[CRITICAL] Spoon Library as used in Fork CMS allows PHP object injection

PKSA-91rt-fcx1-9xp3 CVE-2019-15521 GHSA-2p2x-mw56-jc98

Affected version: <1.4.1

Reported by:
GitHub