Stijn Vrolijk

**Name of the Vulnerable Software and Affected Versions** Spoon Library versions through 2014-02-06 Fork CMS versions prior to 1.4.1 **Description** The issue allows PHP object injection via a cookie containing an object. This can be exploited by manipulating the cookie to inject malicious PHP objects. **Recommendations** For Spoon Library versions through 2014-02-06, update to a version released after 2014-02-06 to resolve the issue. For Fork CMS versions prior to 1.4.1, update to version 1.4.1 or later to fix the problem. As a temporary workaround, consider restricting access to cookies or validating user-input data to minimize the risk of exploitation.