Количество 3
Количество 3
CVE-2014-8684
CodeIgniter before 3.0 and Kohana 3.2.3 and earlier and 3.3.x through 3.3.2 make it easier for remote attackers to spoof session cookies and consequently conduct PHP object injection attacks by leveraging use of standard string comparison operators to compare cryptographic hashes.
CVE-2014-8684
CodeIgniter before 3.0 and Kohana 3.2.3 and earlier and 3.3.x through ...
GHSA-w9ph-q4h9-rwq6
CodeIgniter and Kohana vulnerable to PHP Object Injection
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2014-8684 CodeIgniter before 3.0 and Kohana 3.2.3 and earlier and 3.3.x through 3.3.2 make it easier for remote attackers to spoof session cookies and consequently conduct PHP object injection attacks by leveraging use of standard string comparison operators to compare cryptographic hashes. | CVSS3: 9.8 | 45% Средний | больше 8 лет назад |
| CVE-2014-8684 CodeIgniter before 3.0 and Kohana 3.2.3 and earlier and 3.3.x through ... | CVSS3: 9.8 | 45% Средний | больше 8 лет назад |
| GHSA-w9ph-q4h9-rwq6 CodeIgniter and Kohana vulnerable to PHP Object Injection | CVSS3: 9.8 | 45% Средний | больше 3 лет назад |
Уязвимостей на страницу