Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-502

CWE-502

Medium likelihood

Deserialization of Untrusted Data

Parent: CWE-913 - Improper Control of Dynamically-Managed Code Resources

The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.

2,593 vulnerabilities with CWE-502

CVE-2026-22248 HIGH

GLPI 11.0.0-11.0.4 - Authenticated RCE

CVE-2026-2626 HIGH

Divi-Booster <5.0.2 - CSRF & Object Injection

CVE-2026-26114 HIGH

Microsoft Office SharePoint - Deserialization

CVE-2026-25166 HIGH

Windows System Image Manager - Deserialization

CVE-2026-1286 HIGH

Unspecified Product - Deserialization

CVE-2026-27685 CRITICAL

SAP NetWeaver - Deserialization

CVE-2026-2020 HIGH

WordPress JS Archive List <=6.1.7 - Deserialization

CVE-2026-28277 MEDIUM

LangGraph SQLite Checkpoint <=1.0.9 - Deserialization

CVE-2026-27749 HIGH

Avira Internet Security - Deserialization

CVE-2026-2599 CRITICAL

Database for Contact Form 7 <1.4.7 - Deserialization

CVE-2026-28105 CRITICAL

ThemeREX Good Energy <=1.7.7 - Deserialization

CVE-2026-28074 CRITICAL

ThemeREX Pizza House <=1.4.0 - Deserialization

CVE-2026-27439 CRITICAL

ThemeREX Dentario <=1.5 - Deserialization

CVE-2026-27438 CRITICAL

ThemeREX Kingler <=1.7 - Deserialization

CVE-2026-27437 CRITICAL

ThemeREX Tennis Club <=1.2.3 - Deserialization

CVE-2026-27417 CRITICAL

SeventhQueen Sweet Date <4.0.1 - Deserialization

CVE-2026-27379 HIGH

NextScripts social-networks-auto-poster <=4.4.7 - Deserialization

CVE-2026-27369 HIGH

BoldThemes Celeste <=1.3.6 - Deserialization

CVE-2026-27338 HIGH

AivahThemes Car Zone <=3.7 - Deserialization

CVE-2026-27098 HIGH

axiomthemes Au Pair Agency <=1.2.2 - Deserialization

CVE-2026-24385 HIGH

Podlove Web Player <=5.9.1 - Deserialization

CVE-2026-23798 HIGH

blubrry PowerPress Podcasting <=11.15.10 - Deserialization

CVE-2026-22501 CRITICAL

Mounthood <=1.3.2 - Deserialization

CVE-2026-22497 CRITICAL

AncoraThemes Jardi <=1.7.2 - Deserialization

CVE-2026-22475 CRITICAL

axiomthemes Estate <=1.3.4 - Deserialization

Previous Page 6 of 104 Next

Details

Vulnerabilities 2,593

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy