PHP Object Injection Vulnerability in ValidFormBuilder Version 4.5.4

PHP Object Injection Vulnerability in ValidFormBuilder Version 4.5.4

CVE-2018-1000059 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

ValidFormBuilder version 4.5.4 contains a PHP Object Injection vulnerability in Valid Form unserialize method that can result in Possible to execute unauthorised system commands remotely and disclose file contents in file system.

Learn more about our Web Application Penetration Testing UK.