Vulnerabilities > Validformbuilder

DATE CVE VULNERABILITY TITLE RISK
2018-02-09 CVE-2018-1000059 Deserialization of Untrusted Data vulnerability in Validformbuilder Validform Builder 4.5.4
ValidFormBuilder version 4.5.4 contains a PHP Object Injection vulnerability in Valid Form unserialize method that can result in Possible to execute unauthorised system commands remotely and disclose file contents in file system.
network
low complexity
validformbuilder CWE-502
critical
9.8