CWE-502
Deserialization of Untrusted Data
The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.
Official CWE-502 definition at MITREImpactr finds and proves weaknesses like CWE-502 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist