CVE-2026-32355

UNKNOWN

WordPress JetEngine plugin < 3.8.4.1 - Deserialization of untrusted data vulnerability

Published Mar 13, 2026

Modified 3 days ago

Details

Deserialization of Untrusted Data vulnerability in Crocoblock JetEngine jet-engine allows Object Injection.This issue affects JetEngine: from n/a through < 3.8.4.1.

References

WEB

https://patchstack.com/database/Wordpress/Plugin/jet-engine/vulnerability/wordpress-jetengine-plugin-3-8-4-1-deserialization-of-untrusted-data-vulnerability?_s_id=cve

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2026-32355

Weakness Type (CWE)

Serialization

CWE-502

Deserialization of Untrusted Data

Ecosystems

Timeline

PublishedMar 13, 2026

ModifiedMar 13, 2026