSS)
Low risk0.43%
34th percentile - higher than 34% of all known CVEs
Summary
Versions of Anti-Malware Security and Brute-Force Firewall up to 4.23.87 are vulnerable to PHP Object Injection by attackers.
Risk Assessment
Attackers can exploit this vulnerability to gain control over the application, potentially leading to serious security breaches.
Recommendation
It is recommended to update to the latest version of the plugin to mitigate this vulnerability.
Original NVD description (English source)
Contributor PHP Object Injection in Anti-Malware Security and Brute-Force Firewall <= 4.23.87 versions.

