Unserialize and Hostname Substitution

  • Hi,

    We have a multi-site network and were looking to integrate this plugin within our environment. However, upon doing a review of the plugin the following issues would currently prevent it passing our internal code review around security etc.

    • Exploiting unserialize (PHP Object Injection Vulnerability)
    • class-novo-map-admin.php
    • class-novo-map-infobox-style-manager.php
    • Hostname substitution
    • php-html-css-js-minifier.php

    Is it possible that the above issues could be resolved?

  • The topic ‘Unserialize and Hostname Substitution’ is closed to new replies.