Vulnerabilities > Deserialization of Untrusted Data

DATE CVE VULNERABILITY TITLE RISK
2024-02-20 CVE-2024-1651 Torrentpier version 2.4.1 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to insecure deserialization.
network
low complexity
CWE-502
critical
 10.0
10
2024-02-15 CVE-2023-40057 Deserialization of Untrusted Data vulnerability in Solarwinds Access Rights Manager
The SolarWinds Access Rights Manager was found to be susceptible to a Remote Code Execution Vulnerability.
low complexity
solarwinds CWE-502
critical
 9.0
9.0
2024-02-15 CVE-2024-23478 Deserialization of Untrusted Data vulnerability in Solarwinds Access Rights Manager
SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Remote Code Execution Vulnerability.
low complexity
solarwinds CWE-502
8.0
8.0
2024-02-14 CVE-2023-26592 Deserialization of Untrusted Data vulnerability in Intel Thunderbolt DCH Driver 1.41.1054.0/72
Deserialization of untrusted data in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable a denial of service via local access.
local
low complexity
intel CWE-502
3.8
3.8
2024-02-12 CVE-2023-46615 Deserialization of Untrusted Data vulnerability in Kallidan KD Coming Soon
Deserialization of Untrusted Data vulnerability in Kalli Dan.
network
low complexity
kallidan CWE-502
critical
 9.8
9.8
2024-02-12 CVE-2024-23512 Deserialization of Untrusted Data vulnerability in Wpxpo Wowstore
Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks.This issue affects ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks: from n/a through 3.1.4.
network
low complexity
wpxpo CWE-502
critical
 9.8
9.8
2024-02-12 CVE-2024-24796 Deserialization of Untrusted Data vulnerability in Mage-People Event Manager and Tickets Selling for Woocommerce
Deserialization of Untrusted Data vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin.This issue affects Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin: from n/a through 4.1.1.
network
low complexity
mage-people CWE-502
8.8
8.8
2024-02-12 CVE-2024-24797 Deserialization of Untrusted Data vulnerability in G5Plus ERE Recently Viewed
Deserialization of Untrusted Data vulnerability in G5Theme ERE Recently Viewed – Essential Real Estate Add-On.This issue affects ERE Recently Viewed – Essential Real Estate Add-On: from n/a through 1.3.
network
low complexity
g5plus CWE-502
critical
 9.8
9.8
2024-02-12 CVE-2024-25100 Deserialization of Untrusted Data vulnerability in Wpswings Coupon Referral Program 1.7.2
Deserialization of Untrusted Data vulnerability in WP Swings Coupon Referral Program.This issue affects Coupon Referral Program: from n/a through 1.7.2.
network
low complexity
wpswings CWE-502
critical
 9.8
9.8
2024-02-09 CVE-2024-1353 Deserialization of Untrusted Data vulnerability in PHPems 1.0
A vulnerability, which was classified as critical, has been found in PHPEMS up to 1.0.
network
low complexity
phpems CWE-502
critical
 9.8
9.8