CVE-2019-13956

Name of the Vulnerable Software and Affected Versions Discuz!ML versions 3.2 through 3.4

Description The issue allows remote attackers to execute arbitrary PHP code via a modified language cookie. This can be achieved by altering the cookie value, for example, changing 4gH4 0df5 language=en to 4gH4 0df5 language=en'.phpinfo().';. The attack vector involves manipulating the language parameter in the cookie to inject malicious PHP code.

Recommendations For Discuz!ML versions 3.2 through 3.4, consider restricting access to the language cookie or implementing input validation to prevent malicious modifications. As a temporary workaround, monitor server logs for suspicious activity related to the language cookie.