Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-502 (可信数据的反序列化) — Vulnerability Class 1676

1676 vulnerabilities classified as CWE-502 (可信数据的反序列化). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-54678 Siemens多款产品 代码问题漏洞 — SIMATIC PCS neo V4.1 8.2 High2025-08-12
CVE-2025-8747 Keras safe_mode bypass allows arbitrary code execution when loading a malicious model. — Keras 7.8AIHighAI2025-08-11
CVE-2025-53606 Apache Seata (incubating): Deserialization of untrusted Data in Apache Seata Server — Apache Seata (incubating) 9.8 -2025-08-08
CVE-2025-8708 Antabot White-Jotter com.gm.wj.config.ShiroConfiguration ShiroConfiguration.java CookieRememberMeManager deserialization — White-Jotter 5.0 Medium2025-08-08
CVE-2025-54886 skops: Card.get_model does not block arbitrary code execution — skops 8.4 High2025-08-08
CVE-2025-55136 Emotion Recognition in Coversation 代码问题漏洞 — ERC 5.7 Medium2025-08-07
CVE-2025-54640 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.5 Medium2025-08-06
CVE-2025-54639 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.5 Medium2025-08-06
CVE-2025-54638 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.5 Medium2025-08-06
CVE-2025-54620 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.5 Medium2025-08-06
CVE-2025-53078 SAMSUNG DMS 安全漏洞 — Data Management Server 8.0 High2025-07-29
CVE-2025-8266 yanyutao0402 ChanCMS collect.js getArticle deserialization — ChanCMS 6.3 Medium2025-07-28
CVE-2025-8227 yanyutao0402 ChanCMS getArticle deserialization — ChanCMS 6.3 Medium2025-07-27
CVE-2025-54366 FreeScout's deserialization of untrusted data leads to Remote Code Execution — freescout 8.8 -2025-07-26
CVE-2025-26397 SolarWinds Observability Self-Hosted Deserialization of Untrusted Data Local Privilege Escalation Vulnerability — SolarWinds Observability Self-Hosted 7.8 High2025-07-24
CVE-2025-4393 Medtronic MyCareLink Patient Monitor Deserialization Vulnerability — MyCareLink Patient Monitor 24950 6.5 Medium2025-07-24
CVE-2016-15044 Kaltura < 11.1.0-2 PHP Object Injection RCE — Video Platform 9.8 -2025-07-23
CVE-2025-43489 Poly Clariti Manager - Multiple Security Vulnerabilities — Poly Clariti Manager 9.8 -2025-07-22
CVE-2025-7916 Simopro Technology|WinMatrix3 - Insecure Deserialization — WinMatrix3 9.8 Critical2025-07-21
CVE-2025-7876 Metasoft 美特软件 MetaCRM download.jsp AnalyzeParam deserialization — MetaCRM 6.3 Medium2025-07-20
CVE-2025-53770 Microsoft SharePoint Server Remote Code Execution Vulnerability — Microsoft SharePoint Enterprise Server 2016 9.8 Critical2025-07-20
CVE-2025-7697 Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.1.1 - Unauthenticated PHP Object Injection via verify_field_val Function — Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms 9.8 Critical2025-07-19
CVE-2025-7696 Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.2.3 - Unauthenticated PHP Object Injection via verify_field_val Function — Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms 9.8 Critical2025-07-19
CVE-2025-7433 Sophos Intercept X 安全漏洞 — Sophos Intercept X for Windows 8.8 High2025-07-17
CVE-2025-24777 WordPress Hillter theme <= 3.0.7 - PHP Object Injection Vulnerability — Hillter 8.8 High2025-07-16
CVE-2025-24779 WordPress Yogi theme < 2.9.3 - PHP Object Injection Vulnerability — Yogi 8.8 High2025-07-16
CVE-2025-28961 WordPress URL Shortener <= 3.0.7 - PHP Object Injection Vulnerability — URL Shortener 9.8 Critical2025-07-16
CVE-2025-30949 WordPress Site Chat on Telegram plugin <= 1.0.4 - PHP Object Injection Vulnerability — Site Chat on Telegram 9.8 Critical2025-07-16
CVE-2025-30973 WordPress CoSchool LMS plugin <= 1.4.3 - PHP Object Injection Vulnerability — CoSchool LMS 9.8 Critical2025-07-16
CVE-2025-31422 WordPress Visual Art | Gallery WordPress Theme <= 2.4 - PHP Object Injection Vulnerability — Visual Art | Gallery WordPress Theme 8.8 High2025-07-16

Vulnerabilities classified as CWE-502 (可信数据的反序列化) represent 1676 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.