Improperly Controlled Modification of Dynamically-Determined Object Attributes

Overview handcraftedinthealps/goodby-csv is a CSV import/export library Affected versions of this package are vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes via the wakeup process. An attacker can execute arbitrary code by leveraging a gadget chain if...

CVE-2021-40102

An issue was discovered in Concrete CMS through 8.5.5. Arbitrary File deletion can occur via PHAR deserialization in isdir PHP Object Injection associated with the wakeup magic method...