CVE-2025-39349 – CiyaShop Object Injection Vulnerability

May 19, 2025

CVE ID : CVE-2025-39349

Published : May 19, 2025, 8:15 p.m. | 3 hours, 59 minutes ago

Description : Deserialization of Untrusted Data vulnerability in Potenzaglobalsolutions CiyaShop allows Object Injection.This issue affects CiyaShop: from n/a through 4.18.0.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-39354 – ThemeGoods Grand Conference Object Injection Vulnerability

Next Article CVE-2025-39348 – ThemeGoods Grand Restaurant WordPress Object Injection Vulnerability

10 Top Node.js Development Companies for Enterprise-Scale Projects (2025-2026 Ranked & Reviewed)

12 Must-Know Cost Factors When Hiring Node.js Developers for Your Enterprise

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Hideo Kojima’s “OD” is still in development with Xbox, at least for today

Microsoft is replacing salespeople with “solutions engineers” amid recent layoffs — promoting Copilot AI while ChatGPT dominates the enterprise sector

Microsoft’s extra year of Windows 10 security updates isn’t a “viable solution” for the 400 million PCs that can’t upgrade to Windows 11 — “It’s obvious users are frustrated and feel yanked around.”

OpenAI almost shipped ChatGPT with a different name — before a late-night twist

The dog days of JavaScript summer

The dog days of JavaScript summer

Databricks Lakebase – Database Branching in Action

Flutter + GitHub Copilot = Your New Superpower

Hideo Kojima’s “OD” is still in development with Xbox, at least for today

Hideo Kojima’s “OD” is still in development with Xbox, at least for today

Microsoft is replacing salespeople with “solutions engineers” amid recent layoffs — promoting Copilot AI while ChatGPT dominates the enterprise sector

Microsoft’s extra year of Windows 10 security updates isn’t a “viable solution” for the 400 million PCs that can’t upgrade to Windows 11 — “It’s obvious users are frustrated and feel yanked around.”

CVE-2025-39349 – CiyaShop Object Injection Vulnerability

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

Can’t Find a Tax Accountant? Here’s Why and What To Do Next

Sectricity RedSOC Platform

Windows 11 24H2 PCs will finally deliver the best of USB-C, just like MacBook

Mozilla Firefox To Get AI-Powered Link Previews Feature on Hover

CVE-2025-36004 – IBM Facsimile Support for i Privilege Escalation Vulnerability

Quest Patches Critical KACE SMA Flaws, Including CVSS 10 Authentication Bypass

AI overviews and an AI chatbot are coming to YouTube. Here’s what they look like

Business Case for Agentic AI SOC Analysts

CVE-2025-39349 – CiyaShop Object Injection Vulnerability

Related Posts