CVE-2019-16885
CVE-2019-16885 affects OkayCMS up to 2.3.4. The vulnerability is due to unsafe deserialization via cookies: price_filter in view/ProductsView.php and comparison in api/Comparison.php. An unauthenticated attacker can trigger remote code execution by injecting a malicious PHP object that is unseria...