Deserialization Vulnerability in ThinkPHP by ThinkCMF
CVE-2022-45982
9.8CRITICAL
What is CVE-2022-45982?
A deserialization vulnerability in ThinkPHP versions 6.0.0 to 6.0.13 and 6.1.0 to 6.1.1 allows attackers to craft specific payloads that can lead to arbitrary code execution. This flaw can be exploited to manipulate the execution flow of applications, presenting significant security risks to potentially sensitive data and system integrity. It is crucial for users of these versions to apply patches and updates to mitigate this risk.
