CVE-2019-16774

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-16774

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16774.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2019-16774

Aliases

GHSA-484f-743f-6jx2

Related

GHSA-484f-743f-6jx2

Published

2019-12-12T23:15:12.167Z

Modified

2025-11-20T10:59:24.599376Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

In phpfastcache before 5.1.3, there is a possible object injection vulnerability in cookie driver.

References

Affected packages

Git / github.com/phpsocialnetwork/phpfastcache

Affected ranges

Type: GIT
Repo: https://github.com/phpsocialnetwork/phpfastcache
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

62e788a64b383d9c7dd9c5c6b97526c2a95d8547

Fixed

c4527205cb7a402b595790c74310791f5b04a1a4

Affected versions

2.*

2.4.2

2.4.3

3.*

3.0.0

3.0.1

3.0.10

3.0.11

3.0.12

3.0.13

3.0.14

3.0.15

3.0.16

3.0.17

3.0.18

3.0.19

3.0.2

3.0.20

3.0.21

3.0.22

3.0.23

3.0.24

3.0.25

3.0.26

3.0.27

3.0.28

3.0.3

3.0.4

3.0.5

3.0.6

3.0.7

3.0.8

3.0.9

3.1.0

3.1.1

4.*

4.0

4.0.1

4.0.10

4.0.11

4.0.12

4.0.13

4.0.14

4.0.15

4.0.16

4.0.17

4.0.18

4.0.2

4.0.2-beta1

4.0.2beta1

4.0.3

4.0.3-beta1

4.0.4

4.0.5

4.0.6

4.0.7

4.0.8

4.0.9

4.1

4.1.0

4.1.1

4.2.1

4.2.2

4.2.3

4.2.4

4.3

4.3.1

4.3.10

4.3.11

4.3.12

4.3.13

4.3.14

4.3.15

4.3.16

4.3.17

4.3.2

4.3.3

4.3.4

4.3.5

4.3.6

4.3.7

4.3.8

4.3.9

5.*

5.0.0

5.0.0-alpha1

5.0.0-alpha2

5.0.0-beta1

5.0.0-beta2

5.0.0-rc1

5.0.0-rc2

5.0.0-rc3

5.0.1

5.0.10

5.0.11

5.0.12

5.0.2

5.0.3

5.0.4

5.0.5

5.0.6

5.0.7

5.0.8

5.0.9

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16774.json"