NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-42472

Summary	Unsafe deserialization vulnerability in MixPHP Framework 2.x thru 2.2.17. The session and cache handlers use unserialize() on data from Redis in the RedisHandler object.
Publication Date	May 2, 2026, 1:16 a.m.
Registration Date	May 2, 2026, 4:07 a.m.
Last Update	May 2, 2026, 1:16 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://gist.github.com/sgInnora/fa46386840fe978a30d7e53c458f2975	cve@mitre.org
2	https://github.com/mix-php/mix	cve@mitre.org
3	https://github.com/mix-php/mix/blob/v2.2.17/src/sync-invoke/src/Server.php	cve@mitre.org

Common Vulnerabilities List