CVE-2018-1000059

2018-02-0923:29:02

Google

osv.dev

AI Score

Confidence

High

EPSS

0.002

Percentile

53.8%

JSON

ValidFormBuilder version 4.5.4 contains a PHP Object Injection vulnerability in Valid Form unserialize method that can result in Possible to execute unauthorised system commands remotely and disclose file contents in file system.

References

github.com/validformbuilder/validformbuilder/issues/126