Vulnerability Database

296,172

Total vulnerabilities in the database

CVE-2024-48112

A deserialization vulnerability in the component \controller\Index.php of Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code.

Published: Oct 30, 2024
Updated: Jun 18, 2025
CVE: CVE-2024-48112
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
thinkphp / thinkphp	6.1.3	8.0.4.x