UNA CMS 9.0.0-RC1 – 14.0.0-RC4 PHP Object Injection_CVE-2025-66571

9.3 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

UNA CMS versions 9.0.0-RC1 - 14.0.0-RC4 contain a PHP object injection vulnerability in BxBaseMenuSetAclLevel.php where the profile_id POST parameter is passed to PHP unserialize() without proper handling, allowing remote, unauthenticated attackers to inject arbitrary PHP objects and potentially write and execute arbitrary PHP code.

AI Analysis

PHP object injection vulnerability in UNA CMS

Basic Information

ID CVE-2025-66571

Source VulnCheck

Published Dec 4, 2025 at 20:43

Affected Product

Vendor Unknown

Product UNA CMS

Version 9.0.0-RC1

Affected Versions Unknown UNA CMS 9.0.0-RC1

CWE Classification

CWE-502

AI Assessment

AI Score 9.3 / 10

AI Severity Critical

Vendor UNA CMS Team

Product UNA CMS

Version 9.0.0-RC1 - 14.0.0-RC4

References

{
    "lastseen": "",
    "description": "UNA CMS versions 9.0.0-RC1 - 14.0.0-RC4 contain a PHP object injection vulnerability in BxBaseMenuSetAclLevel.php where the profile_id POST parameter is passed to PHP unserialize() without proper handling, allowing remote, unauthenticated attackers to inject arbitrary PHP objects and potentially write and execute arbitrary PHP code.",
    "published": "2025-12-04T20:43:52.499Z",
    "modified": "2025-12-04T20:43:58.737Z",
    "type": "cve",
    "title": "UNA CMS 9.0.0-RC1 - 14.0.0-RC4 PHP Object Injection",
    "source": "VulnCheck",
    "references": "https://www.exploit-db.com/exploits/52139\nhttps://unacms.com\nhttps://github.com/unacms/una\nhttps://karmainsecurity.com/KIS-2025-01\nhttps://www.vulncheck.com/advisories/una-cms-900-rc1-1400-rc4-php-object-injection",
    "id": "CVE-2025-66571",
    "bulletinFamily": "",
    "cwe": [
        "CWE-502"
    ],
    "cvelist": null,
    "sourceData": "Unknown UNA CMS 9.0.0-RC1",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "UNA CMS",
    "version": "9.0.0-RC1",
    "vendor": "Unknown",
    "ai_description": "PHP object injection vulnerability in UNA CMS",
    "ai_severity": "Critical",
    "ai_vendor": "UNA CMS Team",
    "ai_product": "UNA CMS",
    "ai_version": "9.0.0-RC1 - 14.0.0-RC4",
    "ai_score": 9.3
}