Question 1

What is CVE-2022-4043 — CVE-2022-4043?

Accepted Answer

The WP Custom Admin Interface WordPress plugin before 7.29 unserialize user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present.

Question 2

What is the authoritative source for CVE-2022-4043?

Accepted Answer

CVE-2022-4043 (CVE-2022-4043) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	7.2 ()
Vector	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS	17.69% probability of exploitation · percentile 96.8% · 2026-06-19T12:03:05Z
Last modified	2026-06-17

CVE-2022-4043CVE-2022-4043

Description

Scoring