CVE-2025-60090

Severity CVSS v4.0:

Pending analysis

Type:

CWE-502 Deserialization of Untrusted Dat

Publication date:

18/12/2025

Last modified:

18/12/2025

Description

Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Insightly gf-insightly allows Object Injection.This issue affects WP Gravity Forms Insightly: from n/a through

Impact

References to Advisories, Solutions, and Tools

https://vdp.patchstack.com/database/Wordpress/Plugin/gf-insightly/vulnerability/wordpress-wp-gravity-forms-insightly-plugin-1-1-5-deserialization-of-untrusted-data-vulnerability?_s_id=cve