Deserialization Of Untrusted Data

melisplatform/melis-front is vulnerable to deserialization of untrusted data. The vulnerability exists in multiple functions because of adding allowedclasses=false param to the unserialize function which allows an attacker to execute of arbitrary PHP code on the system...

Media Links routers 代码问题漏洞

Media Links routers are a series of wireless routers from the Japanese company Media Links. Media Links routers are vulnerable to a code issue that originates from an attacker being able to deserialize arbitrary data from melisplatform/melis-front, ultimately leading to the execution of arbitrary...

melisplatform/melis-front vulnerable to deserialization of untrusted data

Impact Attackers can deserialize arbitrary data on affected versions of melisplatform/melis-front, and ultimately leads to the execution of arbitrary PHP code on the system. Conducting this attack does not require authentication. Users should immediately upgrade to melisplatform/melis-front =...

GHSA-H479-2MV4-5C26 melisplatform/melis-front vulnerable to deserialization of untrusted data

Impact Attackers can deserialize arbitrary data on affected versions of melisplatform/melis-front, and ultimately leads to the execution of arbitrary PHP code on the system. Conducting this attack does not require authentication. Users should immediately upgrade to melisplatform/melis-front =...