Vulnerabilities > CVE-2018-11569 - Deserialization of Untrusted Data vulnerability in Eventum Project Eventum 3.5.0/3.5.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Controller/ListController.php in Eventum 3.5.0 is vulnerable to Deserialization of Untrusted Data. Fixed in version 3.5.2.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |