CVE-2025-48289 – AncoraThemes Kids Planet Deserialization of Untrusted Data Object Injection Vulnerability

May 24, 2025

CVE ID : CVE-2025-48289

Published : May 23, 2025, 1:15 p.m. | 15 hours, 14 minutes ago

Description : Deserialization of Untrusted Data vulnerability in AncoraThemes Kids Planet allows Object Injection. This issue affects Kids Planet: from n/a through 2.2.14.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-48283 – Majestic Support SQL Injection Vulnerability

Next Article CVE-2025-47690 – Smackcoders Lead Form Data Collection to CRM Missing Authorization Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

SteamOS is officially not just for Steam Deck anymore — now ready for Lenovo Legion Go S and sort of ready for the ROG Ally

Microsoft’s latest AI model can accurately forecast the weather: “It doesn’t know the laws of physics, so it could make up something completely crazy”

OpenAI scientists wanted “a doomsday bunker” before AGI surpasses human intelligence and threatens humanity

My favorite gaming service is 40% off right now (and no, it’s not Xbox Game Pass)

A timeline of JavaScript’s history

A timeline of JavaScript’s history

Loading JSON Data into Snowflake From Local Directory

Streamline Conditional Logic with Laravel’s Fluent Conditionable Trait

SteamOS is officially not just for Steam Deck anymore — now ready for Lenovo Legion Go S and sort of ready for the ROG Ally

SteamOS is officially not just for Steam Deck anymore — now ready for Lenovo Legion Go S and sort of ready for the ROG Ally

Microsoft’s latest AI model can accurately forecast the weather: “It doesn’t know the laws of physics, so it could make up something completely crazy”

OpenAI scientists wanted “a doomsday bunker” before AGI surpasses human intelligence and threatens humanity

CVE-2025-48289 – AncoraThemes Kids Planet Deserialization of Untrusted Data Object Injection Vulnerability

CVE-2025-47642 – Ajar Productions Ajar in5 Embed Unrestricted File Upload Vulnerability

CVE-2025-47637 – STAGGS Web Server Unrestricted File Upload RCE

Microsoft’s Windows 98 can run Meta’s Llama AI model on just 128MB of RAM: “We could have been talking to our computers for 30 years now.”

Protocols in iOS Object-Oriented Programming [FREE]

Everything that happened at The Game Awards 2024: Winners, Game of the Year, and every new trailer

Automating a coffee shop chain using self-taught coding skills with Eamonn Cottrell [Interview #151]

How to program your iPhone’s Action Button to summon ChatGPT’s voice assistant

Apartment dwellers, rejoice! This tiny robot and handheld vacuum combo surprised me

Rilasciato Mozilla Thunderbird 134: Novità, Miglioramenti e Correzioni per il Client di Posta Open Source

Dev runs Windows 11 ARM on an iPad Air M2 using UTM with JIT, and it’s decent

CVE-2025-48289 – AncoraThemes Kids Planet Deserialization of Untrusted Data Object Injection Vulnerability

Related Posts