CVE Daily

CVE-2025-30949

Deserialization of Untrusted Data vulnerability in Guru Team Site Chat on Telegr...

Critical CVSS 9.8

Overview

Deserialization of Untrusted Data vulnerability in Guru Team Site Chat on Telegram allows Object Injection. This issue affects Site Chat on Telegram: from n/a through 1.0.4.

CWE: CWE-502 Published: 2025-07-16T12:15:24.987
Risk analysis

This vulnerability is rated 🔴 CRITICAL.

  • CVSS: 9.8 (CRITICAL)
  • Detected tags: deserialization (tag impact: MODERATE)

Recommended actions:

  • Avoid untrusted deserialization; prefer safe formats (JSON) and signatures.

Recommended tools

Tags