CVE-2018-1000059

CVE: CVE-2018-1000059
Published: 2018-02-09T23:29Z
Vendor: validformbuilder
Products: validform_builder
Versions: 4.5.4,
Description Language: en
Description: ValidFormBuilder version 4.5.4 contains a PHP Object Injection vulnerability in Valid Form unserialize method that can result in Possible to execute unauthorised system commands remotely and disclose file contents in file system.
References:
https://github.com/validformbuilder/validformbuilder/issues/126