CVE-2025-39588 – Ultimate Store Kit Elementor Addons Untrusted Data Deserialization Object Injection

April 20, 2025

CVE ID : CVE-2025-39588

Published : April 17, 2025, 4:15 p.m. | 3 days, 6 hours ago

Description : Deserialization of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons allows Object Injection. This issue affects Ultimate Store Kit Elementor Addons: from n/a through 2.4.0.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-39595 – Quentn WP SQL Injection

Next Article CVE-2025-32433: Unauthenticated RCE Vulnerability in Erlang/OTP’s SSH Implementation

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

I can hardly believe just how amazing this $100 gimbal-tracking webcam is — Why recommend anything else?

Microsoft’s Copilot is trying to appeal to the masses — now power users are leaving it behind

“It’s literally tens ofmillions of hours.” Xbox CEO Phil Spencer celebrates Xbox Cloud Gaming’s “dramatic growth,” now with per-device usage charts.

I would pay a LOT of money for this absolutely incredible AI laptop… But maybe not as much as it actually costs

Community News: Latest PECL Releases (03.11.2025)

Community News: Latest PECL Releases (03.11.2025)

danielebarbaro/laravel-vat-eu-validator

Expense Management System Android App Using SQLite

Tuning Local LLMs With RAG Using Ollama and Langchain

Tuning Local LLMs With RAG Using Ollama and Langchain

I can hardly believe just how amazing this $100 gimbal-tracking webcam is — Why recommend anything else?

8 Best Free and Open Source Restic Wrappers

CVE-2025-39588 – Ultimate Store Kit Elementor Addons Untrusted Data Deserialization Object Injection

Leaked KeyPlug Malware Infrastructure Contains Exploit Scripts to Hack Fortinet Firewall and VPN

April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs

Decoder – scan and generate QR codes

Should developers design unit based test cases prior to writing the tests

Kyutaiâ€™s AI voice assistant beats OpenAI to public release

Register Now for a Laravel Debugging Workshop by Sentry

7 things I never do with a new Linux installation (and why)

Microsoft reduces Nvidiaâ€™ GB200 orders as result of production delays

Draco â€“ build client side web application

Microsoft’s Copilot is trying to appeal to the masses — now power users are leaving it behind

CVE-2025-39588 – Ultimate Store Kit Elementor Addons Untrusted Data Deserialization Object Injection

Related Posts