Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
deserialization vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2020-8801
SuiteCRM through 7.11.11 allows PHAR Deserialization....
Salesagility Suitecrm
7.8
CVSSv3
CVE-2021-32568
mrdoc is vulnerable to Deserialization of Untrusted Data...
Mrdoc Mrdoc
9.8
CVSSv3
CVE-2021-32075
Re-Logic Terraria before 1.4.2.3 performs Insecure Deserialization....
Re-logic Terraria
8.1
CVSSv3
CVE-2020-26945
MyBatis before 3.5.6 mishandles deserialization of object streams....
Mybatis Mybatis
3 Github repositories available
9.8
CVSSv3
CVE-2021-23758
All versions of package ajaxpro.2 are vulnerable to Deserialization of Untrusted Data due to the possibility of deserialization of arbitrary .NET classes, which can be abused to gain remote code execution....
Ajaxpro.2 Project Ajaxpro.2
2 Github repositories available
9.8
CVSSv3
CVE-2021-30128
Apache OFBiz has unsafe deserialization prior to 17.12.07 version...
Apache Ofbiz
7 Github repositories available
7.8
CVSSv3
CVE-2021-4118
pytorch-lightning is vulnerable to Deserialization of Untrusted Data...
Pytorchlightning Pytorch Lightning
9.8
CVSSv3
CVE-2021-37544
In JetBrains TeamCity before 2020.2.4, there was an insecure deserialization....
Jetbrains Teamcity
9.8
CVSSv3
CVE-2019-16894
download.php in inoERP 4.15 allows SQL injection through insecure deserialization....
Inoideas Inoerp 4.15
9.8
CVSSv3
CVE-2019-15780
The formidable plugin before 4.02.01 for WordPress has unsafe deserialization....
Strategy11 Formidable Form Builder
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-34595
CVE-2022-23713
CVE-2022-21786
hard-coded
remote attackers
cross-site request forgery
CVE-2022-2274
CVE-2021-37839
CVE-2022-26135
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »