Exploit Intelligence Platform – 370K+ CVEs, Ranked Exploits & EPSS Scores

CVE-2025-12058 EPSS 0.00

Pypi Keras < 3.12.0 - Insecure Deserialization

The Keras.Model.load_model method, including when executed with the intended security mitigation safe_mode=True, is vulnerable to arbitrary local file loading and Server-Side Request Forgery (SSRF). This vulnerability stems from the way the StringLookup layer is handled during model loading from a specially crafted .keras archive. The constructor for the StringLookup layer accepts a vocabulary argument that can specify a local file path or a remote file path. * Arbitrary Local File Read: An attacker can create a malicious .keras file that embeds a local path in the StringLookup layer's configuration. When the model is loaded, Keras will attempt to read the content of the specified local file and incorporate it into the model state (e.g., retrievable via get_vocabulary()), allowing an attacker to read arbitrary local files on the hosting system. * Server-Side Request Forgery (SSRF): Keras utilizes tf.io.gfile for file operations. Since tf.io.gfile supports remote filesystem handlers (such as GCS and HDFS) and HTTP/HTTPS protocols, the same mechanism can be leveraged to fetch content from arbitrary network endpoints on the server's behalf, resulting in an SSRF condition. The security issue is that the feature allowing external path loading was not properly restricted by the safe_mode=True flag, which was intended to prevent such unintended data access.

CWE-502 Oct 29, 2025

CVE-2025-62368 9.0 CRITICAL 1 PoC Analysis EPSS 0.71

Taiga <6.8.3 - Code Injection

Taiga is an open source project management platform. In versions 6.8.3 and earlier, a remote code execution vulnerability exists in the Taiga API due to unsafe deserialization of untrusted data. This issue is fixed in version 6.9.0.

CWE-502 Oct 28, 2025

CVE-2025-12305 6.3 MEDIUM 1 Writeup EPSS 0.00

Quequnlong Shiyi-blog < 1.2.1 - Insecure Deserialization

A vulnerability was found in quequnlong shiyi-blog up to 1.2.1. This impacts an unknown function of the file src/main/java/com/mojian/controller/SysJobController.java of the component Job Handler. The manipulation results in deserialization. The attack can be executed remotely. The exploit has been made public and could be used.

CWE-502 Oct 27, 2025

CVE-2025-34292 EPSS 0.01

Rox - Code Injection

Rox, the software running BeWelcome, contains a PHP object injection vulnerability resulting from deserialization of untrusted data. User-controlled input is passed to PHP's unserialize(): the POST parameter `formkit_memory_recovery` in \\RoxPostHandler::getCallbackAction and the 'memory cookie' read by \\RoxModelBase::getMemoryCookie (bwRemember). (1) If present, `formkit_memory_recovery` is processed and passed to unserialize(), and (2) restore-from-memory functionality calls unserialize() on the bwRemember cookie value. Gadget chains present in Rox and bundled libraries enable exploitation of object injection to write arbitrary files or achieve remote code execution. Successful exploitation can lead to full site compromise. This vulnerability was remediated with commit c60bf04 (2025-06-16).

CWE-502 Oct 27, 2025

CVE-2025-46183 8.2 HIGH 1 Writeup EPSS 0.00

pgCodeKeeper 10.12.0 - Code Injection

The Utils.deserialize function in pgCodeKeeper 10.12.0 processes serialized data from untrusted sources. If an attacker provides a specially crafted .ser file, deserialization may result in unintended code execution or other malicious behavior on the target system.

CWE-502 Oct 24, 2025

CVE-2025-62025 9.8 CRITICAL EPSS 0.00

eyecix JobSearch < 3.0.8 - Deserialization

Deserialization of Untrusted Data vulnerability in eyecix JobSearch wp-jobsearch.This issue affects JobSearch: from n/a through < 3.0.8.

CWE-502 Oct 22, 2025

CVE-2025-62008 8.8 HIGH EPSS 0.00

Product Table For WooCommerce <1.2.5 - Deserialization

Deserialization of Untrusted Data vulnerability in acowebs Product Table For WooCommerce product-table-for-woocommerce.This issue affects Product Table For WooCommerce: from n/a through <= 1.2.4.

CWE-502 Oct 22, 2025

CVE-2025-60238 9.8 CRITICAL EPSS 0.00

universam <8.72.34 - Code Injection

Deserialization of Untrusted Data vulnerability in universam UNIVERSAM universam-demo allows Object Injection.This issue affects UNIVERSAM: from n/a through <= 8.72.34.

CWE-502 Oct 22, 2025

CVE-2025-60234 8.8 HIGH EPSS 0.00

designthemes Single Property <= 2.8 - Code Injection

Deserialization of Untrusted Data vulnerability in designthemes Single Property single-property allows Object Injection.This issue affects Single Property: from n/a through <= 2.8.

CWE-502 Oct 22, 2025

CVE-2025-60232 9.8 CRITICAL EPSS 0.00

quantumcloud KBx Pro Ultimate <8.0.5 - Code Injection

Deserialization of Untrusted Data vulnerability in quantumcloud KBx Pro Ultimate knowledgebase-helpdesk-pro allows Object Injection.This issue affects KBx Pro Ultimate: from n/a through <= 8.0.5.

CWE-502 Oct 22, 2025

CVE-2025-60228 8.8 HIGH EPSS 0.00

designthemes Knowledge Base <2.9 - Code Injection

Deserialization of Untrusted Data vulnerability in designthemes Knowledge Base kbase allows Object Injection.This issue affects Knowledge Base: from n/a through <= 2.9.

CWE-502 Oct 22, 2025

CVE-2025-60226 9.8 CRITICAL EPSS 0.00

Axiomthemes White Rabbit < 1.5.2 - Insecure Deserialization

Deserialization of Untrusted Data vulnerability in axiomthemes White Rabbit whiterabbit allows Object Injection.This issue affects White Rabbit: from n/a through <= 1.5.2.

CWE-502 Oct 22, 2025

CVE-2025-60225 9.8 CRITICAL EPSS 0.00

AncoraThemes BugsPatrol <1.5.0 - Code Injection

Deserialization of Untrusted Data vulnerability in AncoraThemes BugsPatrol bugspatrol allows Object Injection.This issue affects BugsPatrol: from n/a through <= 1.5.0.

CWE-502 Oct 22, 2025

CVE-2025-60224 9.8 CRITICAL EPSS 0.00

wpshuffle Subscribe to Download <2.0.9 - Code Injection

Deserialization of Untrusted Data vulnerability in wpshuffle Subscribe to Download subscribe-to-download allows Object Injection.This issue affects Subscribe to Download: from n/a through <= 2.0.9.

CWE-502 Oct 22, 2025

CVE-2025-60221 9.8 CRITICAL EPSS 0.00

Captivate Sync <3.0.3 - Code Injection

Deserialization of Untrusted Data vulnerability in captivateaudio Captivate Sync captivatesync-trade allows Object Injection.This issue affects Captivate Sync: from n/a through <= 3.0.3.

CWE-502 Oct 22, 2025

CVE-2025-60216 9.8 CRITICAL EPSS 0.00

BoldThemes Addison <1.4.2 - Code Injection

Deserialization of Untrusted Data vulnerability in BoldThemes Addison addison allows Object Injection.This issue affects Addison: from n/a through <= 1.4.2.

CWE-502 Oct 22, 2025

CVE-2025-60215 8.8 HIGH EPSS 0.00

designthemes Kriya <= 3.4 - Object Injection

Deserialization of Untrusted Data vulnerability in designthemes Kriya kriya allows Object Injection.This issue affects Kriya: from n/a through <= 3.4.

CWE-502 Oct 22, 2025

CVE-2025-60214 9.8 CRITICAL EPSS 0.00

BoldThemes Goldenblatt <= 1.2.1 - Code Injection

Deserialization of Untrusted Data vulnerability in BoldThemes Goldenblatt goldenblatt allows Object Injection.This issue affects Goldenblatt: from n/a through <= 1.2.1.

CWE-502 Oct 22, 2025

CVE-2025-60213 9.8 CRITICAL EPSS 0.00

Whitebox-Studio Scape <1.5.13 - Object Injection

Deserialization of Untrusted Data vulnerability in Whitebox-Studio Scape scape allows Object Injection.This issue affects Scape: from n/a through <= 1.5.13.

CWE-502 Oct 22, 2025

CVE-2025-60212 8.8 HIGH EPSS 0.00

Designthemes VEDA <4.2 - Code Injection

Deserialization of Untrusted Data vulnerability in designthemes VEDA veda allows Object Injection.This issue affects VEDA: from n/a through <= 4.2.

CWE-502 Oct 22, 2025

CVE & Exploit Intelligence Database

Investigate

Ecosystems

Reference Indexes

Recent Blog Posts

CVEForge Labs

KEV Gaps