Falhas do tipo CWE-502
2.276 resultadosCVE-2026-31232HIGHThe CosyVoice project thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (EPSS 0.5%CVE-2026-9319CRITICALIBM WebSphere Application Server is affected by a remote code execution vulnerabilityEPSS 0.5%CVE-2025-14044HIGHVisitor Logic Lite <= 1.0.3 - Unauthenticated PHP Object Injection via 'lpblocks' CookieEPSS 0.5%CVE-2025-2043MEDIUMLinZhaoguan pb-cms Add New Topic admin#themes deserializationEPSS 0.5%CVE-2025-48459MEDIUMApache IoTDB: Deserialization of untrusted DataEPSS 0.5%CVE-2026-25615HIGHBlesta 3.x through 5.x before 5.13.3 allows object injection, aka CORE-5668.EPSS 0.5%CVE-2024-29800HIGHWordPress Timber plugin <= 1.23.0 - Deserialization of untrusted data vulnerabilityEPSS 0.5%CVE-2021-21371MEDIUMExecution of untrusted code through config fileEPSS 0.5%CVE-2025-12099HIGHAcademy LMS – WordPress LMS Plugin for Complete eLearning Solution <= 3.3.8 - Authenticated (Administrator+) PHP Object Injection via 'import_all_courses'EPSS 0.5%CVE-2021-37678CRITICALArbitrary code execution due to YAML deserializationEPSS 0.5%CVE-2026-41409CRITICALApache MINA: CWE-502 Deserialization of Untrusted DataEPSS 0.5%CVE-2026-7566MEDIUMLearnPress – Backup & Migration Tool <= 4.1.4 - Authenticated (Administrator+) PHP Object Injection via WXR XML File UploadEPSS 0.4%CVE-2025-59007CRITICALWordPress TF Woo Product Grid Addon For Elementor Plugin <= 1.0.1 - Deserialization of untrusted data VulnerabilityEPSS 0.4%CVE-2025-31422HIGHWordPress Visual Art | Gallery WordPress Theme <= 2.4 - PHP Object Injection VulnerabilityEPSS 0.4%CVE-2025-54012HIGHWordPress Welcart e-Commerce Plugin <= 2.11.16 - PHP Object Injection VulnerabilityEPSS 0.4%CVE-2024-7576HIGHProgress UI for WPF format provider unsafe deserialization vulnerabilityEPSS 0.4%CVE-2024-22460LOWDell PowerProtect DM5500 version 5.15.0.0 and prior contains an insecure deserialization Vulnerability. A remote attacker with high privilegEPSS 0.4%CVE-2026-21665HIGHThe Print Service component of Fiserv Originate Loans Peripherals (formerly Velocity Services) in unsupported version 2021.2.4 (build 4.7.31EPSS 0.4%CVE-2026-39472HIGHWordPress WooCommerce PDF Invoices & Packing Slips plugin < 5.9.0 - PHP Object Injection vulnerabilityEPSS 0.4%CVE-2026-39481HIGHWordPress Modula Image Gallery plugin <= 2.14.18 - PHP Object Injection vulnerabilityEPSS 0.4%