AI Score
Confidence
High
EPSS
Percentile
71.0%
Vanilla before 2.5.5 and 2.6.x before 2.6.2 allows Remote Code Execution because authenticated administrators have a reachable call to unserialize in the Gdn_Format class.
hackerone.com/reports/407552