Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

lundi 18 janvier 2021

OpenCATS up to 0.9.5-3 guzzlehttp index.php __destruct parametersactivity:ActivityDataGrid deserialization

A vulnerability was found in OpenCATS up to 0.9.5-3 and classified as critical. This issue affects the function __destruct in the library lib/DataGrid.php of the file index.php?m=activity of the component guzzlehttp. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 148


Événements SSI