Falhas do tipo CWE-502
2.250 resultadosCVE-2025-1403HIGHQiskit SDK denial of serviceEPSS 0.7%CVE-2024-9664HIGHWP All Import Pro <= 4.9.7 - Authenticated (Administrator+) PHP Object Injection via Import FileEPSS 0.7%CVE-2024-7561HIGHThe Next <= 1.1.0 - Authenticated (Contributor+) PHP Object InjectionEPSS 0.7%CVE-2025-23944HIGHWordPress WOOEXIM Plugin <= 5.0.0 - PHP Object Injection vulnerabilityEPSS 0.7%CVE-2026-25632CRITICALEPyT-Flow has unsafe JSON deserialization (__type__)EPSS 0.7%CVE-2026-42778CRITICALApache MINA: CWE-502 Deserialization of Untrusted Data (take 2)EPSS 0.7%CVE-2026-24656LOWApache Karaf: Decanter log-socket collector has deserialization vulnerabilityEPSS 0.7%CVE-2022-35872HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition 8.1.15 (b202EPSS 0.7%CVE-2026-7654HIGHAdmin Columns <= 7.0.18 - Authenticated (Contributor+) PHP Object Injection to Remote Code Execution via Custom Field Meta ValueEPSS 0.7%CVE-2026-45360HIGHApache Airflow: Arbitrary import in custom deadline-reference deserializationEPSS 0.7%CVE-2023-51505CRITICALWordPress Active Products Tables for WooCommerce Plugin <= 1.0.6 is vulnerable to PHP Object InjectionEPSS 0.7%CVE-2024-13906HIGHGallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress <= 4.7.3 - Authenticated (Administrator+) PHP Object InjectionEPSS 0.7%CVE-2025-1177MEDIUMdayrui XunRuiCMS Linkage.php import_add deserializationEPSS 0.7%CVE-2025-7876MEDIUMMetasoft 美特软件 MetaCRM download.jsp AnalyzeParam deserializationEPSS 0.7%CVE-2025-2622MEDIUMaizuda snail-job Workflow-Task Management Module check-node-expression getRuntime deserializationEPSS 0.7%CVE-2024-13921HIGHOrder Export & Order Import for WooCommerce <= 2.6.0 - Authenticated (Admin+) PHP Object Injection via form_data ParameterEPSS 0.6%CVE-2024-1432MEDIUMDeepFaceLab main.py apply_xseg deserializationEPSS 0.6%CVE-2023-52181CRITICALWordPress Theme per user Plugin <= 1.0.1 is vulnerable to PHP Object InjectionEPSS 0.6%CVE-2026-50632HIGHApache CXF: JNDI Injection Vulnerability in JMSConfigFactoryEPSS 0.6%CVE-2024-24797CRITICALWordPress ERE Recently Viewed Plugin <= 1.3 is vulnerable to PHP Object InjectionEPSS 0.6%