Fallos del tipo CWE-502
2250 resultadosCVE-2026-21226HIGHAzure Core shared client library for Python Remote Code Execution VulnerabilityEPSS 0.8%CVE-2024-1685HIGHSocial Media Share Buttons <= 2.1.0 - Authenticated (Subscriber+) PHP Object InjectionEPSS 0.8%CVE-2024-3018HIGHEssential Addons for Elementor <= 5.9.13 - Authenticated (Author+) PHP Object Injection via error_resetpasswordEPSS 0.8%CVE-2025-35051HIGHNewforma Project Center Server (NPCS) .NET unauthenticated deserializationEPSS 0.8%CVE-2024-11949HIGHGFI Archiver Store Service Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 0.8%CVE-2025-7916CRITICALSimopro Technology|WinMatrix3 - Insecure DeserializationEPSS 0.8%CVE-2024-11947HIGHGFI Archiver Core Service Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 0.8%CVE-2024-37060HIGHDeserialization of untrusted data can occur in versions of the MLflow platform running version 1.27.0 or newer, enabling a maliciously craftEPSS 0.8%CVE-2025-3623CRITICALUncanny Automator <= 6.4.0.1 - Unauthenticated PHP Object Injection in automator_api_decode_message FunctionEPSS 0.8%CVE-2024-3240HIGHConvertPlug <= 3.5.25 - Authenticated (Contributor+) PHP Object InjectionEPSS 0.8%CVE-2024-5351MEDIUManji-plus AJ-Report Javascript getValueFromJs deserializationEPSS 0.8%CVE-2024-5352MEDIUManji-plus AJ-Report validationRules deserializationEPSS 0.8%CVE-2024-7067MEDIUMkirilkirkov Ecommerce-Laravel-Bootstrap Cart.php getCartProductsIds deserializationEPSS 0.8%CVE-2023-4386HIGHEssential Blocks <= 4.2.0 - Unauthenticated PHP Object Injection via queriesEPSS 0.8%CVE-2023-34027HIGHWordPress Recently Viewed Products Plugin <= 1.0.0 is vulnerable to PHP Object InjectionEPSS 0.8%CVE-2024-25100CRITICALWordPress Coupon Referral Program plugin < 1.8.4 - Unauthenticated PHP Object Injection vulnerabilityEPSS 0.8%CVE-2025-43848HIGHGHSL-2025-018_Retrieval-based-Voice-Conversion-WebUIEPSS 0.8%CVE-2025-25692MEDIUMA PHAR deserialization vulnerability in the _getHeaders function of PrestaShop v8.2.0 allows attackers to execute arbitrary code via a craftEPSS 0.8%CVE-2025-43847HIGHGHSL-2025-017_Retrieval-based-Voice-Conversion-WebUIEPSS 0.8%CVE-2025-43846HIGHGHSL-2025-016_Retrieval-based-Voice-Conversion-WebUIEPSS 0.8%