Full title: Artica Proxy 4.50 Unauthenticated PHP Deserialization Vulnerability 
Category: web applications
Platform: php
The Artica Proxy administrative web application will deserialize arbitrary PHP objects supplied by unauthenticated users and subsequently enable code execution as the www-data user. Version 4.50 is affected.

# 0day.today @ http://0day.today/