Falhas do tipo CWE-502
2.250 resultadosCVE-2024-1032HIGHopenBI Test Connection Databasesource.php testConnection deserializationEPSS 0.8%CVE-2021-42698HIGHAzeoTech DAQFactoryEPSS 0.8%CVE-2022-2830HIGHDeserialization of Untrusted Data in GravityZone Console On-Premise (VA-10573)EPSS 0.8%CVE-2026-33725HIGHMetabase vulnerable to RCE and Arbitrary File Read via H2 JDBC INIT Injection in EE Serialization ImportEPSS 0.8%CVE-2026-3422CRITICALe-Excellence|U-Office Force - Insecure DeserializationEPSS 0.8%CVE-2025-62515CRITICALRemote Code Execution by Pickle Deserialization via FlightServer in pyquokkaEPSS 0.8%CVE-2024-49699HIGHWordPress ARPrice plugin <= 4.1.3 - PHP Object Injection vulnerabilityEPSS 0.8%CVE-2025-58748HIGHDataease H2 data source JDBC URL validation bypass leads to remote code executionEPSS 0.8%CVE-2025-43850HIGHGHSL-2025-020_Retrieval-based-Voice-Conversion-WebUIEPSS 0.8%CVE-2025-43849HIGHGHSL-2025-019_Retrieval-based-Voice-Conversion-WebUIEPSS 0.8%CVE-2024-24551HIGHBludit - Remote Code Execution (RCE) through Image APIEPSS 0.8%CVE-2024-13770HIGHPuzzles | WP Magazine / Review with Store WordPress Theme + RTL <= 4.2.4 - Unauthenticated PHP Object InjectionEPSS 0.8%CVE-2023-49778CRITICALWordPress Sayfa Sayaç Plugin <= 2.6 is vulnerable to PHP Object InjectionEPSS 0.8%CVE-2024-0739HIGHHecheng Leadshop leadshop.php deserializationEPSS 0.8%CVE-2024-13789CRITICALRavpage <= 2.31 - PHP Object InjectionEPSS 0.8%CVE-2023-23649HIGHWordPress MainWP Links Manager Extension Plugin <= 2.1 - Unauthenticated PHP Object Injection VulnerabilityEPSS 0.8%CVE-2024-8016CRITICALThe Events Calendar Pro <= 7.0.2 - Authenticated (Administrator+) PHP Object Injection to Remote Code ExecutionEPSS 0.7%CVE-2024-22369HIGHApache Camel: Camel-SQL: Unsafe Deserialization from JDBCAggregationRepositoryEPSS 0.7%CVE-2025-30773HIGHWordPress TranslatePress plugin <= 2.9.6 - PHP Object Injection VulnerabilityEPSS 0.7%CVE-2025-68665HIGHLangChain serialization injection vulnerability enables secret extractionEPSS 0.7%