klezVirus
klezVirus
Hi @nilunb, trying to get over a few issues but I have no details to reproduce this one. If you can help me reproduce this issue I'll gladly try to...
Added to the Roadmap. Thanks for the suggestion! :D
The main problem I see is that a POP chain is NEVER a vulnerability by itself. The vulnerability would be to call `unserialiase()` to deserialise unvalidated input. But this instance...
@pasterp If you deserialise untrusted data, it's your fault for doing that. If there is whatever POP chain in your code, you may allow an attacker to execute arbitrary code,...
Oh wow, good spot! Thanks for letting me know! Gonna give it a look!
Hi there, I might be able to work on that, just struggling to find the time. I'll add it on the plan