Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-502 (可信数据的反序列化) — Vulnerability Class 1676

1676 vulnerabilities classified as CWE-502 (可信数据的反序列化). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-69382 WordPress Themesflat Elementor plugin <= 1.0.1 - PHP Object Injection vulnerability — Themesflat Elementor 9.8 Critical2026-02-20
CVE-2025-69372 WordPress SevenHills theme <= 1.6.2 - PHP Object Injection vulnerability — SevenHills 9.8 Critical2026-02-20
CVE-2025-69370 WordPress Capella theme <= 2.5.5 - PHP Object Injection vulnerability — Capella 9.8 Critical2026-02-20
CVE-2025-69371 WordPress KindlyCare theme <= 1.6.1 - PHP Object Injection vulnerability — KindlyCare 9.8 Critical2026-02-20
CVE-2025-69329 WordPress Prestige theme < 1.4.1 - PHP Object Injection vulnerability — Prestige 9.8 Critical2026-02-20
CVE-2025-69328 WordPress Booking and Rental Manager plugin <= 2.5.9 - PHP Object Injection vulnerability — Booking and Rental Manager 8.8 High2026-02-20
CVE-2025-69301 WordPress PhotoMe theme <= 5.6.11 - PHP Object Injection vulnerability — PhotoMe 9.8 Critical2026-02-20
CVE-2025-69294 WordPress PeakShops theme <= 1.5.9 - PHP Object Injection vulnerability — PeakShops 8.8 High2026-02-20
CVE-2025-68853 WordPress Contact Manager plugin <= 9.1.1 - PHP Object Injection vulnerability — Contact Manager 8.8 High2026-02-20
CVE-2025-68541 WordPress Ippsum theme <= 1.2.0 - PHP Object Injection vulnerability — Ippsum 9.8 Critical2026-02-20
CVE-2025-68526 WordPress Modal Popup Box plugin <= 1.6.1 - PHP Object Injection vulnerability — Modal Popup Box 8.8 High2026-02-20
CVE-2025-68531 WordPress ModelTheme Addons for WPBakery and Elementor plugin < 1.5.6 - PHP Object Injection vulnerability — ModelTheme Addons for WPBakery and Elementor 8.8 High2026-02-20
CVE-2025-67997 WordPress Travelicious theme < 1.6.7 - PHP Object Injection vulnerability — Travelicious 9.8 Critical2026-02-20
CVE-2025-67995 WordPress PatioTime theme < 2.1 - PHP Object Injection vulnerability — PatioTime 9.8 Critical2026-02-20
CVE-2025-67996 WordPress Nestin theme < 1.2.6 - PHP Object Injection vulnerability — Nestin 9.8 Critical2026-02-20
CVE-2026-25316 WordPress CartFlows plugin <= 2.1.19 - PHP Object Injection vulnerability — CartFlows 7.2 High2026-02-19
CVE-2026-23549 WordPress WpEvently plugin <= 5.1.1 - PHP Object Injection vulnerability — WpEvently 9.8 Critical2026-02-19
CVE-2026-23542 WordPress Grand Restaurant theme <= 7.0.10 - PHP Object Injection vulnerability — Grand Restaurant 9.8 Critical2026-02-19
CVE-2026-23544 WordPress Valenti theme <= 5.6.3.5 - PHP Object Injection vulnerability — Valenti 8.8 High2026-02-19
CVE-2026-22333 WordPress YITH WooCommerce Compare plugin <= 3.6.0 - Deserialization of untrusted data vulnerability — YITH WooCommerce Compare 7.2 High2026-02-19
CVE-2025-15579 An Insecure Deserialization vulnerability has been discovered in OpenText™ Directory Services. — Directory Services 8.8AIHighAI2026-02-18
CVE-2026-1426 Advanced AJAX Product Filters <= 3.1.9.6 - Authenticated (Author+) PHP Object Injection via Live Composer Compatibility — Advanced AJAX Product Filters 8.8 High2026-02-18
CVE-2025-60038 Bosch Rexroth IndraWorks 安全漏洞 — IndraWorks 7.8 High2026-02-18
CVE-2025-60037 Bosch Rexroth IndraWorks 安全漏洞 — IndraWorks 7.8 High2026-02-18
CVE-2025-60036 Bosch Rexroth IndraWorks 安全漏洞 — IndraWorks 7.8 High2026-02-18
CVE-2025-60035 Bosch Rexroth IndraWorks 安全漏洞 — IndraWorks 7.8 High2026-02-18
CVE-2025-33253 NVIDIA Nemo Framework 代码问题漏洞 — NeMo Framework 7.8 High2026-02-18
CVE-2025-33252 NVIDIA Nemo Framework 代码问题漏洞 — NeMo Framework 7.8 High2026-02-18
CVE-2025-33245 NVIDIA Nemo Framework 代码问题漏洞 — NeMo Framework 8.0 High2026-02-18
CVE-2025-33243 NVIDIA Nemo Framework 代码问题漏洞 — NeMo Framework 7.8 High2026-02-18

Vulnerabilities classified as CWE-502 (可信数据的反序列化) represent 1676 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.