Weaknesses of type CWE-502

2,276 results
CVE-2026-40738HIGHWordPress Eldon theme <= 1.4.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-39446HIGHWordPress Kapee theme < 1.7.0 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-39550HIGHWordPress Aperitif theme <= 1.6 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-39443HIGHWordPress EmallShop theme <= 2.4.21 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-39567HIGHWordPress Santé theme <= 1.5.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-39556HIGHWordPress Konsept theme <= 1.9 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-39560HIGHWordPress Hiroshi theme <= 1.5.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-27369HIGHWordPress Celeste theme <= 1.3.6 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-39551HIGHWordPress Töbel theme <= 1.8.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-40752HIGHWordPress Manufaktur Solutions theme <= 1.1.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-40733HIGHWordPress ShiftUp theme <= 1.3 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-39539HIGHWordPress Alloggio - Hotel Booking theme <= 2.1.2 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-40753HIGHWordPress EasyMeals theme <= 1.5.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2024-38759MEDIUMWordPress Search & Replace plugin <= 3.2.2 - Deserialization of untrusted data vulnerabilityEPSS 0.3%CVE-2024-12703HIGHCWE-502: Deserialization of untrusted data vulnerability exists that could lead to loss of confidentiality, integrity and potential remote cEPSS 0.3%CVE-2025-48101HIGHWordPress Constant Contact for WordPress Plugin <= 4.1.1 - PHP Object Injection VulnerabilityEPSS 0.3%CVE-2026-22384CRITICALWordPress Applay - Shortcodes plugin <= 3.7 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2025-11273MEDIUMLaChatterie Verger provider.ts redirectToAuthorization deserializationEPSS 0.3%CVE-2026-49108CRITICALWordPress Moderno theme < 1.43 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2025-47579CRITICALWordPress Photography Theme <= 7.7.2 - PHP Object Injection VulnerabilityEPSS 0.3%