Lucene search
WpvulndbWPVDB-ID:DCCFDD62-D164-4765-88C3-4D927B8B673DHistoryJun 22, 2021 - 12:00 a.m.
CiviCRM < 5.24.3 - Authenticated Phar Deserialization
2021-06-2200:00:00
wpscan.com
9
0.001 Low
EPSS
Percentile
42.0%
The plugin was vulnerable to Authenticated Phar Deserialization. The vulnerability was discovered by sonarsource. Update to versions 5.24.3 and above to patch the vulnerability.
Related
osv
osv
CVE-2020-36388
2021-06-17 19:15:07
BIT-civicrm-2020-36388
2024-03-06 10:51:07
prion
prion
Design/Logic Flaw
2021-06-17 19:15:00
cvelist
cvelist
CVE-2020-36388
2021-06-17 00:00:00
cve
cve
CVE-2020-36388
2021-06-17 19:15:07
patchstack
patchstack
ubuntucve
ubuntucve
CVE-2020-36388
2021-06-17 00:00:00
debiancve
debiancve
CVE-2020-36388
2021-06-17 19:15:07
nvd
nvd
CVE-2020-36388
2021-06-17 19:15:07
sonarsource
sonarsource
CiviCRM 5.22.0 - Code Execution Vulnerability Chain Explained
2021-06-22 00:00:00