CodeIgniter is an open source Web framework written in PHP. codeIgniter is vulnerable to a code issue that stems from the deserialization of untrusted data found in the old() function of the software. A remote attacker could use the vulnerability to inject an arbitrary object with the vulnerability that can be autoloaded and possibly execute existing PHP code on the server.
CPE | Name | Operator | Version |
---|---|---|---|
CodeIgniter CodeIgniter>=4.0.0, | lt | 4.1.6 |