Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Positive Technologies
Positive Technologiesadded 2025/02/20 12:0 a.m.2 views

PT-2025-7389 · WordPress · Ravpage

Name of the Vulnerable Software and Affected Versions: Ravpage plugin for WordPress versions up to, and including, 2.31 Description: The issue concerns a PHP Object Injection vulnerability via deserialization of untrusted input from the paramsv2 parameter. This allows unauthenticated attackers to...

9.8CVSS9.8AI score0.00615EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2024/10/20 12:0 a.m.3 views

PT-2024-33580 · Brandon Clark · Brandon Clark Sitebuilder Dynamic Components

Name of the Vulnerable Software and Affected Versions: Brandon Clark SiteBuilder Dynamic Components versions n/a through 1.0 Description: The issue is related to Deserialization of Untrusted Data, which allows Object Injection in Brandon Clark SiteBuilder Dynamic Components. Recommendations: For...

9.8CVSS7.5AI score0.00848EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2024/09/12 12:0 a.m.2 views

PT-2024-31811 · Mindsdb · Mindsdb

Name of the Vulnerable Software and Affected Versions: MindsDB versions 23.10.3.0 and newer Description: The issue is related to the deserialization of untrusted data in the MindsDB platform. This allows a maliciously uploaded 'inhouse' model to run arbitrary code on the server when a 'describe'...

8.6CVSS7.5AI score0.00225EPSS
Exploits1References12
Positive Technologies
Positive Technologiesadded 2024/01/30 12:0 a.m.1 views

PT-2024-14070 · Unknown · Ros2 Foxy Fitzroy

Name of the Vulnerable Software and Affected Versions: ROS2 Foxy Fitzroy versions 2 Description: Insecure deserialization in ROS2 allows attackers to execute arbitrary code via a crafted input. The issue affects ROS2 Foxy Fitzroy with ROS VERSION=2 and ROS PYTHON VERSION=3. Recommendations: For...

8AI score
Exploits0References6
Positive Technologies
Positive Technologiesadded 2023/12/01 12:0 a.m.2 views

PT-2023-30999 · Jupiter · Jupiterx

Name of the Vulnerable Software and Affected Versions: Jupiter version 1.3.1 Description: A deserialization vulnerability allows attackers to execute arbitrary commands via sending a crafted RPC request. Recommendations: For Jupiter version 1.3.1, consider disabling the deserialization...

9.8CVSS9.6AI score0.00089EPSS
Exploits1References8
Positive Technologies
Positive Technologiesadded 2022/12/07 12:0 a.m.1 views

PT-2022-27199 · Hope-Boot · Hope-Boot

Name of the Vulnerable Software and Affected Versions: hope-boot version 1.0.0 Description: The issue is related to a deserialization vulnerability that can cause Remote Code Execution RCE. Recommendations: For hope-boot version 1.0.0, consider disabling deserialization functionality as a tempora...

9.8CVSS9.5AI score0.01288EPSS
Exploits1References4
Rows per page
Query Builder