6 matches found
EUVD-2024-17110
Malicious code in bioql PyPI...
PHPEMS deserialization vulnerability (CNVD-2024-13536)
PHPEMS is a PHP online mock exam system. PHPEMS has a deserialization vulnerability, the vulnerability arises because there is a function index in app/weixin/controller/index.api.php, which can be exploited by an attacker to cause deserialization via the parameter picurl...
Deserialization of untrusted data
A vulnerability, which was classified as critical, has been found in PHPEMS up to 1.0. Affected by this issue is the function index of the file app/weixin/controller/index.api.php. The manipulation of the argument picurl leads to deserialization. The exploit has been disclosed to the public and m...
CVE-2024-1353 PHPEMS index.api.php index deserialization
A vulnerability, which was classified as critical, has been found in PHPEMS up to 1.0. Affected by this issue is the function index of the file app/weixin/controller/index.api.php. The manipulation of the argument picurl leads to deserialization. The exploit has been disclosed to the public and m...
CVE-2024-1353 PHPEMS index.api.php index deserialization
A vulnerability, which was classified as critical, has been found in PHPEMS up to 1.0. Affected by this issue is the function index of the file app/weixin/controller/index.api.php. The manipulation of the argument picurl leads to deserialization. The exploit has been disclosed to the public and m...
CVE-2024-1353
PHPEMS up to version 1.0 is affected by CVE-2024-1353. The vulnerability resides in the index function of app/weixin/controller/index.api.php, where manipulating the picurl argument leads to deserialization. The issue is publicly disclosed and exploitable per the sources in the connected document...