456 matches found
Deserialization Of Untrusted Data
pyfory and pyfury are vulnerable to Deserialization Of Untrusted Data. The vulnerability is due to the ability to craft a malicious serialized data stream that triggers the pickle-fallback serializer, which allows an attacker to invoke pickle.loads and achieve remote code execution...
CVE-2025-46183
The Utils.deserialize function in pgCodeKeeper 10.12.0 processes serialized data from untrusted sources. If an attacker provides a specially crafted .ser file, deserialization may result in unintended code execution or other malicious behavior on the target system...
WordPress Boldermail plugin deserialization vulnerability
The WordPress Boldermail plugin is an email marketing and automation platform designed specifically for WordPress, allowing users to manage subscribers, design email templates and create automated workflows directly in the WordPress backend. WordPress Boldermail plugin suffers from a...
WordPress Plugin Boldermail 代码问题漏洞
The WordPress Boldermail plugin is an email marketing and automation platform designed specifically for WordPress, allowing users to manage subscribers, design email templates and create automated workflows directly in the WordPress backend. WordPress Boldermail plugin suffers from a...
CVE-2025-35050
Newforma Info Exchange NIX accepts serialized .NET data via the '/remoteweb/remote.rem' endpoint, allowing a remote, unauthenticated attacker to execute arbitrary code with 'NT AUTHORITY\NetworkService' privileges. The vulnerable endpoint is used by Newforma Project Center Server NPCS, so a...
CVE-2025-35051
Newforma Project Center Server NPCS accepts serialized .NET data via the '/ProjectCenter.rem' endpoint on 9003/tcp, allowing a remote, unauthenticated attacker to execute arbitrary code with 'NT AUTHORITY\NetworkService' privileges. According to the recommended architecture, the vulnerable NPCS...
EUVD-2025-33576
Newforma Project Center Server NPCS accepts serialized .NET data via the '/ProjectCenter.rem' endpoint on 9003/tcp, allowing a remote, unauthenticated attacker to execute arbitrary code with 'NT AUTHORITY\NetworkService' privileges. According to the recommended architecture, the vulnerable NPCS...
CVE-2025-35051
Newforma Project Center Server NPCS accepts serialized .NET data via the '/ProjectCenter.rem' endpoint on 9003/tcp, allowing a remote, unauthenticated attacker to execute arbitrary code with 'NT AUTHORITY\NetworkService' privileges. According to the recommended architecture, the vulnerable NPCS...
CVE-2025-35050
Newforma Info Exchange NIX accepts serialized .NET data via the '/remoteweb/remote.rem' endpoint, allowing a remote, unauthenticated attacker to execute arbitrary code with 'NT AUTHORITY\NetworkService' privileges. The vulnerable endpoint is used by Newforma Project Center Server NPCS, so a...
EUVD-2016-8270
Malware in sbrugna...
EUVD-2009-1095
Malware in sbrugna...
EUVD-2015-4154
Malware in sbrugna...
EUVD-2020-4316
Malware in sbrugna...
EUVD-2015-2873
Malware in sbrugna...
EUVD-2015-7184
Malware in sbrugna...
EUVD-2004-2531
Malware in sbrugna...
EUVD-2016-9955
Malware in sbrugna...
EUVD-2007-1643
Malware in sbrugna...
EUVD-2015-6768
Malware in sbrugna...
EUVD-2019-11504
Malware in sbrugna...