Lucene search
K

142 matches found

Positive Technologies
Positive Technologies
added 2026/05/19 12:0 a.m.14 views

PT-2026-41867

The Crawler extension passes the X-T3Crawler-Meta response header from crawled URLs directly to PHP's unserialize. An attacker controlling a crawled endpoint can inject arbitrary serialized PHP objects, leading to Remote Code Execution on the TYPO3 server. Exploitation requires administrative...

7.1CVSS6AI score0.00389EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/19 12:0 a.m.20 views

PT-2026-41865

Name of the Vulnerable Software and Affected Versions Content Element Selector ceselector affected versions not specified Description The extension passes an attacker-controlled cookie directly to the unserialize function without safe processing. A remote, unauthenticated attacker can provide a...

9.2CVSS6.1AI score0.02306EPSS
Exploits1References8
NVD
NVD
added 2026/05/18 9:16 p.m.21 views

CVE-2026-26978

FreePBX is an open source IP PBX. In versions below 16.0.71 and 17.0.6, the backup module does not properly sanitize data during restore operations, potentially leading to compromise if the backup contains carefully crafted hostile data. During backup restore operations, FreePBX extracts selected...

8.6CVSS0.00896EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2026/05/04 12:0 a.m.28 views

VulnCheck KEV: CVE-2026-3296

The Everest Forms plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.4.3 via deserialization of untrusted input from form entry metadata. This is due to the html-admin-page-entries-view.php file calling PHP's native unserialize on stored entry meta...

9.8CVSS5.8AI score0.00878EPSS
In wildExploits1References2
CVE
CVE
added 2026/04/08 1:24 a.m.49 views

CVE-2026-3296

The Everest Forms WordPress plugin ( 3.4.3 (e.g., 3.4.4 or later) to fix the issue. If upgrading is not immediate, disable or audit admin entry views to avoid triggering deserialization.

9.8CVSS5.9AI score0.00878EPSS
In wildExploits1References6
ATTACKERKB
ATTACKERKB
added 2026/04/02 1:42 p.m.5 views

CVE-2026-29782

OpenSTAManager is an open source management software for technical assistance and invoicing. Prior to version 2.10.2, the oauth2.php file in OpenSTAManager is an unauthenticated endpoint $skippermissions = true. It loads a record from the zzoauth2 table using the attacker-controlled GET parameter...

7.2CVSS5.8AI score0.0057EPSS
Exploits1References4Affected Software1
EUVD
EUVD
added 2026/03/27 6:33 p.m.9 views

EUVD-2026-16070

Saloon has insecure deserialization in AccessTokenAuthenticator...

9.8CVSS5.9AI score0.00622EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/27 5:57 p.m.6 views

EUVD-2026-16888

Locutus has Prototype Pollution via proto Key Injection in unserialize...

6.9CVSS5.9AI score0.00583EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.9 views

Locutus 安全漏洞

Locutus is an open-source JavaScript library developed by Locutus. Versions of Locutus prior to 3.0.25 contained security vulnerabilities. These vulnerabilities stemmed from the unserialize function not filtering the proto key, which could lead to prototype pollution, property injection, and...

9.8CVSS5.8AI score0.00583EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/03/26 12:0 a.m.26 views

PT-2026-28182

Name of the Vulnerable Software and Affected Versions Saloon versions prior to 4.0.0 Description Saloon is a PHP library used for building API integrations and SDKs. The library used PHP's unserialize function in the AccessTokenAuthenticator::unserialize method, with allowed classes set to true, ...

9.8CVSS6.4AI score0.00622EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/03/11 6:0 a.m.8 views

CVE-2026-2626

The divi-booster WordPress plugin before 5.0.2 does not have authorization and CSRF checks in one of its fixing function, allowing unauthenticated users to modify stored divi-booster WordPress plugin before 5.0.2 options. Furthermore, due to the use of unserialize on the data, this could be furth...

5.8AI score0.00156EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/11 6:0 a.m.31 views

CVE-2026-2626 Divi Booster < 5.0.2 - Unauthenticated PHP Object Injection

The divi-booster WordPress plugin before 5.0.2 does not have authorization and CSRF checks in one of its fixing function, allowing unauthenticated users to modify stored divi-booster WordPress plugin before 5.0.2 options. Furthermore, due to the use of unserialize on the data, this could be furth...

0.00156EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2026/03/09 12:0 a.m.9 views

VulnCheck KEV: CVE-2019-5434

An attacker could send a specifically crafted payload to the XML-RPC invocation script and trigger the unserialize call on the "what" parameter in the "openads.spc" RPC method. Such vulnerability could be used to perform various types of attacks, e.g. exploit serialize-related PHP vulnerabilities...

9.8CVSS5.8AI score0.57022EPSS
In wildExploits7References27
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.8 views

PT-2026-22587

Name of the Vulnerable Software and Affected Versions Chamilo versions 1.11.12 through 1.11.26 Description Chamilo is a learning management system affected by a post-authentication PHP unserialize issue that can lead to remote code execution RCE. The vulnerability allows an administrator to execu...

8.7CVSS6.8AI score0.00905EPSS
Exploits1References8
Packet Storm
Packet Storm
added 2026/01/07 12:0 a.m.162 views

📄 Taiga Tribe_gig Authenticated Unserialize Remote Code Execution

This Metasploit module exploits an unserialization flaw by creating a userstory in a project. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class TaigaClientException 'Taiga tribegig authenticated unserialize remote...

9CVSS6.7AI score0.01405EPSS
Exploits2
CVE
CVE
added 2025/12/18 12:0 a.m.13 views

CVE-2025-63951

The CVE-2025-63951 vulnerability affects the MiczFlor RPi-Jukebox-RFID project, specifically the rss-mp3.php script. The rss GET parameter is passed directly to PHP’s unserialize() without validation, enabling a remote, unauthenticated attacker to inject arbitrary PHP objects, which can cause err...

7.5CVSS6.8AI score0.00437EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/05 9:34 p.m.10 views

CVE-2025-66571

UNA CMS versions 9.0.0-RC1 - 14.0.0-RC4 contain a PHP object injection vulnerability in BxBaseMenuSetAclLevel.php where the profileid POST parameter is passed to PHP unserialize without proper handling, allowing remote, unauthenticated attackers to inject arbitrary PHP objects and potentially wri...

9.3CVSS8AI score0.00522EPSS
Exploits0References1
NVD
NVD
added 2025/12/04 9:16 p.m.9 views

CVE-2025-66571

UNA CMS versions 9.0.0-RC1 - 14.0.0-RC4 contain a PHP object injection vulnerability in BxBaseMenuSetAclLevel.php where the profileid POST parameter is passed to PHP unserialize without proper handling, allowing remote, unauthenticated attackers to inject arbitrary PHP objects and potentially wri...

9.3CVSS0.00522EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/12/04 8:43 p.m.4 views

CVE-2025-66571 UNA CMS 9.0.0-RC1 - 14.0.0-RC4 PHP Object Injection

UNA CMS versions 9.0.0-RC1 - 14.0.0-RC4 contain a PHP object injection vulnerability in BxBaseMenuSetAclLevel.php where the profileid POST parameter is passed to PHP unserialize without proper handling, allowing remote, unauthenticated attackers to inject arbitrary PHP objects and potentially wri...

9.3CVSS7.6AI score0.00522EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-18443

Malware in sbrugna...

8.8CVSS8.7AI score0.01599EPSS
Exploits0References3
Rows per page
Query Builder