132 matches found
CVE-2016-10948
The Post Indexer plugin before 3.0.6.2 for WordPress has incorrect handling of data passed to the unserialize function...
Code injection
The Post Indexer plugin before 3.0.6.2 for WordPress has incorrect handling of data passed to the unserialize function...
WebERP 4.15 - SQL injection
Exploit Title: Blind SQL injection in WebERP. Date: June 10, 2019 Exploit Author: Semen Alexandrovich Lyhin https://www.linkedin.com/in/semenlyhin/ Vendor Homepage: http://www.weberp.org/ Version: 4.15 A malicious query can be sent in base64 encoding to unserialize function. It can be deserialize...
CVE-2019-10867
An issue was discovered in Pimcore before 5.7.1. An attacker with classes permission can send a POST request to /admin/class/bulk-commit, which will make it possible to exploit the unserialize function when passing untrusted values in the data parameter to...
CVE-2019-10867
Pimcore before 5.7.1 contains an unserialize RCE vulnerability. An attacker with classes permission can send a POST to /admin/class/bulk-commit, which triggers unserialize when untrusted data is passed to bundles/AdminBundle/Controller/Admin/DataObject/ClassController.php. This exposes a remote c...
Yet Another Stars Rating <= 1.8.6 - PHP Object Injection
An unauthenticated PHP object injection in the "Yasr – Yet Another Stars Rating" WordPress plugin introduces a starting point for RCE and similiar high-severity vulnerabilities. As of 27.01.2019, the plugin has over 20.000 active installations and round about 500.000 downloads. A shortcode provid...
Buffer Overflow
php is vulnerable to denial of service DoS attacks. The vulnerability exists as an integer overflow in the objectcustom function in ext/standard/varunserializer.c in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service application cra...
PHP 7.0.x < 7.0.15 Multiple Vulnerabilities
According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.15. It is, therefore, affected by the following vulnerabilities : - A remote code execution vulnerability exists due to a use-after-free error in the unserialize function that is triggered when usin...
Vanilla Remote Code Execution Vulnerability (CNVD-2019-06793)
Vanilla is an open source multi-language, fully extensible forum program. A security vulnerability exists in Vanilla versions prior to 2.5.5 and 2.6.x prior to 2.6.2. A remote attacker can exploit this vulnerability to execute code by calling the 'unserialize' function...
Automattic: Object Injection in Woocommerce / Handle PDT Responses from PayPal
At this moment prevention from object injection is in the following line of code: pregmatch '/^a:2:/', $rawcustom && ! pregmatch '/CO:+?0-9+:"/', $rawcustom && $custom = maybeunserialize $rawcustom but the PHP native unserialize function supports little o as option in it and it is a StdClass...
Drupal 7. x Service Module SQLi & RCE vulnerability analysis and EXP-vulnerability warning-the black bar safety net
Drupal 7. x Service Module SQLi & RCE In the audit of the Drupal Service module when it is detected on the unserializefunction of a insecure call. Through the vulnerability, can lead to permission to escape, SQL injection, and remote code execution. 0x00 Service Module In Drupal, the Service modu...
The use of the Node. js deserialization vulnerability remote code execution-vulnerability warning-the black bar safety net
Vulnerability description Vulnerability name: Exploiting Node.js deserialization bug for Remote Code Execution Vulnerability CVE id: CVE-2017-594 Vulnerability type: code execution Vulnerability description: Untrusted data is passed into the unserializefunction, which leads to we can By pass with...
CVE-2017-5941
An issue was discovered in the node-serialize package 0.0.4 for Node.js. Untrusted data passed into the unserialize function can be exploited to achieve arbitrary code execution by passing a JavaScript Object with an Immediately Invoked Function Expression IIFE...
PHP 'unserialize()' function memory misreference vulnerability
PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A memory misreference vulnerability exists in the PHP 'unserialize' function. An attacker could exploit this vulnerability to execute arbitrary...
Ian Dunn: unchecked unserialize usages in audit-trail-extension/audit-trail-extension.php
in: https://github.com/iandunn/audit-trail-extension/blob/master/audit-trail-extension.phpL106 https://github.com/iandunn/audit-trail-extension/blob/master/audit-trail-extension.phpL112 https://github.com/iandunn/audit-trail-extension/blob/master/audit-trail-extension.phpL133...
Alienvault OSSIMUSM 5.3.1 - PHP Object Injection
Alienvault OSSIMUSM 5.3.1 - PHP Object Injection Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP object...
PHP 7 Unserialization Exception Infinite Loop Denial of Service (CVE-2016-7478)
A Denial of Service vulnerability exists in PHP 7. A remote attacker can exploit this vulnerability by sending specially crafted input to the unserialize function...
PHP 7 Unserialization Hash Table Resize Use After Free
A Use After Free vulnerability exists in PHP 7. A remote attacker can exploit this vulnerability by sending specially crafted input to the unserialize function...
Silver Stripe CMS: source code security analysis report
Several vulnerabilities were discovered in SilverStripe Limited 'Silver Stripe CMS' software: Incorrect User Input Filtration when Connecting to External Files File System Path Manipulation Using Global Variables Incorrect User Input Filtration when Using the unserialize Function Incorrect Newlin...
Pornhub Hack Earns Researchers $22,000
A PHP vulnerability that exposed adult website PornHub’s user data to hackers and allowed for code execution on servers hosting the site, earned a trio of German researchers $22,000 as part of a bug bounty program. PHP patched the vulnerability in June. The flaw is tied to a use-after-free memory...