[KIS-2017-01] PEAR HTML_AJAX <= 0.5.7 (PHP Serializer) PHP Object Injection Vulnerability

Posted by Egidio Romano on Feb 06

—————————————————————————
PEAR HTML_AJAX <= 0.5.7 (PHP Serializer) PHP Object Injection Vulnerability
—————————————————————————

[-] Software Link:

https://pear.php.net/package/HTML_AJAX

[-] Affected Versions:

All versions from 0.3.0 to 0.5.7.

[-] Vulnerability Description:

The vulnerable code is located within the HTML_AJAX_Serializer_PHP…

Leave a Reply