Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [day] [month] [year] [list]
Date: Fri, 30 Sep 2016 14:54:20 +0800
From: Carl Peng <>
Subject: CVE request: b2evolution 6.7.6 Object Injection vulnerability

 i reported a object injection vulnerability to b2evolution team, and now
it has been fixed.

/htsrv/call_plugin.php #lines 31~40
param( 'params', 'string', null ); // serialized
if( is_null($params) )
{ // Default:
$params = array();
{ // params given. This may result in "false", but this means that
unserializing failed.
$params = @unserialize($params); //object injection
The parameter of "params" may lead to Object Injection by sending

This issue was reported by Peng Hua of Inc. and I would like
to request CVE for this issue (if not done so).


Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.