Description
The Cubecart::_basket method in classes/cubecart.class.php in CubeCart 5.0.0 through 5.2.0 allows remote attackers to unserialize arbitrary PHP objects via a crafted shipping parameter, as demonstrated by modifying the application configuration using the Config object.
Remediation
References
Related Vulnerabilities
WordPress Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-17670)
MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-34750)
WordPress Plugin MailPoet Newsletters (Previous) Unspecified Vulnerability (2.7.8)
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-44967)
Oracle Application Server CVE-2007-5526 Vulnerability (CVE-2007-5526)