CakePHP is vulnerable to a file inclusion attack because of its use of the
"unserialize()" function on unchecked user input. This makes it possible
to inject arbitary objects into the scope.
"unserialize()" function on unchecked user input. This makes it possible
to inject arbitary objects into the scope.
CVE Link
Exploit Type - Old
Exploits/Remote
Exploit Platform
Product Name