CVE-2025-24779 – NooTheme Yogi Deserialization of Untrusted Data Object Injection Vulnerability

July 16, 2025

CVE ID : CVE-2025-24779

Published : July 16, 2025, 12:15 p.m. | 5 hours, 59 minutes ago

Description : Deserialization of Untrusted Data vulnerability in NooTheme Yogi allows Object Injection. This issue affects Yogi: from n/a through 2.9.0.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-28959 – “MD Yeasin Ul Haider URL Shortener SQL Injection”

Next Article CVE-2025-24777 – Awethemes Hillter Object Injection Vulnerability

Report: 71% of tech leaders won’t hire devs without AI skills

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Too many open browser tabs? This is still my favorite solution – and has been for years

This new browser won’t monetize your every move – how to try it

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

The details of TC39’s last meeting

The details of TC39’s last meeting

Notes Android App Using SQLite

How to Get Security Patches for Legacy Unsupported Node.js Versions

KeySmith – SSH key management

KeySmith – SSH key management

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

CVE-2025-24779 – NooTheme Yogi Deserialization of Untrusted Data Object Injection Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

CISA Adds ThreeVulnerabilities to KEV Catalog

8 ways to protect your privacy on Linux and keep your data safe

Can you build a billion-dollar business with only AI agents (yet)? This author thinks so

Basic Networking Part 2 — What Is Data Packets?

Orca Security announces new solution for scanning Bitbucket repositories for security issues

Altavize is an AI-powered Exce

Foundation Model Hidden Representations for Heart Rate Estimation from Auscultation

CVE-2025-52081 – Netgear XR300 Stack-Based Buffer Overflow Vulnerability

CVE-2025-24779 – NooTheme Yogi Deserialization of Untrusted Data Object Injection Vulnerability

Related Posts