exploitDog

GHSA-v6x7-wpp7-g26g

Опубликовано: 20 фев. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Deserialization of Untrusted Data vulnerability in Kleor Contact Manager contact-manager allows Object Injection.This issue affects Contact Manager: from n/a through <= 9.1.1.

Deserialization of Untrusted Data vulnerability in Kleor Contact Manager contact-manager allows Object Injection.This issue affects Contact Manager: from n/a through <= 9.1.1.

Ссылки

EPSS

Процентиль: 19%

0.0006

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-502

Связанные уязвимости

CVE-2025-68853

CVSS3: 8.8

nvd

3 месяца назад

Deserialization of Untrusted Data vulnerability in Kleor Contact Manager contact-manager allows Object Injection.This issue affects Contact Manager: from n/a through <= 9.1.1.

EPSS

Процентиль: 19%

0.0006

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-502