[topthink/framework] Deserialization of Untrusted Data in topthink/framework

ThinkPHP v6.0.12 was discovered to contain a deserialization vulnerability via the component vendor\league\flysystem-cached-adapter\src\Storage\AbstractCache.php. This vulnerability allows attackers to execute arbitrary code via a crafted payload.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-33107
• https://github.com/top-think/framework/issues/2717
• https://github.com/advisories/GHSA-g377-x8rg-c9mf