Home / os / win7

Artica Proxy 4.50 Unauthenticated PHP Deserialization

Posted on 06 March 2024

The Artica Proxy administrative web application will deserialize arbitrary PHP objects supplied by unauthenticated users and subsequently enable code execution as the www-data user. Version 4.50 is affected.

 

TOP