Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Very High


Disclosure Date: March 21, 2024 (last updated March 21, 2024)
The Artica-Proxy administrative web application will deserialize arbitrary PHP objects supplied by unauthenticated users and subsequently enable code execution as the "www-data" user.
Attacker Value
Very High


Disclosure Date: February 12, 2024 (last updated February 15, 2024)
Deserialization of Untrusted Data in Gambio through allows attackers to run arbitrary code via "search" parameter of the Parcelshopfinder/AddAddressBookEntry" function.