Description

Manual confirmation is required for this alert.

This script is using the PHP function unserialize() on user input. This is not recommended as it can lead to various vulnerabilities. Consult "Web references" for more information about this problem.

unserialize() takes a single serialized variable and converts it back into a PHP value. However, if the variable being unserialized is an object, after successfully reconstructing the object PHP will automatically attempt to call the __wakeup(), __destruct() member functions (if they exist). In some cases, this can lead to PHP code execution.

Remediation

It is not recommended to use unserialize() on user input.

References

Shocking News in PHP Exploitation

Related Vulnerabilities

WordPress Plugin Age Verification 'redirect_to' Parameter URI Redirection (0.4)

WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads PHP Code Injection (1.3)

Unauthenticated remote code execution vulnerability in Confluence Server and Data Center

FastCGI Unauthorized Access Vulnerability

Apache 2.x version older than 2.2.9

Severity

Medium

Classification

CWE-20 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:N CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Denial Of Service Abuse Of Functionality Code Execution Insecure Deserialization