2 matches found
CVE-2014-2293
CVE-2014-2293 affects Zikula Application Framework prior to 1.3.7 build 11. The vulnerability arises from PHP object injection via crafted serialized data in index.php parameters: authentication_method_ser, authentication_info_ser, or zikulaMobileTheme. This can allow remote attackers to delete a...
Zikula Application Framework 1.3.6 Multiple PHP Object Injection Vulnerabilities
Exploit for php platform in category web applications Zikula Application Framework = 1.3.6 Multiple PHP Object Injection Vulnerabilities • Software Link: http://zikula.org/ • Affected Versions: Version 1.3.6 and probably prior versions. • Vulnerabilities Description: 1 Input passed via the...