CVE-2016-1209
The Ninja Forms plugin before 2.9.42.1 for WordPress allows remote attackers to conduct PHP object injection attacks via crafted serialized values in a POST request.
Date published : 2016-05-14
https://ninjaforms.com/important-security-update-always-hurt-ones-love/