Lucene search

K

GoogleOSV:GHSA-W9PH-Q4H9-RWQ6

HistoryMay 17, 2022 - 12:47 a.m.

CodeIgniter and Kohana vulnerable to PHP Object Injection

2022-05-1700:47:12

Google

osv.dev

2

0.002 Low

EPSS

Percentile

65.0%

CodeIgniter before 3.0 and Kohana 3.2.3 and earlier and 3.3.x through 3.3.2 make it easier for remote attackers to spoof session cookies and consequently conduct PHP object injection attacks by leveraging use of standard string comparison operators to compare cryptographic hashes.

CPENameOperatorVersion
codeigniter/frameworkeq3.0rc2
kohana/coreeq3.3.2
kohana/coreeq3.2.3
codeigniter/frameworkeq3.0rc
codeigniter/frameworkeq3.0rc3
kohana/coreeq3.3.1

References

packetstormsecurity.com/files/130609/Seagate-Business-NAS-Unauthenticated-Remote-Command-Execution.html

seclists.org/fulldisclosure/2014/May/54

github.com/bcit-ci/CodeIgniter/blob/2.2.6/system/libraries/Session.php#L159

github.com/kohana/core/commit/66b409a6da2960130888989534ff1799532b8f32

github.com/kohana/core/pull/492

nvd.nist.gov/vuln/detail/CVE-2014-8684

web.archive.org/web/20140802041151/https://scott.arciszewski.me/research/full/php-framework-timing-attacks-object-injection

0.002 Low

EPSS

Percentile

65.0%

Related for OSV:GHSA-W9PH-Q4H9-RWQ6

veracode1 cvelist1 cve1 nvd1 prion1 github1 zdt3 packetstorm1