Search Vulnerabilities

Changjetong T+ <= 16.x GetStoreWarehouseByStore Deserialization RCE

CVE-2026-23746

Entrust Instant Financial Issuance (IFI) SmartCardController Service .NET Remoting RCE

CVE-2026-21226

Azure Core shared client library for Python Remote Code Execution Vulnerability

CVE-2026-20963

Microsoft SharePoint Remote Code Execution Vulnerability

CVE-2026-0859

TYPO3 CMS Allows Insecure Deserialization via Mailer File Spool

CVE-2024-14021

LlamaIndex <= 0.11.6 BGEM3Index Unsafe Deserialization

CVE-2025-69276

LOW

Spectrum insecure deserialiation

CVE-2026-22612

Fickling vulnerable to detection bypass due to "builtins" blindness

CVE-2026-22609

Fickling has Static Analysis Bypass via Incomplete Dangerous Module Blocklist

CVE-2026-22608

Fickling vulnerable to use of ctypes and pydoc gadget chain to bypass detection

CVE-2026-22607

Fickling Blocklist Bypass: cProfile.run()

CVE-2026-22606

Fickling has a bypass via runpy.run_path() and runpy.run_module()

CVE-2025-67911

WordPress Newsletters plugin <= 4.11 - PHP Object Injection vulnerability

Jan 8, 2026

CVE-2026-22187

Bio-Formats <= 8.3.0 Memoizer Unsafe Deserialization via .bfmemo Cache Files

CVE-2025-47552

WordPress DZS Video Gallery plugin <= 12.37 - PHP Object Injection Vulnerability

CVE-2025-47553

WordPress DZS Video Gallery plugin <= 12.25 - PHP Object Injection vulnerability

Jan 6, 2026

CVE-2025-31047

WordPress Themify Edmin theme <= 2.0.0 - PHP Object Injection Vulnerability

CVE-2025-15453

milvus HTTP Endpoint expr.go expr.Exec deserialization

CVE-2025-15438

PluXml Media Management medias.php __destruct deserialization

Jan 2, 2026

CVE-2025-11157

Arbitrary Code Execution in feast-dev/feast

Jan 1, 2026

Showing 1 - 20 of 1,000+ results

...

Searching...

Filters

1,000+ results

CVE-2023-7334

Changjetong T+ <= 16.x GetStoreWarehouseByStore Deserialization RCE

CVE-2026-23746

Entrust Instant Financial Issuance (IFI) SmartCardController Service .NET Remoting RCE

CVE-2026-21226

Azure Core shared client library for Python Remote Code Execution Vulnerability

CVE-2026-20963

Microsoft SharePoint Remote Code Execution Vulnerability

CVE-2026-0859

TYPO3 CMS Allows Insecure Deserialization via Mailer File Spool

CVE-2024-14021

LlamaIndex <= 0.11.6 BGEM3Index Unsafe Deserialization

CVE-2025-69276

LOW

Spectrum insecure deserialiation

CVE-2026-22612

Fickling vulnerable to detection bypass due to "builtins" blindness

CVE-2026-22609

Fickling has Static Analysis Bypass via Incomplete Dangerous Module Blocklist

CVE-2026-22608

Fickling vulnerable to use of ctypes and pydoc gadget chain to bypass detection

CVE-2026-22607

Fickling Blocklist Bypass: cProfile.run()

CVE-2026-22606

Fickling has a bypass via runpy.run_path() and runpy.run_module()

CVE-2025-67911

WordPress Newsletters plugin <= 4.11 - PHP Object Injection vulnerability

Jan 8, 2026

CVE-2026-22187

Bio-Formats <= 8.3.0 Memoizer Unsafe Deserialization via .bfmemo Cache Files

CVE-2025-47552

WordPress DZS Video Gallery plugin <= 12.37 - PHP Object Injection Vulnerability

CVE-2025-47553

WordPress DZS Video Gallery plugin <= 12.25 - PHP Object Injection vulnerability

Jan 6, 2026

CVE-2025-31047

WordPress Themify Edmin theme <= 2.0.0 - PHP Object Injection Vulnerability

CVE-2025-15453

milvus HTTP Endpoint expr.go expr.Exec deserialization

CVE-2025-15438

PluXml Media Management medias.php __destruct deserialization

Jan 2, 2026

CVE-2025-11157

Arbitrary Code Execution in feast-dev/feast