Deserialization of Untrusted Data in packagist/topthink/framework
Deserialization of Untrusted Data
ThinkPHP v6.0.13 was discovered to contain a deserialization vulnerability via the component League\Flysystem\Cached\Storage\Psr6Cache. This vulnerability allows attackers to execute arbitrary code via a crafted payload.
Unfortunately, there is no solution available yet.