Description
badges/external.php in Moodle 2.5.x before 2.5.2 does not properly handle an object obtained by unserializing a description of an external badge, which allows remote attackers to conduct PHP object injection attacks via unspecified vectors, as demonstrated by overwriting the value of the userid parameter.
Remediation
References
Related Vulnerabilities
TYPO3 Other Vulnerability (CVE-2012-3530)
WordPress Plugin blogVault Real-time Backup PHP Object Injection (1.44)
MyBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-7566)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2101)
WordPress Plugin Ninja Forms with File Uploads Extension Arbitrary File Upload (3.3.0)