2 matches found
CVE-2019-5069
A code execution vulnerability exists in Epignosis eFront LMS v5.2.12. A specially crafted web request can cause unsafe deserialization potentially resulting in PHP code being executed. An attacker can send a crafted web parameter to trigger this vulnerability...
CVE-2019-5069
Epignosis eFront LMS v5.2.12 is affected by a PHP deserialization code execution vulnerability (CVE-2019-5069). Cisco Talos (TALOS-2019-0858) describes unsafe deserialization of untrusted data leading to remote code execution. Affected component is the LMS PHP backend; deserialization occurs when...