CVE-2019-7725

CRITICAL

NukeViet <4.3.04 - Deserialization

Title source: llm

Description

includes/core/is_user.php in NukeViet before 4.3.04 deserializes the untrusted nvloginhash cookie (i.e., the code relies on PHP's serialization format when JSON can be used to eliminate the risk).

References (4)

[Release Notes, Third Party Advisory] https://github.com/nukeviet/nukeviet/blob/4.3.04/CHANGELOG.txt

[Release Notes, Third Party Advisory] https://github.com/nukeviet/nukeviet/blob/nukeviet4.3/CHANGELOG.txt

View Writeup ZIP pw:eip

[Release Notes, Third Party Advisory] https://github.com/nukeviet/nukeviet/compare/4.3.03...4.3.04

[Patch, Third Party Advisory] https://github.com/nukeviet/nukeviet/pull/2740/commits/05dfb9b4531f12944fe39556f58449b9a56241be

Scores

CVSS v3 9.8

EPSS 0.0068

EPSS Percentile 71.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-502

Status published

Affected Products (2)

nukeviet/nukeviet < 4.3.04

nukeviet/nukeviet < 4.3.04Packagist

Timeline

Published Dec 31, 2020

Tracked Since Feb 18, 2026