The Virim plugin 0.4 for WordPress allows Insecure Deserialization via s_values, t_values, or c_values in graph.php.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-502,
Products Affected