What the vulnerability does
01Description
Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive: from n/a through 2.0.5.
CVE-2024-23513
HIGH
CVE-2024-23513: WordPress PropertyHive Plugin <= 2.0.5 is vulnerable to PHP Object Injection
CVSS base score
8.7/10
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
Key dates
02Disclosure timeline
February 12, 2024
CVE published
April 28, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-36072 IBM webMethods Integration Deserialization
CVE-2025-31924 WordPress Crafts & Arts theme <= 2.5 - PHP Object Injection Vulnerability
CVE-2026-22453 WordPress Pets Club theme <= 2.3 - PHP Object Injection vulnerability
CVE-2022-45083 WordPress ProfilePress Plugin <= 4.3.2 is vulnerable to PHP Object Injection
CVE-2024-31879 IBM i denial of service
