Type confusion

The crack gem 0.3.1 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption by leveraging Action Pack support for 1 YAML type...

CVE-2013-1801

The httparty gem 0.9.0 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption by leveraging Action Pack support for YAML type...

CVE-2013-1802

The extlib gem 0.9.15 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption by leveraging Action Pack support for 1 YAML typ...

CVE-2013-1801

The httparty gem 0.9.0 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption by leveraging Action Pack support for YAML type...

CVE-2013-1802

CVE-2013-1802 concerns the extlib gem for Ruby (0.9.15 and earlier). The vulnerability arises from improper restriction of casts of string values, allowing object-injection and potentially arbitrary code execution or denial of service via YAML type conversion or Symbol type conversion, similar to...

CVE-2013-1801

Technical details for CVE-2013-1801 are not publicly available in the provided documents. No vendor/product/version specifics or remediation are disclosed here. Monitor for updates from official sources to obtain concrete details and fixes.

CVE-2013-0285

The CVE-2013-0285 entry concerns the nori gem for Ruby. Affected versions: nori 2.0.x before 2.0.2, 1.1.x before 1.1.4, and 1.0.x before 1.0.3. Root cause: improper restriction of casts for string values during YAML type conversion or Symbol type conversion, enabling remote object-injection attac...

CVE-2013-1800

CVE-2013-1800 concerns the crack gem for Ruby (0.3.1 and earlier). The issue arises from improper restriction of casts of string values, enabling potential object-injection and arbitrary code execution, or a denial of service, via Action Pack support for YAML type conversion or Symbol type conver...

CVE-2013-1800

The crack gem 0.3.1 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption by leveraging Action Pack support for 1 YAML type...

CVE-2013-1802

The extlib gem 0.9.15 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption by leveraging Action Pack support for 1 YAML typ...

PT-2013-3400

Name of the Vulnerable Software and Affected Versions httparty gem version 0.9.0 and earlier Description The issue is related to the improper restriction of casts of string values, which could allow remote attackers to conduct object-injection attacks. This might lead to the execution of arbitrar...

[KIS-2013-03] Joomla! <= 3.0.2 (highlight.php) PHP Object Injection Vulnerability

------------------------------------------------------------------- Joomla! = 3.0.2 highlight.php PHP Object Injection Vulnerability ------------------------------------------------------------------- - Software Link: http://www.joomla.org/ - Affected Versions: Version 3.0.2 and earlier 3.0.x...

Joomla! 'highlight' Parameter PHP Object Injection Vulnerability

Joomla! is prone to a remote PHP object-injection vulnerability because it fails to properly validate user-supplied input. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Joomla! <= 3.0.2 (highlight.php) PHP Object Injection Vulnerability

Exploit for php platform in category web applications...

Joomla! 3.0.2 PHP Object Injection

------------------------------------------------------------------- Joomla! request-get'highlight', null, 'base64'; 58. $terms = $terms ? unserializebase64decode$terms : null; User input passed through the "highlight" parameter is not properly sanitized before being used in an unserialize call at...

Joomla! 3.0.2 - highlight.php PHP Object Injection

Joomla! 3.0.2 - highlight.php PHP Object Injection ------------------------------------------------------------------- Joomla! request-get'highlight', null, 'base64'; 58. $terms = $terms ? unserializebase64decode$terms : null; User input passed through the "highlight" parameter is not properly...

Joomla! 3.0.2 - &#039;highlight.php&#039; PHP Object Injection

------------------------------------------------------------------- Joomla! request-get'highlight', null, 'base64'; 58. $terms = $terms ? unserializebase64decode$terms : null; User input passed through the "highlight" parameter is not properly sanitized before being used in an unserialize call at...

[KIS-2013-02] CubeCart &lt;= 5.2.0 &#40;cubecart.class.php&#41; PHP Object Injection Vulnerability

------------------------------------------------------------------------- CubeCart = 5.2.0 cubecart.class.php PHP Object Injection Vulnerability ------------------------------------------------------------------------- - Software Link: http://www.cubecart.com/ - Affected Versions: All versions fr...

CubeCart 5.2.0 - cubecart.class.php PHP Object Injection

CubeCart 5.2.0 - cubecart.class.php PHP Object Injection ------------------------------------------------------------------------- CubeCart set'shipping', unserializebase64urldecode$POST'shipping'; 522. if !isset$POST'proceed' 523. httpredircurrentPage; 524. 525. User input passed through the...

CubeCart 5.2.0 PHP Object Injection Vulnerability

CubeCart versions 5.0.0 through 5.2.0 suffer from a PHP object injection vulnerability in cubecart.class.php ------------------------------------------------------------------------- CubeCart set'shipping', unserializebase64urldecode$POST'shipping'; 522. if !isset$POST'proceed' 523...