Question 1

What is CVE-2022-4680 — CVE-2022-4680?

Accepted Answer

The Revive Old Posts WordPress plugin before 9.0.11 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present.

Question 2

What is the authoritative source for CVE-2022-4680?

Accepted Answer

CVE-2022-4680 (CVE-2022-4680) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	7.2 ()
Vector	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS	1.05% probability of exploitation · percentile 59.7% · 2026-06-19T12:03:05Z
Last modified	2026-06-17

CVE-2022-4680CVE-2022-4680

Description

Scoring