Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2010-4335

Published: 14/01/2011 Updated: 22/01/2011
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 760
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Cakefoundation

Vulnerability Summary

The _validatePost function in libs/controller/components/security.php in CakePHP 1.3.x up to and including 1.3.5 and 1.2.8 allows remote malicious users to modify the internal Cake cache and execute arbitrary code via a crafted data[_Token][fields] value that is processed by the unserialize function, as demonstrated by modifying the file_map cache to execute arbitrary local files.

Vulnerable Product Search on Vulmon Subscribe to Product

cakefoundation cakephp 1.3.0

cakefoundation cakephp 1.3.4

cakefoundation cakephp 1.3.5

cakefoundation cakephp 1.2.8

cakefoundation cakephp 1.3.2

cakefoundation cakephp 1.3.3

cakefoundation cakephp 1.3

cakefoundation cakephp 1.3.1

Vendor Advisories

Debian CVElist Bug Report Logs: CVE-2010-4335
Debian Bug report logs - #606386 CVE-2010-4335 Package: cakephp; Maintainer for cakephp is Dmitry Smirnov <onlyjob@debianorg>; Source for cakephp is src:cakephp (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Wed, 8 Dec 2010 20:21:05 UTC Severity: grave Tags: patch, security Fixed in ...

Exploits

Exploit DB: CakePHP 1.3.5/1.2.8 - 'Unserialize()' File Inclusion
Source: securityreasoncom/securityalert/8026 CakePHP <= 135 / 128 unserialize() Vulnerability felix |at| mallocim =========================================================================== ==== Overview: "CakePHP is a rapid development framework for PHP that provides an extensible architecture for developing, maintaining, and ...
Exploit DB: CakePHP 1.3.5/1.2.8 - Cache Corruption (Metasploit)
## # $Id: cakephp_cache_corruptionrb 11579 2011-01-14 16:25:37Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/cor ...

References

CWE-20http://www.osvdb.org/69352http://malloc.im/CakePHP-unserialize.txthttp://packetstormsecurity.org/files/view/95847/burnedcake.py.txthttps://github.com/cakephp/cakephp/commit/e431e86aa4301ced4273dc7919b59362cbb353cbhttp://secunia.com/advisories/42211http://securityreason.com/securityalert/8026http://www.exploit-db.com/exploits/16011https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606386https://nvd.nist.govhttps://www.exploit-db.com/exploits/16011/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook