453 matches found
EUVD-2009-1095
Malware in sbrugna...
EUVD-2022-49282
Malicious code in bioql PyPI...
EUVD-2022-2396
Malicious code in bioql PyPI...
EUVD-2023-39809
Malicious code in bioql PyPI...
EUVD-2022-3746
Malicious code in bioql PyPI...
EUVD-2022-3808
Malicious code in bioql PyPI...
CVE-2025-10221
Insertion of Sensitive Information into Log File CWE-532 in the ARP Agent component in AxxonSoft Axxon One / AxxonNet / C-WerkNet 2.0.4 and earlier on Windows platforms allows a local attacker to obtain plaintext credentials via reading TRACE log files containing serialized JSON with passwords...
CVE-2025-10221
CVE-2025-10221 concerns the ARP Agent component in AxxonSoft Axxon One / AxxonNet / C-WerkNet 2.0.4 and earlier on Windows. The root cause is insertion of sensitive information into TRACE log files, allowing a local attacker to read serialized JSON with passwords and obtain plaintext credentials....
WordPress plugin Aitasi Coming Soon 代码问题漏洞
WordPress Aitasi Coming Soon plugin is a plugin for creating professional coming soon pages Coming Soon or maintenance mode pages that can be built quickly without coding or design skills. The WordPress Aitasi Coming Soon plugin suffers from a deserialization vulnerability that arises from unsafe...
Linux Distros Unpatched Vulnerability : CVE-2024-11831
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such a...
GPT-SoVITS-WebUI Code Issue Vulnerability (CNVD-2025-23582)
GPT-SoVITS-WebUI is a TTS training model. A code issue vulnerability exists in GPT-SoVITS-WebUI that stems from unsafe deserialization processing of processckpt.py when receiving serialized data submitted by a user, which can be exploited by an attacker to execute arbitrary commands on the system...
LimeSurvey 安全漏洞
LimeSurvey PHPSurveyor is an open source online survey program from the LimeSurvey team that supports survey program development, survey distribution, and data collection. A security vulnerability exists in LimeSurvey 2.06+ Build 151014 and earlier versions, which stems from unvalidated serialize...
GPT-SoVITS-WebUI 代码问题漏洞
GPT-SoVITS-WebUI is a TTS training model. A code issue vulnerability exists in GPT-SoVITS-WebUI, which stems from insecure deserialization of bsroformer.py when receiving serialized data submitted by a user, and can be exploited by an attacker to execute arbitrary commands on the system...
CVE-2022-46478
The RPC interface in datax-web v1.0.0 and v2.0.0 to v2.1.2 contains no permission checks by default which allows attackers to execute arbitrary commands via crafted Hessian serialized data...
CVE-2021-42698
Project files are stored memory objects in the form of binary serialized data that can later be read and deserialized again to instantiate the original objects in memory. Malicious manipulation of these files may allow an attacker to corrupt memory...
CVE-2020-12000
The affected product is vulnerable to the handling of serialized data. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data on the Ignition 8 Gateway versions prior to 8.0.10 and Ignition 7 Gateway versions prior to...
CVE-2019-25057
In Corda before 4.1, the meaning of serialized data can be modified via an attacker-controlled CustomSerializer...
CVE-2023-35814
DevExpress before 23.1.3 does not properly protect XtraReport serialized data in ASP.NET web forms...
CVE-2023-35814
DevExpress before 23.1.3 does not properly protect XtraReport serialized data in ASP.NET web forms...
CVE-2023-35814
DevExpress before 23.1.3 does not properly protect XtraReport serialized data in ASP.NET web forms...