Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2017/03/14 12:0 a.m.4 views

CakePHP Cache Corruption Code Execution (CVE-2010-4335)

A remote code execution vulnerability exists in CakePHP. The vulnerability is due to the way the security component of CakePHP fails to validate user input. A remote attacker can exploit this issue by sending a specially crafted HTTP request...

7.5CVSS2AI score0.55204EPSS
Exploits3
UbuntuCve
UbuntuCve
added 2011/01/14 11:0 p.m.23 views

CVE-2010-4335

The validatePost function in libs/controller/components/security.php in CakePHP 1.3.x through 1.3.5 and 1.2.8 allows remote attackers to modify the internal Cake cache and execute arbitrary code via a crafted dataTokenfields value that is processed by the unserialize function, as demonstrated by...

7.5CVSS6.2AI score0.55204EPSS
Exploits3References1
Cvelist
Cvelist
added 2011/01/14 10:0 p.m.35 views

CVE-2010-4335

The validatePost function in libs/controller/components/security.php in CakePHP 1.3.x through 1.3.5 and 1.2.8 allows remote attackers to modify the internal Cake cache and execute arbitrary code via a crafted dataTokenfields value that is processed by the unserialize function, as demonstrated by...

7.2AI score0.55204EPSS
Exploits3References7
CVE
CVE
added 2011/01/14 10:0 p.m.76 views

CVE-2010-4335

CakePHP 1.2.8 and 1.3.x up to 1.3.5 are affected. The _validatePost function in libs/controller/components/security.php processes a crafted data[_Token][fields] value with unserialize, allowing remote attackers to modify the internal Cake cache and execute arbitrary code (demonstrated via modifyi...

7.5CVSS7.5AI score0.55204EPSS
Exploits3References7Affected Software2
Circl
Circl
added 2011/01/14 12:0 a.m.12 views

CVE-2010-4335

creationtimestamp| type| source ---|---|--- 2011-01-14 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16902 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/cakephpcachecorruption.rb 2025-02-06 03:13:40+00:00|...

7.5CVSS5.7AI score0.55204EPSS
Exploits3References2
Rows per page
Query Builder