Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-502

CWE-502

Medium likelihood

Deserialization of Untrusted Data

Parent: CWE-913 - Improper Control of Dynamically-Managed Code Resources

The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.

2,743 vulnerabilities with CWE-502

CVE-2025-69405 CRITICAL

Lorem Ipsum | Books & Media Store <=1.2.6 - Deserialization

CVE-2025-69404 CRITICAL

ThemeREX Extreme Store <=1.5.7 - Deserialization

CVE-2025-69382 CRITICAL

Themesflat Elementor <=1.0.1 - Deserialization

CVE-2025-69372 CRITICAL

AncoraThemes SevenHills <=1.6.2 - Deserialization

CVE-2025-69371 CRITICAL

AncoraThemes KindlyCare <=1.6.1 - Deserialization

CVE-2025-69370 CRITICAL

ThemeGoods Capella <=2.5.5 - Deserialization

CVE-2025-69329 CRITICAL

Jthemes Prestige <1.4.1 - Deserialization

CVE-2025-69328 HIGH

Booking and Rental Manager <=2.5.9 - Deserialization

CVE-2025-69301 CRITICAL

ThemeGoods PhotoMe <=5.6.11 - Deserialization

CVE-2025-69294 HIGH

PeakShops <=1.5.9 - Deserialization

CVE-2025-68853 HIGH

Kleor Contact Manager <=9.1.1 - Deserialization

CVE-2025-68541 CRITICAL

BoldThemes Ippsum <=1.2.0 - Deserialization

CVE-2025-68531 HIGH

ModelTheme Addons <1.5.6 - Deserialization

CVE-2025-68526 HIGH

Modal Popup Box <=1.6.1 - Deserialization

CVE-2025-67997 CRITICAL

BoldThemes Travelicious <1.6.7 - Deserialization

CVE-2025-67996 CRITICAL

BoldThemes Nestin <1.2.6 - Deserialization

CVE-2025-67995 CRITICAL

LoftOcean PatioTime <2.1 - Deserialization

CVE-2025-15579 CRITICAL

OpenText Directory Services 10.5-26.1 - Deserialization

CVE-2025-60038 HIGH

Rexroth IndraWorks - Deserialization RCE

CVE-2025-60037 HIGH

Rexroth IndraWorks - Deserialization RCE

CVE-2025-60036 HIGH

Rexroth IndraWorks <15V24 - Deserialization

CVE-2025-60035 HIGH

Rexroth IndraWorks <15V24 - Deserialization

CVE-2025-33253 HIGH

NVIDIA NeMo Framework <=2.6.1 - Malicious File Deserialization Remote Code Execution

CVE-2025-33252 HIGH

NVIDIA NeMo < 2.6.1 - Remote Code Execution via Untrusted Data Deserialization

CVE-2025-33245 HIGH

NVIDIA NeMo Framework <=2.6.1 - Malicious Data Deserialization Remote Code Execution

Previous Page 17 of 110 Next

Details

Vulnerabilities 2,743

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy