52 matches found
CVE-2022-35223
EasyUse MailHunter Ultimate’s cookie deserialization function has an inadequate validation vulnerability. Deserializing a cookie containing malicious payload will trigger this insecure deserialization vulnerability, allowing an unauthenticated remote attacker to execute arbitrary code, manipulate...
DotNetNuke (DNN) Remote Code Execution Vulnerability
DotNetNuke DNN contains a vulnerability that may allow for remote code execution via cookie deserialization...
WordPress 代码问题漏洞
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. wp-hotel-booking is a plugin for WordPress. A security vulnerability exists in wp-hotel-booking plugin 1.10.2...
VulnCheck KEV: CVE-2017-9822
DotNetNuke DNN contains a vulnerability that may allow for remote code execution via cookie deserialization...
CVE-2019-7725
includes/core/isuser.php in NukeViet before 4.3.04 deserializes the untrusted nvloginhash cookie i.e., the code relies on PHP's serialization format when JSON can be used to eliminate the risk...
Vinades NukeViet Code Issue Vulnerability
Vinades NukeViet is an open source Content Management System CMS from VINADES Vinades Vietnam. A security vulnerability exists in NukeViet before 4.3.04, which stems from includes/core/isuser.php deserializing untrusted cookies...
GitLab File Read Remote Code Execution
This module provides remote code execution against GitLab Community Edition CE and Enterprise Edition EE. It combines an arbitrary file read to extract the Rails "secretkeybase", and gains remote code execution with a deserialization vulnerability of a signed 'experimentationsubjectid' cookie tha...
GitLab File Read Remote Code Execution Exploit
This Metasploit module provides remote code execution against GitLab Community Edition CE and Enterprise Edition EE. It combines an arbitrary file read to extract the Rails secretkeybase, and gains remote code execution with a deserialization vulnerability of a signed experimentationsubjectid...
CVE-2019-18956
Divisa Proxia Suite 9 9.12.16, 9.11.19, 9.10.26, 9.9.8, 9.8.43 and 9.7.10, 10.0 10.0.32, and 10.1 10.1.5, SparkSpace 1.0 1.0.30, 1.1 1.1.2, and 1.2 1.2.4, and Proxia PHR 1.0 1.0.30 and 1.1 1.1.2 allows remote code execution via untrusted Java deserialization. The proxia-error cookie is insecurely...
UBUNTU-CVE-2016-3957
The secureload function in gluon/utils.py in web2py before 2.14.2 uses pickle.loads to deserialize session information stored in cookies, which might allow remote attackers to execute arbitrary code by leveraging knowledge of encryptionkey...
VulnCheck KEV: CVE-2017-20206
The Appointments plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.2.1 via deserialization of untrusted input from the wpmudevappointments cookie. This allows unauthenticated attackers to inject a PHP Object. Attackers were actively exploiting...
NancyFX Nancy Remote Code Execution Vulnerability
NancyFX Nancy is a lightweight framework . The framework is used to build HTTP services on the .NET Framework or .NET Core. A security vulnerability exists in the Csrf.cs file in NancyFX Nancy versions prior to 1.4.4 and 2.x versions prior to 2.0-dangermouse. A remote attacker can exploit this...