CVE-2013-7034
The setCookieValue function in _lib/functions.global.inc.php in LiveZilla before 5.1.2.1 allows remote attackers to execute arbitrary PHP code via a serialized PHP object in a cookie.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0070 (0.7%)
Percentil: 72.1%
EPSS: 2026-05-06
Afecta
livezilla:livezillaDescripción técnica
The setCookieValue function in _lib/functions.global.inc.php in LiveZilla before 5.1.2.1 allows remote attackers to execute arbitrary PHP code via a serialized PHP object in a cookie.
Publicada: 5/5/2014, 17:06:05
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://archives.neohapsis.com/archives/bugtraq/2013-12/0078.html
- http://forums.livezilla.net/index.php?/topic/163-livezilla-changelog/
- http://www.securityfocus.com/bid/64383
- https://exchange.xforce.ibmcloud.com/vulnerabilities/89796
- http://archives.neohapsis.com/archives/bugtraq/2013-12/0078.html
- http://forums.livezilla.net/index.php?/topic/163-livezilla-changelog/
- http://www.securityfocus.com/bid/64383
- https://exchange.xforce.ibmcloud.com/vulnerabilities/89796