CVE-2019-9057

2019-03-26T17:29:00
ID CVE-2019-9057
Type cve
Reporter cve@mitre.org
Modified 2020-08-24T17:37:00

Description

An issue was discovered in CMS Made Simple 2.2.8. In the module FilePicker, it is possible to reach an unserialize call with an untrusted parameter, and achieve authenticated object injection.