Lucene search
China National Vulnerability DatabaseCNVD-2022-08726HistoryJan 06, 2022 - 12:00 a.m.
CodeIgniter code issues vulnerabilities
2022-01-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.1 Low
EPSS
Percentile
94.9%
CodeIgniter is an open source Web framework written in PHP. codeIgniter is vulnerable to a code issue that stems from the deserialization of untrusted data found in the old() function of the software. A remote attacker could use the vulnerability to inject an arbitrary object with the vulnerability that can be autoloaded and possibly execute existing PHP code on the server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| CodeIgniter CodeIgniter>=4.0.0, | lt | 4.1.6 |
Related
cve
cve
CVE-2022-21647
2022-01-04 20:15:07
prion
prion
Deserialization of untrusted data
2022-01-04 20:15:00
osv
osv
Deserialization of Untrusted Data in Codeigniter4
2022-01-06 22:52:41
CVE-2022-21647
2022-01-04 20:15:07
BIT-codeigniter-2022-21647
2024-03-06 10:54:39
friendsofphp
friendsofphp
CVE-2022-21647: Deserialization of Untrusted Data in Codeigniter4
2022-01-04 00:59:31
CVE-2022-21647: Deserialization of Untrusted Data in Codeigniter4
2022-01-04 00:59:31
github
github
Deserialization of Untrusted Data in Codeigniter4
2022-01-06 22:52:41
cvelist
cvelist
CVE-2022-21647 Deserialization of Untrusted Data in Codeigniter4
2022-01-04 20:05:11
veracode
veracode
SQL Injection
2022-01-05 05:02:53
nvd
nvd
CVE-2022-21647
2022-01-04 20:15:07