Weaknesses of type CWE-502
2,250 resultsCVE-2022-2870MEDIUMlaravel deserializationEPSS 0.7%CVE-2024-2721HIGHWordPress Social Media Share Buttons plugin <= 2.1.0 - PHP Object Injection vulnerabilityEPSS 0.7%CVE-2025-11938MEDIUMChurchCRM setup.php deserializationEPSS 0.7%CVE-2025-27522MEDIUMApache InLong: JDBC Vulnerability during verification processingEPSS 0.7%CVE-2025-27526MEDIUMApache InLong: JDBC Vulnerability For URLEncode and backspace bypassEPSS 0.7%CVE-2024-3301HIGHPost-authentication Unsafe .NET object deserialization vulnerability affecting DELMIA Apriso Release 2019 through Release 2024EPSS 0.7%CVE-2025-62703HIGHFugue is Vulnerable to Remote Code Execution by Pickle Deserialization via FlaskRPCServerEPSS 0.7%CVE-2017-20206CRITICALAppointments <= 2.2.1 - Unauthenticated PHP Object InjectionEPSS 0.7%CVE-2017-20207CRITICALFlickr Gallery <= 1.5.2 - Unauthenticated PHP Object InjectionEPSS 0.7%CVE-2024-0936MEDIUMvan_der_Schaar LAB TemporAI PKL File load_from_file deserializationEPSS 0.7%CVE-2025-58163HIGHFreeScout's deserialization of untrusted data can lead to Remote Code ExecutionEPSS 0.7%CVE-2026-27172HIGHApache Camel: Unsafe Java deserialization in camel-consul ConsulRegistry allows arbitrary code execution via malicious values read from the Consul KV storeEPSS 0.7%CVE-2026-6857HIGHCamel-infinispan: camel-infinispan: remote code execution via unsafe deserializationEPSS 0.7%CVE-2024-34997HIGHjoblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_arraEPSS 0.7%CVE-2026-26220CRITICALLightLLM <= 1.1.0 PD Mode Unsafe Deserialization RCEEPSS 0.7%CVE-2025-49839HIGHGHSL-2025-051: GPT-SoVITS Deserialization of Untrusted Data vulnerabilityEPSS 0.7%CVE-2025-49838HIGHGHSL-2025-050: GPT-SoVITS Deserialization of Untrusted Data vulnerabilityEPSS 0.7%CVE-2025-49837HIGHGHSL-2025-049: GPT-SoVITS Deserialization of Untrusted Data vulnerabilityEPSS 0.7%CVE-2025-1403HIGHQiskit SDK denial of serviceEPSS 0.7%CVE-2024-3954HIGHDitty – Responsive News Tickers, Sliders, and Lists <= 3.1.38 - Authenticated (Contributor+) PHP Object InjectionEPSS 0.7%