Falhas do tipo CWE-502
2.250 resultadosCVE-2023-52225CRITICALWordPress Taggbox Plugin <= 3.1 is vulnerable to PHP Object InjectionEPSS 0.6%CVE-2024-43141CRITICALWordPress Participants Database plugin <= 2.5.9.2 - PHP Object Injection vulnerabilityEPSS 0.6%CVE-2024-30223CRITICALWordPress ARMember plugin <= 4.0.26 - Unauthenticated PHP Object Injection vulnerabilityEPSS 0.6%CVE-2025-26885HIGHWordPress Assistant Plugin <= 1.5.1 - PHP Object Injection vulnerabilityEPSS 0.6%CVE-2023-52218CRITICALWordPress WooCommerce Tranzila Gateway Plugin <= 1.0.8 is vulnerable to PHP Object InjectionEPSS 0.6%CVE-2017-20208CRITICALRegistrationMagic - Custom Registration Forms <= 3.7.9.2 - PHP Object InjectionEPSS 0.6%CVE-2025-0428HIGHAI Power: Complete AI Pack <= 1.8.96 - Authenticated (Admin+) PHP Object Injection via wpaicg_export_promptsEPSS 0.6%CVE-2025-0429HIGHAI Power: Complete AI Pack <= 1.8.96 - Authenticated (Admin+) PHP Object Injection via wpaicg_export_ai_formsEPSS 0.6%CVE-2026-24157HIGHNVIDIA NeMo Framework contains a vulnerability in checkpoint loading where an attacker could cause remote code execution. A successful exploEPSS 0.6%CVE-2026-24159HIGHNVIDIA NeMo Framework contains a vulnerability where an attacker may cause remote code execution. A successful exploit of this vulnerabilityEPSS 0.6%CVE-2026-41635CRITICALApache MINA: AbstractIoBuffer.resolveClass() null-clazz Branch Skips acceptMatchers Filter — Full Object Deserialization RCEEPSS 0.6%CVE-2024-10913HIGHClone <= 2.4.6 - Unauthenticated PHP Object Injection via 'recursive_unserialized_replace'EPSS 0.6%CVE-2025-5662CRITICALDeserialization Vulnerability in h2oai/h2o-3EPSS 0.6%CVE-2025-49841HIGHGHSL-2025-053: GPT-SoVITS Deserialization of Untrusted Data vulnerabilityEPSS 0.6%CVE-2025-49840HIGHGHSL-2025-052: GPT-SoVITS Deserialization of Untrusted Data vulnerabilityEPSS 0.6%CVE-2025-71374HIGHpicklescan - Arbitrary Code Execution via Undetected profile.Profile.runEPSS 0.6%CVE-2024-5675CRITICALUnreliable data deserialization vulnerability in MentorEPSS 0.6%CVE-2024-3967HIGHRemote Code Execution vulnerability in the iManagerEPSS 0.6%CVE-2024-10962HIGHMigration, Backup, Staging – WPvivid <= 0.9.107 - Unauthenticated PHP Object InjectionEPSS 0.6%CVE-2025-5499MEDIUMslackero phpwcms image_resized.php getimagesize deserializationEPSS 0.6%