MidnightBSD

Advisories for spoon-library

CVE-2019-15521 HIGH

Spoon Library through 2014-02-06, as used in Fork CMS before 1.4.1 and other products, allows PHP object injection via a cookie containing an object.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-502,

Products Affected

Vendor Product Version
spoon-library spoon_library *
fork-cms fork_cms *