Weaknesses of type CWE-502
2,225 resultsCVE-2023-50222HIGHInductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 1.1%CVE-2024-23114CRITICALApache Camel: Camel-CassandraQL: Unsafe Deserialization from CassandraAggregationRepositoryEPSS 1.1%CVE-2024-0668MEDIUMAdvanced Database Cleaner <= 3.1.3 - Authenticated(Administrator+) PHP Object Injection via process_bulk_actionEPSS 1.1%CVE-2022-41922HIGHyiisoft/yii before v1.1.27 vulnerable to Remote Code Execution if the application calls `unserialize()` on arbitrary user inputEPSS 1.1%CVE-2025-30384HIGHMicrosoft SharePoint Server Remote Code Execution VulnerabilityEPSS 1.1%CVE-2024-42363HIGHGHSL-2023-136_SamsonEPSS 1.1%CVE-2024-26579CRITICALApache Inlong JDBC VulnerabilityEPSS 1.1%CVE-2024-1856HIGHProgress Telerik Reporting Remote Deserialization VulnerabilityEPSS 1.1%CVE-2022-3334HIGHEasy WP SMTP < 1.5.0 - Admin+ PHP Objection InjectionEPSS 1.1%CVE-2022-3366HIGHPublishPress Capabilities < 2.5.2 - Admin+ PHP Objection InjectionEPSS 1.1%CVE-2022-3380HIGHCustomizer Export/Import < 0.9.5 - Admin+ PHP Objection InjectionEPSS 1.1%CVE-2022-3374HIGHOcean Extra < 2.0.5 - Admin+ PHP Objection InjectionEPSS 1.1%CVE-2024-9511CRITICALFluentSMTP – WP SMTP Plugin with Amazon SES, SendGrid, MailGun, Postmark, Google and Any SMTP Provider <= 2.2.82 - Unauthenticated PHP Object InjectionEPSS 1.1%CVE-2026-26221CRITICALHyland OnBase Timer Service Unauthenticated .NET Remoting RCEEPSS 1.1%CVE-2022-45185HIGHAn issue was discovered in SuiteCRM 7.12.7. Authenticated users can use CRM functions to upload malicious files. Then, deserialization can bEPSS 1.1%CVE-2023-3308MEDIUMwhaleal IceFrog Aviator Template Engine deserializationEPSS 1.1%CVE-2023-30899CRITICALA vulnerability has been identified in Siveillance Video 2020 R2 (All versions < V20.2 HotfixRev14), Siveillance Video 2020 R3 (All versionsEPSS 1.1%CVE-2023-30898CRITICALA vulnerability has been identified in Siveillance Video 2020 R2 (All versions < V20.2 HotfixRev14), Siveillance Video 2020 R3 (All versionsEPSS 1.1%CVE-2024-1813CRITICALSimple Job Board <= 2.11.0 - Unauthenticated PHP Object Injection via Job Application FieldsEPSS 1.1%CVE-2026-12569CRITICALRemote Code Execution (RCE) vulnerability in Windchill PDMlinkEPSS 1.1%