Insecure deserialization vulnerability in WordPress Newsletter Manager plugin (unpatched). https://blog.nintechnet.com/insecure-deserialization-vulnerability-in-wordpress-newsletter-manager-plugin-unpatched/