34359 matches found
PT-2026-27857
Name of the Vulnerable Software and Affected Versions Metagauss EventPrime versions through 4.2.8.0 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. This issue impacts the eventprime-event-calendar-management component...
PT-2026-28020
Name of the Vulnerable Software and Affected Versions Archicon versions prior to 1.7 Description A flaw exists in Archicon that allows for object injection due to deserialization of untrusted data. This issue impacts the software's ability to securely handle data, potentially leading to...
PT-2026-27877
Name of the Vulnerable Software and Affected Versions FantasticPlugins SUMO Affiliates Pro versions prior to 11.4.0 Description An issue exists in FantasticPlugins SUMO Affiliates Pro related to the deserialization of untrusted data, which can lead to object injection. The affected component is...
WordPress plugin Bus Ticket Booking with Seat Reservation 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There we...
WordPress plugin SUMO Affiliates Pro 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There we...
WordPress plugin Visionary Core 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
PT-2026-28024
Name of the Vulnerable Software and Affected Versions Kamperen versions prior to 1.3 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. Recommendations At the moment, there is no information about a newer version that contains a f...
WordPress plugin Morning Records 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...
WordPress plugin Ricky 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. Versions...
PT-2026-27831
Name of the Vulnerable Software and Affected Versions AncoraThemes Melody versions n/a through 1.6.3 Description A flaw exists in the deserialization of untrusted data within AncoraThemes Melody melodyschool, potentially allowing for object injection. This issue could allow an attacker to inject...
PT-2026-28022
Name of the Vulnerable Software and Affected Versions Mikado-Themes Halstein versions prior to 1.8 Description An issue exists in Halstein that allows for object injection due to deserialization of untrusted data. This could potentially allow for malicious code execution. Recommendations Update...
PT-2026-27867
Name of the Vulnerable Software and Affected Versions NooTheme CitiLights versions through 3.7.1 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. Recommendations Update NooTheme CitiLights to a version later than 3.7.1...
PT-2026-27981
Name of the Vulnerable Software and Affected Versions ThemeREX Love Story versions n/a through 1.3.12 Description An issue exists in ThemeREX Love Story that allows for object injection due to deserialization of untrusted data. This impacts the application's ability to securely handle data input...
PT-2026-28000
Name of the Vulnerable Software and Affected Versions BoldGrid weForms versions n/a through 1.6.26 Description An issue exists in BoldGrid weForms that allows for object injection due to deserialization of untrusted data. This impacts the application’s ability to securely handle data, potentially...
PT-2026-28148
OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.3, an Insecure Direct Object Reference IDOR vulnerability in the patient portal payment page allows any authenticated portal patient to access other patients' payment...
WordPress plugin Product Feed for WooCommerce 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...
PT-2026-27983
Name of the Vulnerable Software and Affected Versions Buisson versions through 1.1.11 Description An issue exists in Buisson that allows for object injection due to the deserialization of untrusted data. This relates to a data deserialization flaw. Recommendations Update Buisson to a version late...
PT-2026-28023
Name of the Vulnerable Software and Affected Versions Gracey versions prior to 1.4 Description An issue exists in Gracey that allows for object injection due to deserialization of untrusted data. This impacts the application's ability to securely handle incoming data, potentially leading to...
WordPress plugin Jobica Core 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
PT-2026-27812
Name of the Vulnerable Software and Affected Versions WebToffee Product Feed for WooCommerce versions through 2.3.3 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. This impacts Product Feed for WooCommerce. Recommendations Upda...