Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-502 (可信数据的反序列化) — Vulnerability Class 1676

1676 vulnerabilities classified as CWE-502 (可信数据的反序列化). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-31924 WordPress Crafts & Arts theme <= 2.5 - PHP Object Injection Vulnerability — Crafts & Arts 8.8 High2025-05-23
CVE-2025-32284 WordPress Pet World theme <= 2.8 - PHP Object Injection Vulnerability — Pet World 8.8 High2025-05-23
CVE-2025-32292 WordPress Jarvis – Night Club, Concert, Festival WordPress theme <= 1.8.11 - PHP Object Injection Vulnerability — Jarvis – Night Club, Concert, Festival WordPress 9.8 Critical2025-05-23
CVE-2025-32293 WordPress Finance Consultant theme <= 2.8 - PHP Object Injection Vulnerability — Finance Consultant 8.8 High2025-05-23
CVE-2025-39480 WordPress Car Dealer theme < 1.6.8 - PHP Object Injection vulnerability — Car Dealer 9.8 Critical2025-05-23
CVE-2025-39485 WordPress GrandTour theme <= 5.6 - PHP Object Injection vulnerability — Grand Tour 9.8 Critical2025-05-23
CVE-2025-39495 WordPress Avantage Theme <= 2.4.9 - PHP Object Injection vulnerability — Avantage 9.8 Critical2025-05-23
CVE-2025-39499 WordPress Medicare Theme <= 2.1.0 - PHP Object Injection vulnerability — Medicare 9.8 Critical2025-05-23
CVE-2025-39500 WordPress Goodlayers Hostel Plugin <= 3.1.2 - PHP Object Injection vulnerability — Goodlayers Hostel 9.8 Critical2025-05-23
CVE-2025-39503 WordPress Goodlayers Hotel plugin <= 3.1.4 - PHP Object Injection vulnerability — Goodlayers Hotel 9.8 Critical2025-05-23
CVE-2025-47530 WordPress WPFunnels plugin <= 3.5.18 - PHP Object Injection Vulnerability — WPFunnels 9.8 Critical2025-05-23
CVE-2025-47532 WordPress CoinPayments.net Payment Gateway for WooCommerce plugin <= 1.0.17 - PHP Object Injection Vulnerability — CoinPayments.net Payment Gateway for WooCommerce 9.8 Critical2025-05-23
CVE-2025-47568 WordPress ZoomSounds plugin <= 6.91 - PHP Object Injection vulnerability — ZoomSounds 9.8 Critical2025-05-23
CVE-2025-47660 WordPress WC Affiliate plugin <= 2.16 - PHP Object Injection vulnerability — WC Affiliate 8.8 High2025-05-23
CVE-2025-48287 WordPress Pix 4x sem juros - Pagaleve plugin <= 1.6.9 - PHP Object Injection Vulnerability — Pix 4x sem juros - Pagaleve 9.8 Critical2025-05-23
CVE-2025-48289 WordPress Kids Planet theme <= 2.2.14 - PHP Object Injection Vulnerability — Kids Planet 9.8 Critical2025-05-23
CVE-2025-4803 Glossary by WPPedia <= 1.3.0 - Authenticated (Administrator+) PHP Object Injection — Glossary by WPPedia – Best Glossary plugin for WordPress 7.2 High2025-05-21
CVE-2025-48200 TYPO3 安全漏洞 — sr feuser register extension 10.0 Critical2025-05-21
CVE-2025-47277 vLLM Allows Remote Code Execution via PyNcclPipe Communication Service — vllm 9.8 Critical2025-05-20
CVE-2025-48018 Deserialization of Untrusted Data — SEL-5030 acSELerator QuickSet Software 7.5 High2025-05-20
CVE-2025-32927 WordPress FoodBakery plugin <= 3.3 - PHP Object Injection vulnerability — FoodBakery 9.8 Critical2025-05-19
CVE-2025-32928 WordPress Altair theme <= 5.2.2 - PHP Object Injection vulnerability — Altair 9.8 Critical2025-05-19
CVE-2025-39348 WordPress Grand Restaurant WordPress theme <= 7.0 - PHP Object Injection vulnerability — Grand Restaurant 9.8 Critical2025-05-19
CVE-2025-39349 WordPress CiyaShop theme <= 4.18.0 - PHP Object Injection vulnerability — CiyaShop 9.8 Critical2025-05-19
CVE-2025-39354 WordPress Grand Conference theme <= 5.3 - PHP Object Injection vulnerability — Grand Conference 9.8 Critical2025-05-19
CVE-2025-39356 WordPress Foodbakery Sticky Cart plugin <= 3.2 - PHP Object Injection vulnerability — Foodbakery Sticky Cart 9.8 Critical2025-05-19
CVE-2025-39410 WordPress Smart Sections Theme Builder - WPBakery Page Builder Addon plugin <= 1.7.8 - PHP Object Injection vulnerability — Smart Sections Theme Builder - WPBakery Page Builder Addon 9.8 Critical2025-05-19
CVE-2025-47581 WordPress WordPress Events Calendar Registration & Tickets plugin <= 2.6.0 - PHP Object Injection vulnerability — WordPress Events Calendar Registration & Tickets 9.8 Critical2025-05-19
CVE-2025-47582 WordPress WPBot Pro Wordpress Chatbot <= 12.7.0 - PHP Object Injection Vulnerability — WPBot Pro Wordpress Chatbot 9.8 Critical2025-05-19
CVE-2025-4905 iop-apl-uw basestation3 QC.py load_qc_pickl deserialization — basestation3 5.3 Medium2025-05-19

Vulnerabilities classified as CWE-502 (可信数据的反序列化) represent 1676 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.