Critical severity9.8NVD Advisory· Published Jan 20, 2017· Updated Jun 17, 2026
CVE-2017-5543
CVE-2017-5543
Description
includes/classes/ia.core.users.php in Subrion CMS 4.0.5 allows remote attackers to conduct PHP Object Injection attacks via crafted serialized data in a salt cookie in a login request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
intelliants/subrionPackagist | >= 4.0.5, < 4.1.0 | 4.1.0 |
Affected products
2- cpe:2.3:a:intelliants:subrion:4.0.5:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
5- github.com/intelliants/subrion/issues/297nvdIssue TrackingPatchThird Party AdvisoryWEB
- www.securityfocus.com/bid/95688nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-4j79-4m6q-77vfghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-5543ghsaADVISORY
- github.com/intelliants/subrion/commit/019dee20a38f39a5827aae2eb92f09b1f6afb7bbghsaWEB
News mentions
0No linked articles in our index yet.