Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-502 (可信数据的反序列化) — Vulnerability Class 1676

1676 vulnerabilities classified as CWE-502 (可信数据的反序列化). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-53393 Akka 代码问题漏洞 — Akka 6.0 Medium2025-06-28
CVE-2025-28970 WordPress WP Optimize By xTraffic plugin <= 5.1.6 - PHP Object Injection Vulnerability — WP Optimize By xTraffic 9.8 Critical2025-06-27
CVE-2025-52724 WordPress Amwerk theme <= 1.2.0 - PHP Object Injection Vulnerability — Amwerk 9.8 Critical2025-06-27
CVE-2025-52725 WordPress CouponXxL theme <= 3.0.0 - PHP Object Injection Vulnerability — CouponXxL 9.8 Critical2025-06-27
CVE-2025-52826 WordPress Sala theme <= 1.1.3 - PHP Object Injection Vulnerability — Sala 8.8 High2025-06-27
CVE-2025-52827 WordPress Nuss theme <= 1.3.3 - PHP Object Injection Vulnerability — Nuss 8.8 High2025-06-27
CVE-2025-36038 IBM WebSphere Application Server code execution — WebSphere Application Server 9.0 Critical2025-06-25
CVE-2025-2566 Deserialization of Untrusted Data in Kaleris Navis N4 — Navis N4 9.8AICriticalAI2025-06-24
CVE-2025-25034 SugarCRM PHP Deserialization RCE — SugarCRM 9.8AICriticalAI2025-06-20
CVE-2025-47771 PowSyBl Core allows deserialization of untrusted SparseMatrix data — powsybl-core 8.8AIHighAI2025-06-19
CVE-2025-6279 Upsonic Pickle add_tool cloudpickle.loads deserialization — Upsonic 5.5 Medium2025-06-19
CVE-2025-30618 WordPress Rapyd Payment Extension for WooCommerce plugin <= 1.2.0 - PHP Object Injection Vulnerability — Rapyd Payment Extension for WooCommerce 9.8 Critical2025-06-17
CVE-2025-31919 WordPress Spare theme <= 1.7 - PHP Object Injection Vulnerability — Spare 9.8 Critical2025-06-17
CVE-2025-49331 WordPress eCommerce Product Catalog plugin <= 3.4.3 - PHP Object Injection Vulnerability — eCommerce Product Catalog 7.2 High2025-06-17
CVE-2025-49330 WordPress Integration for Contact Form 7 and Zoho CRM, Bigin plugin <= 1.3.0 - PHP Object Injection Vulnerability — Integration for Contact Form 7 and Zoho CRM, Bigin 9.8 Critical2025-06-17
CVE-2025-24919 Dell ControlVault3/ControlVault3 Plus deserialization of untrusted input vulnerability — BCM5820X 8.1 High2025-06-13
CVE-2025-47166 Microsoft SharePoint Server Remote Code Execution Vulnerability — Microsoft SharePoint Enterprise Server 2016 8.8 High2025-06-10
CVE-2025-47163 Microsoft SharePoint Server Remote Code Execution Vulnerability — Microsoft SharePoint Enterprise Server 2016 8.8 High2025-06-10
CVE-2025-49507 WordPress CozyStay theme < 1.7.1 - PHP Object Injection vulnerability — CozyStay 9.8 Critical2025-06-10
CVE-2025-27819 Apache Kafka: Possible RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration — Apache Kafka 8.1 -2025-06-10
CVE-2025-27818 Apache Kafka: Possible RCE attack via SASL JAAS LdapLoginModule configuration — Apache Kafka 8.1 -2025-06-10
CVE-2025-31052 WordPress The Fashion - Model Agency One Page Beauty Theme plugin <= 1.4.4 - Deserialization of untrusted data Vulnerability — The Fashion - Model Agency One Page Beauty Theme 9.8 Critical2025-06-09
CVE-2025-31396 WordPress FLAP - Business WordPress Theme <= 1.5 - PHP Object Injection Vulnerability — FLAP - Business WordPress Theme 9.8 Critical2025-06-09
CVE-2025-31398 WordPress PIMP - Creative MultiPurpose theme <= 1.7 - Deserialization of untrusted data Vulnerability — PIMP - Creative MultiPurpose 9.8 Critical2025-06-09
CVE-2025-31429 WordPress PressGrid - Frontend Publish Reaction & Multimedia Theme <= 1.3.1 - Deserialization of untrusted data Vulnerability — PressGrid - Frontend Publish Reaction & Multimedia Theme 9.8 Critical2025-06-09
CVE-2025-49127 Kafbat UI vulnerable to Remote Code Execution by JMX in Metrices Configuration — kafka-ui 9.8AICriticalAI2025-06-06
CVE-2025-27531 Apache InLong: An arbitrary file read vulnerability for JDBC — Apache InLong 6.5AIMediumAI2025-06-06
CVE-2025-49072 WordPress Mr. Murphy < 1.2.12.1 - PHP Object Injection Vulnerability — Mr. Murphy 9.8 Critical2025-06-06
CVE-2025-49073 WordPress Sweet Dessert < 1.1.13 - PHP Object Injection Vulnerability — Sweet Dessert 9.8 Critical2025-06-06
CVE-2025-39358 WordPress WP Posts Carousel <= 1.3.12 - PHP Object Injection Vulnerability — WP Posts Carousel 8.8AIHighAI2025-06-06

Vulnerabilities classified as CWE-502 (可信数据的反序列化) represent 1676 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.