Versions of PHP 7.0.x prior to 7.0.14 are vulnerable to a use-after-free error in the βunserialize()β function in βext/standard/var.cβ. This may allow a remote attacker to dereference already freed memory and potentially execute arbitrary code.
Binary data 9842.prm