CWE-502:可信数据的反序列化[查看]

漏洞名称
Uncontrolled deserialization of a pickled object in models.py...
Liferay Portal CE 6.2.5 allows remote command execution...
A vulnerability in the Java deserialization function used...
mintinstall (aka Software Manager) 7.9.9 for Linux Mint...
A series of deserialization vulnerabilities have been...
In JobStore, there is a mismatched...
BMC Remedy ITSM Suite is prone to unspecified...
Insecure deserialization of untrusted data in Micro Focus...
Manipulating classpath asset file URLs, an attacker could...
In Pimcore before 5.7.1, an attacker with limited...
[共 270 条]