CWE:
 

Topic
Date
Author
Med.
Revive Adserver Deserialization / Open Redirect
02.05.2019
Matteo Beccati
High
OpenMRS Platform Insecure Object Deserialization
05.02.2019
Bishop Fox
Med.
Revive Adserver 4.0.0 XSS / Deserialization / Session Fixation
01.02.2017
Matteo Beccati
High
Solarwinds Virtualization Manager 6.3.1 Java Deserialization
17.06.2016
Nate Kettlewell


CVEMAP Search Results

CVE
Details
Description
2019-09-17
Medium
CVE-2019-11666

Vendor: Microfocus
Software: Service manager
 

 
Insecure deserialization of untrusted data in Micro Focus Service Manager product versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. The vulnerability could be exploited to allow insecure deserialization of untrusted data.

 
2019-09-16
Medium
CVE-2019-0195

Vendor: Apache
Software: Tapestry
 

 
Manipulating classpath asset file URLs, an attacker could guess the path to a known file in the classpath and have it downloaded. If the attacker found the file with the value of the tapestry.hmac-passphrase configuration symbol, most probably the webapp's AppModule class, the value of this symbol could be used to craft a Java deserialization attack, thus running malicious injected Java code. The vector would be the t:formdata parameter from the Form component.

 
2019-09-14
Medium
CVE-2019-16317

Vendor: Pimcore
Software: Pimcore
 

 
In Pimcore before 5.7.1, an attacker with limited privileges can trigger execution of a .phar file via a phar:// URL in a filename parameter, because PHAR uploads are not blocked and are reachable within the phar://../../../../../../../../var/www/html/web/var/assets/ directory, a different vulnerability than CVE-2019-10867 and CVE-2019-16318.

 
2019-09-11
Medium
CVE-2019-0189

Vendor: Apache
Software: Ofbiz
 

 
The java.io.ObjectInputStream is known to cause Java serialisation issues. This issue here is exposed by the "webtools/control/httpService" URL, and uses Java deserialization to perform code execution. In the HttpEngine, the value of the request parameter "serviceContext" is passed to the "deserialize" method of "XmlSerializer". Apache Ofbiz is affected via two different dependencies: "commons-beanutils" and an out-dated version of "commons-fileupload" Mitigation: Upgrade to 16.11.06 or manually apply the commits from OFBIZ-10770 and OFBIZ-10837 on branch 16

 
2019-09-05
Medium
CVE-2019-5069

Vendor: Epignosishq
Software: Efront lms
 

 
A code execution vulnerability exists in Epignosis eFront LMS v5.2.12. A specially crafted web request can cause unsafe deserialization potentially resulting in PHP code being executed. An attacker can send a crafted web parameter to trigger this vulnerability.

 
Medium
CVE-2018-11569

Vendor: Eventum project
Software: Eventum
 

 
Controller/ListController.php in Eventum 3.5.0 is vulnerable to Deserialization of Untrusted Data. Fixed in version 3.5.2.

 
2019-08-29
Medium
CVE-2019-15780

Vendor: Formidableforms
Software: Formidable
 

 
The formidable plugin before 4.02.01 for WordPress has unsafe deserialization.

 
2019-08-26
Medium
CVE-2018-20993

Vendor: Yaml-rust project
Software: Yaml-rust
 

 
An issue was discovered in the yaml-rust crate before 0.4.1 for Rust. There is uncontrolled recursion during deserialization.

 
Medium
CVE-2019-15521

Vendor: Spoon-library
Software: Spoon library
 

 
Spoon Library through 2014-02-06, as used in Fork CMS before 1.4.1 and other products, allows PHP object injection via a cookie containing an object.

 
2019-08-22
Medium
CVE-2018-20987

Vendor: Tribulant
Software: Newsletters
 

 
The newsletters-lite plugin before 4.6.8.6 for WordPress has PHP object injection.

 

 


Copyright 2019, cxsecurity.com

 

Back to Top