Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-502

CWE-502

Medium likelihood

Deserialization of Untrusted Data

Parent: CWE-913 - Improper Control of Dynamically-Managed Code Resources

The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.

2,741 vulnerabilities with CWE-502

CVE-2026-28105 CRITICAL

ThemeREX Good Energy <=1.7.7 - Deserialization

CVE-2026-28074 CRITICAL

ThemeREX Pizza House <=1.4.0 - Deserialization

CVE-2026-27439 CRITICAL

ThemeREX Dentario <=1.5 - Deserialization

CVE-2026-27438 CRITICAL

ThemeREX Kingler <=1.7 - Deserialization

CVE-2026-27437 CRITICAL

ThemeREX Tennis Club <=1.2.3 - Deserialization

CVE-2026-27417 CRITICAL

SeventhQueen Sweet Date <4.0.1 - Deserialization

CVE-2026-27379 HIGH

NextScripts social-networks-auto-poster <=4.4.7 - Deserialization

CVE-2026-27369 HIGH

BoldThemes Celeste <=1.3.6 - Deserialization

CVE-2026-27338 HIGH

AivahThemes Car Zone <=3.7 - Deserialization

CVE-2026-27098 HIGH

axiomthemes Au Pair Agency <=1.2.2 - Deserialization

CVE-2026-24385 HIGH

Podlove Web Player <=5.9.1 - Deserialization

CVE-2026-23798 HIGH

blubrry PowerPress Podcasting <=11.15.10 - Deserialization

CVE-2026-22501 CRITICAL

Mounthood <=1.3.2 - Deserialization

CVE-2026-22497 CRITICAL

AncoraThemes Jardi <=1.7.2 - Deserialization

CVE-2026-22475 CRITICAL

axiomthemes Estate <=1.3.4 - Deserialization

CVE-2026-22474 CRITICAL

ThemeREX Equestrian Centre <=1.5 - Deserialization

CVE-2026-22473 HIGH

Dental Clinic <=3.7 - Deserialization

CVE-2026-22471 HIGH

Secudeal Payments for Ecommerce <=1.1 - Deserialization

CVE-2026-22454 CRITICAL

ThemeREX Solaris <=2.5 - Deserialization

CVE-2026-22453 CRITICAL

ThemeREX Pets Club <=2.3 - Deserialization

CVE-2026-22451 CRITICAL

AncoraThemes Handyman <=1.4 - Deserialization

CVE-2026-22417 CRITICAL

ThemeGoods Grand Wedding <=3.1.0 - Deserialization

CVE-2026-20131 CRITICAL KEV

Cisco Secure Firewall Management Center 6.4.0.13-6.4.0.18, 7.0.0 - RCE via Java Deserialization

CVE-2026-3452 HIGH

Concrete CMS < 9.4.8 - Admin PHP Object Injection Remote Code Execution

CVE-2026-27971 CRITICAL

Qwik <=1.19.0 - Deserialization RCE

Previous Page 12 of 110 Next

Details

Vulnerabilities 2,741

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy