CVE-2016-9835

Directory traversal vulnerability in file "jcss.php" in Zikula 1.3.x before 1.3.11 and 1.4.x before 1.4.4 on Windows allows a remote attacker to launch a PHP object injection by uploading a serialized file...

CVE-2016-9835

Directory traversal vulnerability in file "jcss.php" in Zikula 1.3.x before 1.3.11 and 1.4.x before 1.4.4 on Windows allows a remote attacker to launch a PHP object injection by uploading a serialized file...

Directory traversal

Directory traversal vulnerability in file "jcss.php" in Zikula 1.3.x before 1.3.11 and 1.4.x before 1.4.4 on Windows allows a remote attacker to launch a PHP object injection by uploading a serialized file...

CVE-2016-9835

Summary (CVE-2016-9835) : Zikula’s jcss.php file has a directory traversal vulnerability in 1.3.x (before 1.3.11) and 1.4.x (before 1.4.4) on Windows, allowing a remote attacker to upload a serialized file to trigger a PHP object injection. Root cause is improper handling of uploaded content lead...

Ian Dunn: unchecked unserialize usage in WordPress-Functionality-Plugin-Skeleton/functionality-plugin-skeleton.php

in: https://github.com/iandunn/WordPress-Functionality-Plugin-Skeleton/blob/547216caf1bef2664ec3920a9c749191dea13aeb/functionality-plugin-skeleton.phpL108 there is usage of unserialize function public function blockpluginupdates $request, $url if 0 !== strpos $url, self::PLUGINUPDATECHECKURL //...

Jaws 1.1.1 Open Redirect / Object Injection / Cookie Flags Vulnerabilities

Jaws version 1.1.1 suffers from object injection, open redirection, and cookie flag related vulnerabilities. 1. Introduction Affected Product: Jaws 1.1.1 Fixed in: not fixed Fixed Version Link: n/a Vendor Website: http://jaws-project.com/ Vulnerability Type: Object Injection, Open Redirect, Cooki...

Jaws 1.1.1 Open Redirect / Object Injection / Cookie Flags

Security Advisory - Curesec Research Team 1. Introduction Affected Product: Jaws 1.1.1 Fixed in: not fixed Fixed Version Link: n/a Vendor Website: http://jaws-project.com/ Vulnerability Type: Object Injection, Open Redirect, Cookie Flags Remote Exploitable: Yes Reported to vendor: 09/05/2016...

Relevanssi Premium <= 1.14.4 - SQL Injection & PHP Object Injection

The relevanssi-premium WordPress plugin was affected by a SQL Injection & PHP Object Injection security vulnerability...

WordPress Post Indexer Plugin <= 3.0.6.1 - PHP Object Injection

Because of this vulnerability, the blog makes an automated encrypted HTTP request to premium.wpmudev.org and then the returned value passes to unserialize. It is possible to premium.wpmudev.org or any one to return a string which contains a bad encoded object that executes arbitrary code. Solutio...

WordPress Relevanssi Premium Plugin <= 1.14.4 - Multiple Vulnerabilities

This plugin is prone to a SQL injection and PHP object injection vulnerabilities. Solution Update the plugin...

php: Session Data Injection Vulnerability

ext/session/session.c in PHP before 5.6.25 and 7.x before 7.0.10 skips invalid session names in a way that triggers incorrect parsing, which allows remote attackers to inject arbitrary-type session data by leveraging control of a session name, as demonstrated by object injection...

Google Analytics Counter Tracker <= 3.4.0 - Unauthenticated PHP Object Injection

The Google Analytics Counter Tracker WordPress plugin was affected by an Unauthenticated PHP Object Injection security vulnerability...

WordPress YITH WooCommerce Compare 2.0.9 PHP Object Injection Vulnerability

WordPress YITH WooCommerce Compare plugin version 2.0.9 suffers from a PHP object injection vulnerability. ------------------------------------------------------------------------ YITH WooCommerce Compare WordPress Plugin unauthenticated PHP Object injection vulnerability...

Piwik PHP Object Injection Vulnerability

Piwik formerly known as phpMyVisites is an open source website access statistics system based on PHP5 and MySQL. A security vulnerability exists in the 'saveLayout' function in the /plugins/Dashboard/Controller.php script in Piwik 2.16.0 and earlier versions. A remote attacker can exploit this...

YITH WooCommerce Compare <= 2.0.9 - Unauthenticated PHP Object injection

The YITH WooCommerce Compare WordPress plugin was affected by an Unauthenticated PHP Object injection security vulnerability...

WordPress YITH WooCommerce Compare Plugin <= 2.0.9 - PHP Object injection

Because of this vulnerability, attackers can execute arbitrary PHP code. Solution Update the plugin...

WordPress YITH WooCommerce Compare 2.0.9 PHP Object Injection

------------------------------------------------------------------------ YITH WooCommerce Compare WordPress Plugin unauthenticated PHP Object injection vulnerability ------------------------------------------------------------------------ Yorick Koster, June 2016...

Piwik 2.16.0 PHP Object Injection

--------------------------------------------------------------- Piwik checkTokenInUrl; 213. 214. $layout = Common::unsanitizeInputValueCommon::getRequestVar'layout'; 215. $layout = striptags$layout; 216. $idDashboard = Common::getRequestVar'idDashboard', 1, 'int'; 217. $name =...

Piwik 2.16.0 - (layout) PHP Object Injection Vulnerability

Exploit for php platform in category web applications --------------------------------------------------------------- Piwik checkTokenInUrl; 213. 214. $layout = Common::unsanitizeInputValueCommon::getRequestVar'layout'; 215. $layout = striptags$layout; 216. $idDashboard =...

Piwik <= 2.16.0 (saveLayout) PHP object injection vulnerability

The vulnerability can be triggered through the saveLayout method defined in /plugins/Dashboard/Controller.php: 210. public function saveLayout 211. 212. $this-checkTokenInUrl; 213. 214. $layout = Common::unsanitizeInputValueCommon::getRequestVar'layout'; 215. $layout = striptags$layout; 216...