Fallos del tipo CWE-502

2276 resultados
CVE-2026-47161HIGHRELATE Vulnerable to Remote Code Execution (RCE) via Insecure Celery Pickle DeserializationEPSS 0.5%CVE-2025-47582CRITICALWordPress WPBot Pro Wordpress Chatbot <= 12.7.0 - PHP Object Injection VulnerabilityEPSS 0.5%CVE-2025-31052CRITICALWordPress The Fashion - Model Agency One Page Beauty Theme plugin <= 1.4.4 - Deserialization of untrusted data VulnerabilityEPSS 0.5%CVE-2024-53326HIGHLINQPad before 5.52.01 Pro edition is vulnerable to Unsafe Deserialization in LINQPad.AutoRefManager::PopulateFromCache(), leading to code eEPSS 0.5%CVE-2025-10769MEDIUMh2oai h2o-3 H2 JDBC Driver ImportSQLTable deserializationEPSS 0.5%CVE-2025-67729HIGHlmdeploy vulnerable to Arbitrary Code Execution via Insecure Deserialization in torch.load()EPSS 0.5%CVE-2026-9330HIGHIBM WebSphere Application Server is affected by remote code executionEPSS 0.5%CVE-2025-60228HIGHWordPress Knowledge Base theme <= 2.9 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2025-60234HIGHWordPress Single Property theme <= 2.8 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2025-60215HIGHWordPress Kriya theme <= 3.4 - PHP Object Injection VulnerabilityEPSS 0.5%CVE-2025-60212HIGHWordPress VEDA Theme <= 4.2 - PHP Object Injection VulnerabilityEPSS 0.5%CVE-2025-52740HIGHWordPress Boldermail Plugin <= 2.4.0 - PHP Object Injection VulnerabilityEPSS 0.5%CVE-2025-61168CRITICALAn issue in the cms_rest.php component of SIGB PMB v8.0.1.14 allows attackers to execute arbitrary code via unserializing an arbitrary file.EPSS 0.5%CVE-2026-31214CRITICALThe torch-checkpoint-shrink.py script in the ml-engineering project in commit 0099885db36a8f06556efe1faf552518852cb1e0 (2025-20-27) containsEPSS 0.5%CVE-2025-30165HIGHRemote Code Execution Vulnerability in vLLM Multi-Node Cluster ConfigurationEPSS 0.5%CVE-2026-40044CRITICALPachno 1.0.6 FileCache Deserialization Remote Code ExecutionEPSS 0.5%CVE-2026-57516HIGHRay < 2.56.0 Unsafe Deserialization RCE via WebDataset ReaderEPSS 0.5%CVE-2025-8145HIGHRedirection for Contact Form 7 <= 3.2.4 - Unauthenticated PHP Object InjectionEPSS 0.5%CVE-2025-23045HIGHCVAT allows remote code execution via tracker Nuclio functionsEPSS 0.5%CVE-2025-0841MEDIUMAridius XYZ News loadMore deserializationEPSS 0.5%