CVE-2025-11135
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-29

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability was detected in pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. The affected element is the function loadLanguage of the file classes/class.database.php of the component Cookie Handler. Performing manipulation of the argument user_id results in deserialization. The attack can be initiated remotely. The exploit is now public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-29
Last Modified
2026-04-29
Generated
2026-06-16
AI Q&A
2025-09-29
EPSS Evaluated
2026-06-15
NVD
CVE-2025-11135
EUVD
EUVD-2025-31488
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
pmticket project-management-software *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-502 The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.
CWE-20 The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-11135 is a critical vulnerability in the pmTicket Project-Management-Software caused by insecure deserialization in the loadLanguage function of the Cookie Handler component. The software improperly deserializes user-controlled input from a cookie without validation, allowing an attacker to craft malicious serialized data that, when deserialized, leads to object injection. This enables the attacker to bypass authentication mechanisms and gain unauthorized access remotely. [1, 2]

Impact Analysis

This vulnerability can allow an attacker to remotely bypass authentication and gain unauthorized access to the pmTicket software. This compromises the confidentiality, integrity, and availability of the system, potentially exposing sensitive project management data and disrupting operations. [1, 2]

Detection Guidance

This vulnerability can be detected by monitoring for malicious serialized objects in the cookie named 'logged', as the vulnerability arises from unserializing user-controlled input from $_COOKIE['logged']. Additionally, attackers may be identified by searching for requests containing the file path 'classes/class.database.php' or the loadLanguage function. Google dorking techniques can be used to find vulnerable targets by searching URLs with this file path. Specific commands are not provided, but inspecting HTTP requests for suspicious serialized data in cookies and searching web server logs for access to 'classes/class.database.php' may help detect exploitation attempts. [2, 1]

Mitigation Strategies

No vendor patch or mitigation is currently available for this vulnerability. Immediate steps include replacing or discontinuing use of the affected pmTicket Project-Management-Software version. Since the vulnerability allows remote unauthenticated exploitation via insecure deserialization, disabling or restricting access to the vulnerable component or applying web application firewall (WAF) rules to block malicious serialized payloads in cookies may help mitigate risk temporarily. Monitoring for exploitation attempts and isolating affected systems are also recommended. [2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-11135. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart