Deserialization of Untrusted Data in PublicCMS v.4.0.202302.e allows a remote attacker to execute arbitrary code via a crafted script to the writeReplace function.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-11-20T00:00:00
Updated: 2024-08-02T21:01:22.507Z
Reserved: 2023-10-30T00:00:00
Link: CVE-2023-46990
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-11-20T20:15:07.407
Modified: 2023-11-28T21:59:25.917
Link: CVE-2023-46990
Redhat
No data.