Lucene search
K

8123 matches found

Github Security Blog
Github Security Blog
added 2017/10/24 6:33 p.m.85 views

HTTParty does not restrict casts of string values

The httparty gem 0.9.0 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption by leveraging Action Pack support for YAML type...

7.5CVSS5.2AI score0.0441EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2017/10/24 6:33 p.m.63 views

Improper Input Validation in multi_xml

multixml gem 0.5.2 for Ruby, as used in Grape before 0.2.6 and possibly other products, does not properly restrict casts of string values, which allows remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption involvin...

7.5CVSS5.8AI score0.03655EPSS
Exploits0References7Affected Software1
OpenVAS
OpenVAS
added 2017/10/24 12:0 a.m.24 views

Tuleap < 9.7 Object Injection Vulnerability

Tuleap is prone to an object injection vulnerability. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS9AI score0.66632EPSS
Exploits6References2
Metasploit
Metasploit
added 2017/10/23 10:18 a.m.46 views

Kaltura Remote PHP Code Execution over Cookie

This module exploits an Object Injection vulnerability in Kaltura. By exploiting this vulnerability, unauthenticated users can execute arbitrary code under the context of the web server user. Kaltura makes use of a hardcoded cookie secret which allows to sign arbitrary cookie data. After passing...

9.8CVSS8.6AI score0.75497EPSS
Exploits12
VulnCheck KEV
VulnCheck KEV
added 2017/10/23 12:0 a.m.8 views

VulnCheck KEV: CVE-2017-15919

The ultimate-form-builder-lite plugin before 1.3.7 for WordPress has SQL Injection, with resultant PHP Object Injection, via wp-admin/admin-ajax.php...

9.8CVSS7.4AI score0.02482EPSS
Exploits0References1
Patchstack
Patchstack
added 2017/10/13 12:0 a.m.10 views

WordPress Invite Anyone plugin <=1.3.18 - Unauthenticated PHP Object Injection vulnerability

Unauthenticated PHP Object Injection vulnerability found in WordPress Invite Anyone plugin versions =1.3.18. Solution Update the WordPress Invite Anyone plugin to the latest available version at least version 1.3.19...

4.1AI score
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2017/10/12 12:0 a.m.12 views

Invite Anyone <= 1.3.18 - Unauthenticated PHP Object Injection

The plugin invite-anyone insecurely trusts serialized data submitted over HTTP requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. PoC Similar to previous attacks, you send a cookie named "invite-anyone" with serialized data for your target object...

1.1AI score
Exploits0References1Affected Software1
wpexploit
wpexploit
added 2017/10/12 12:0 a.m.14 views

Invite Anyone <= 1.3.18 - Unauthenticated PHP Object Injection

The plugin invite-anyone insecurely trusts serialized data submitted over HTTP requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. Similar to previous attacks, you send a cookie named "invite-anyone" with serialized data for your target object...

0.5AI score
Exploits0References1
Patchstack
Patchstack
added 2017/10/03 12:0 a.m.8 views

WordPress Appointments plugin <=2.2.1 - Unauthenticated PHP Object Injection vulnerability

Unauthenticated PHP Object Injection vulnerability found by Matt Barry WordFence in WordPress Appointments plugin versions =2.2.1. Solution Update the WordPress Appointments plugin to the latest available version at least 2.2.2...

2.9AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2017/10/03 12:0 a.m.19 views

WordPress RegistrationMagic-Custom Registration Forms plugin <= 3.7.9.2 - Unauthenticated PHP Object Injection vulnerability

Unauthenticated PHP Object Injection vulnerability found by Matt Barry WordFence in WordPress RegistrationMagic-Custom Registration Forms plugin versions = 3.7.9.2. Solution Update the WordPress RegistrationMagic-Custom Registration Forms plugin to the latest available version at least 3.7.9.3...

3.3AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2017/10/03 12:0 a.m.9 views

WordPress Flickr Gallery plugin <=1.5.2 - Unauthenticated PHP Object Injection vulnerability

Unauthenticated PHP Object Injection vulnerability found by Matt Barry WordFence in WordPress Appointments plugin versions =1.5.2. Solution Update the WordPress Flickr Gallery plugin to the latest available version at least 1.5.3...

3.2AI score
Exploits0References1Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2017/10/02 12:0 a.m.3 views

VulnCheck KEV: CVE-2017-20208

The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to PHP Object Injection in all versions up to 3.7.9.3 exclusive via deserialization of untrusted input from the isexpiredbydate function. This makes it...

9.8CVSS5.8AI score0.00644EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2017/10/02 12:0 a.m.12 views

Flickr Gallery <= 1.5.2 - Unauthenticated PHP Object Injection

The flickr-gallery WordPress plugin was affected by an Unauthenticated PHP Object Injection security vulnerability...

2.6AI score
Exploits0References2Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2017/10/02 12:0 a.m.5 views

VulnCheck KEV: CVE-2017-20206

The Appointments plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.2.1 via deserialization of untrusted input from the wpmudevappointments cookie. This allows unauthenticated attackers to inject a PHP Object. Attackers were actively exploiting...

9.8CVSS5.8AI score0.0067EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2017/10/02 12:0 a.m.4 views

VulnCheck KEV: CVE-2017-20207

The Flickr Gallery plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.5.2 via deserialization of untrusted input from the pager parameter. This allows unauthenticated attackers to inject a PHP Object. Attackers were actively exploiting this...

9.8CVSS5.8AI score0.0067EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2017/10/01 12:0 a.m.11 views

MarketPress <= 3.2.6 - PHP Object Injection

The MarketPress plugin installs to a directory named wordpress-ecommerce versions 3.2.6 and prior are vulnerable to a PHP Object Injection attack from the cart cookie value stored in connection with this plugin. PoC Send an object to the site using the mpglobalcart cookie value and it will be...

2.7AI score
Exploits0References2Affected Software1
wpexploit
wpexploit
added 2017/10/01 12:0 a.m.18 views

MarketPress <= 3.2.6 - PHP Object Injection

The MarketPress plugin installs to a directory named wordpress-ecommerce versions 3.2.6 and prior are vulnerable to a PHP Object Injection attack from the cart cookie value stored in connection with this plugin. Send an object to the site using the mpglobalcart cookie value and it will be...

1.4AI score
Exploits0References2
Patchstack
Patchstack
added 2017/09/28 12:0 a.m.8 views

WordPress MarketPress plugin <=3.2.6 - PHP Object Injection vulnerability

PHP Object Injection vulnerability found by Robert R in WordPress MarketPress plugin versions =3.2.6 . Solution Update the WordPress MarketPress plugin to the latest available version at least 3.2.7...

2.7AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2017/09/25 12:0 a.m.8 views

WordPress Shoppable Images Lite plugin <=1.0.0 - Cross-Site Request Forgery (CSRF)/PHP Object Injection Vulnerabilities

WordPress Shoppable Images Lite plugin Cross-Site Request Forgery CSRF/PHP Object Injection Vulnerabilities were found in the showadminnotices function. The value of $GET nonce variable is unserialized, which allows PHP object injection. Solution Update the plugin...

3.2AI score
Exploits0References2Affected Software1
CNVD
CNVD
added 2017/09/20 12:0 a.m.46 views

Kaltura PHP Object Injection Vulnerability

Kaltura is a suite of open source online video platforms from the US company Kaltura. A security vulnerability exists in the 'getUserzoneCookie' function in Kaltura versions prior to 13.2.0. A remote attacker can exploit this vulnerability with a specially crafted userzone cookie to bypass the...

9.8CVSS9.5AI score0.75497EPSS
Exploits12References1
Rows per page
Query Builder