CVE-2025-24779 – NooTheme Yogi Deserialization of Untrusted Data Object Injection Vulnerability

July 16, 2025

CVE ID : CVE-2025-24779

Published : July 16, 2025, 12:15 p.m. | 5 hours, 59 minutes ago

Description : Deserialization of Untrusted Data vulnerability in NooTheme Yogi allows Object Injection. This issue affects Yogi: from n/a through 2.9.0.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-28959 – “MD Yeasin Ul Haider URL Shortener SQL Injection”

Next Article CVE-2025-24777 – Awethemes Hillter Object Injection Vulnerability

Report: 71% of tech leaders won’t hire devs without AI skills

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Too many open browser tabs? This is still my favorite solution – and has been for years

This new browser won’t monetize your every move – how to try it

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

The details of TC39’s last meeting

The details of TC39’s last meeting

Reclaim Space: Delete Docker Orphan Layers

Notes Android App Using SQLite

KeySmith – SSH key management

KeySmith – SSH key management

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

CVE-2025-24779 – NooTheme Yogi Deserialization of Untrusted Data Object Injection Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Evaluating potential cybersecurity threats of advanced AI

Context extraction from image files in Amazon Q Business using LLMs

I talked to 5 AIs about my cat, Mr. Giggles – and it says a lot about the state of chatbots

CVE-2025-4682 – WordPress Gutenberg Blocks, Patterns & Templates Stored Cross-Site Scripting Vulnerability

May 2025 Patch Tuesday forecast: Panic, change, and hope

CVE-2025-49809 – MTR Sudo Execution Hijacking Vulnerability

Google verhelpt zes beveiligingslekken in Chrome

iOS zero-click attacks used to deliver Graphite spyware (CVE-2025-43200)

CVE-2025-24779 – NooTheme Yogi Deserialization of Untrusted Data Object Injection Vulnerability

Related Posts