CVE-2026-7647 | Cozmoslabs Profile Builder Pro Plugin up to 3.14.5 on WordPress AJAX maybe_unserialize args deserialization

A vulnerability has been found in Cozmoslabs Profile Builder Pro Plugin up to 3.14.5 on WordPress and classified as problematic. Affected by this vulnerability is the function maybe_unserialize of the component AJAX Handler. This manipulation of the argument args causes deserialization.

This vulnerability is handled as CVE-2026-7647. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More