CakePHP unserialize Remote Code Execution Exploit

CakePHP is vulnerable to a file inclusion attack because of its use of the "unserialize()" function on unchecked user input. This makes it possible to inject arbitary objects into the scope.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2010-4335
Released Date: 
Wednesday, August 10, 2011 - 19:00