SuiteCRM: PHAR deserialization vulnerability to code execution
5y agoen
Source
SnykSuiteCRM: PHAR deserialization vulnerability to code executionsnyk.ioThis advisory details a PHAR deserialization vulnerability that exists in SuiteCRM which could be leveraged by an authenticated administrator to execute commands on the underlying operating system.
Comments
Sign in to join the conversation.
No comments yet. Be the first.