Lucene search
Veracode Vulnerability DatabaseVERACODE:22170HistoryDec 13, 2019 - 1:58 a.m.
Object Injection
2019-12-1301:58:52
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.003 Low
EPSS
Percentile
70.2%
phpsocialnetwork/phpfastcache is vulnerable to object injection. The vulnerability exists as an object can be included through the value of $keyword in Cookie/Driver.php, potentially allowing an attacker to execute arbtirary code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| phpfastcache/phpfastcache | le | 5.0.12 |
References
github.com/advisories/GHSA-484f-743f-6jx2
github.com/PHPSocialNetwork/phpfastcache/commit/c4527205cb7a402b595790c74310791f5b04a1a4
github.com/PHPSocialNetwork/phpfastcache/pull/408
github.com/PHPSocialNetwork/phpfastcache/releases/tag/5.0.13
github.com/PHPSocialNetwork/phpfastcache/security/advisories/GHSA-484f-743f-6jx2
Related
prion
prion
Design/Logic Flaw
2019-12-12 23:15:00
osv
osv
CVE-2019-16774
2019-12-12 23:15:12
Object injection in cookie driver in phpfastcache
2019-12-12 22:50:20
debiancve
debiancve
CVE-2019-16774
2019-12-12 23:15:12
cve
cve
CVE-2019-16774
2019-12-12 23:15:12
cvelist
cvelist
CVE-2019-16774 Object injection in cookie driver
2019-12-12 23:05:15
github
github
Object injection in cookie driver in phpfastcache
2019-12-12 22:50:20
nvd
nvd
CVE-2019-16774
2019-12-12 23:15:12