topthink/framework is vulnerable to deserialization of untrusted data. The vulnerability exists in unserialize
function in Driver.php
due to the use of string type as the method parameter which allows an attacker to control the state or the flow of the execution.