CVE-2014-1999 Information

Feb 14, 2021 cve

Description

The auto-format feature in the Request_Curl class in FuelPHP 1.1 through 1.7.1 allows remote attackers to execute arbitrary code via a crafted response.

Reference

http://fuelphp.com/security-advisories http://jvn.jp/en/jp/JVN94791545/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2014-000082 The auto-format feature in the Request_Curl class in FuelPHP 1.1 through 1.7.1 allows remote attackers to execute arbitrary code via a crafted response.

Share on: