Falhas do tipo CWE-502
2.257 resultadosCVE-2026-41731HIGHIn Spring for Apache Kafka, overly broad trusted-package matching in header mappers exposes JDK classes to deserializationEPSS 0.5%CVE-2024-53326HIGHLINQPad before 5.52.01 Pro edition is vulnerable to Unsafe Deserialization in LINQPad.AutoRefManager::PopulateFromCache(), leading to code eEPSS 0.5%CVE-2025-10769MEDIUMh2oai h2o-3 H2 JDBC Driver ImportSQLTable deserializationEPSS 0.5%CVE-2025-67729HIGHlmdeploy vulnerable to Arbitrary Code Execution via Insecure Deserialization in torch.load()EPSS 0.5%CVE-2025-60215HIGHWordPress Kriya theme <= 3.4 - PHP Object Injection VulnerabilityEPSS 0.5%CVE-2025-61168CRITICALAn issue in the cms_rest.php component of SIGB PMB v8.0.1.14 allows attackers to execute arbitrary code via unserializing an arbitrary file.EPSS 0.5%CVE-2026-31214CRITICALThe torch-checkpoint-shrink.py script in the ml-engineering project in commit 0099885db36a8f06556efe1faf552518852cb1e0 (2025-20-27) containsEPSS 0.5%CVE-2025-60228HIGHWordPress Knowledge Base theme <= 2.9 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2025-60212HIGHWordPress VEDA Theme <= 4.2 - PHP Object Injection VulnerabilityEPSS 0.5%CVE-2025-52740HIGHWordPress Boldermail Plugin <= 2.4.0 - PHP Object Injection VulnerabilityEPSS 0.5%CVE-2025-60234HIGHWordPress Single Property theme <= 2.8 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2025-30165HIGHRemote Code Execution Vulnerability in vLLM Multi-Node Cluster ConfigurationEPSS 0.5%CVE-2026-40044CRITICALPachno 1.0.6 FileCache Deserialization Remote Code ExecutionEPSS 0.5%CVE-2025-8145HIGHRedirection for Contact Form 7 <= 3.2.4 - Unauthenticated PHP Object InjectionEPSS 0.5%CVE-2025-0841MEDIUMAridius XYZ News loadMore deserializationEPSS 0.5%CVE-2025-23045HIGHCVAT allows remote code execution via tracker Nuclio functionsEPSS 0.5%CVE-2026-57516HIGHRay < 2.56.0 Unsafe Deserialization RCE via WebDataset ReaderEPSS 0.5%CVE-2026-12256HIGHWordPress Avada theme <= 3.15.3 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2024-37361CRITICALHitachi Vantara Pentaho Business Analytics Server - Deserialization of Untrusted DataEPSS 0.5%CVE-2025-69130HIGHWordPress Entrepreneur - Booking for Small Businesses WordPress Theme theme <= 3.1.3 - PHP Object Injection vulnerabilityEPSS 0.5%