exploitDog

GHSA-vp2m-r3pp-p859

Опубликовано: 20 фев. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Deserialization of Untrusted Data vulnerability in ThemeREX Extreme Store extremestore allows Object Injection.This issue affects Extreme Store: from n/a through <= 1.5.7.

Deserialization of Untrusted Data vulnerability in ThemeREX Extreme Store extremestore allows Object Injection.This issue affects Extreme Store: from n/a through <= 1.5.7.

Ссылки

EPSS

Процентиль: 19%

0.00061

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-502

Связанные уязвимости

CVE-2025-69404

CVSS3: 9.8

nvd

3 месяца назад

Deserialization of Untrusted Data vulnerability in ThemeREX Extreme Store extremestore allows Object Injection.This issue affects Extreme Store: from n/a through <= 1.5.10.

EPSS

Процентиль: 19%

0.00061

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-502