Vulnerabilities > CVE-2019-15521 - Deserialization of Untrusted Data vulnerability in multiple products

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

NVD

Published: 2019-08-26

Updated: 2019-08-28

Summary

Spoon Library through 2014-02-06, as used in Fork CMS before 1.4.1 and other products, allows PHP object injection via a cookie containing an object.

Part	Description	Count
Application	Spoon-Library Spoon Library Spoon Library - Spoon Library Spoon Library 0.1.2 Spoon Library Spoon Library 1.0.0 Spoon Library Spoon Library 1.0.1 Spoon Library Spoon Library 1.0.2 Spoon Library Spoon Library 1.0.3 Spoon Library Spoon Library 1.1.0 Spoon Library Spoon Library 1.1.1 Spoon Library Spoon Library 1.1.3 Spoon Library Spoon Library 1.1.4 Spoon Library Spoon Library 1.1.5 Spoon Library Spoon Library 1.2.0 Spoon Library Spoon Library 1.3.0	13
Application	Fork-Cms Fork CMS Fork CMS 1.3.1 Fork CMS Fork CMS 1.3.2 Fork CMS Fork CMS 1.3.3 Fork CMS Fork CMS 1.3.4 Fork CMS Fork CMS 1.3.5 Fork CMS Fork CMS 1.3.6 Fork CMS Fork CMS 1.3.7 Fork CMS Fork CMS 1.3.8 Fork CMS Fork CMS 1.3.9 Fork CMS Fork CMS 1.3.10 Fork CMS Fork CMS 1.3.11 Fork CMS Fork CMS 1.3.12 Fork CMS Fork CMS 1.3.13 Fork CMS Fork CMS 1.3.14 Fork CMS Fork CMS 1.3.15 Fork CMS Fork CMS 1.3.16 Fork CMS Fork CMS 1.3.17 Fork CMS Fork CMS 1.3.18 Fork CMS Fork CMS 1.4.0	19