CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

135 matches found

Vulnrichment•added 2026/05/17 5:15 a.m.•7 views

CVE-2026-8735 Oinone Pamirs appConfigQuery PamirsParserConfig.java JsonUtils.parseMap deserialization

A vulnerability was identified in Oinone Pamirs up to 7.2.0. This affects the function JsonUtils.parseMap of the file PamirsParserConfig.java of the component appConfigQuery Interface. Such manipulation leads to deserialization. The attack can be launched remotely. The exploit is publicly availab...

6.5CVSS6.3AI score0.00045EPSS

Exploits0References4

IBM Security Bulletins•added 2026/02/05 11:26 a.m.•5 views

Security Bulletin: Due to the use of jackson-core, IBM webMethods BPM and IBM webMethods Integration are vulnerable to multiple vulnerabilities

Summary IBM webMethods BPM and IBM webMethods Integration are dependant on jackson-databind which is affected by a known vulnerabilities WS-2022-0468, CVE-2022-42004, CVE-2022-42003, CVE-2023-35116. This security bulletin provides guidance on addressing the vulnerability. Vulnerability Details...

7.5CVSS6.7AI score0.00317EPSS

Exploits3Affected Software1

GithubExploit•added 2026/01/10 3:58 a.m.•148 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 React2Shell Vulnerability Analysis Lab This...

10CVSS8.1AI score0.82011EPSS

Exploits358

GithubExploit•added 2026/01/08 4:28 p.m.•155 views

Exploit for Deserialization of Untrusted Data in Facebook React

🛠️ React2Shell - Simplifying React Exploitation Framework...

10CVSS6.9AI score0.82011EPSS

Exploits358

RedhatCVE•added 2026/01/07 9:50 a.m.•4 views

CVE-2022-27158

pearweb 1.32 suffers from Deserialization of Untrusted Data...

9.8CVSS6.9AI score0.00611EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:28 a.m.•5 views

CVE-2019-12747

TYPO3 8.x through 8.7.26 and 9.x through 9.5.7 allows Deserialization of Untrusted Data...

8.8CVSS6.8AI score0.01559EPSS

Exploits1References1

IBM Security Bulletins•added 2025/12/17 4:9 p.m.•9 views

Security Bulletin: IBM Edge Data Collector uses next-15.5.5.tgz which is vulnerable to CVE-2025-55182.

Summary IBM Edge Data Collector uses next-15.5.5.tgz which is vulnerable to CVE-2025-55182. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2025-55182 DESCRIPTION: A pre-authentication remote code execution vulnerability exists in React Server...

10CVSS7.9AI score0.82011EPSS

Exploits358Affected Software1