Deserialization of Untrusted Data in PublicCMS v.4.0.202302.e allows a remote attacker to execute arbitrary code via a crafted script to the writeReplace function.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-11-20T00:00:00

Updated: 2024-08-02T21:01:22.507Z

Reserved: 2023-10-30T00:00:00

Link: CVE-2023-46990

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2023-11-20T20:15:07.407

Modified: 2023-11-28T21:59:25.917

Link: CVE-2023-46990

cve-icon Redhat

No data.