CVE Daily

CVE-2025-53990

Deserialization of Untrusted Data vulnerability in jetmonsters JetFormBuilder al...

High CVSS 7.2

Overview

Deserialization of Untrusted Data vulnerability in jetmonsters JetFormBuilder allows Object Injection. This issue affects JetFormBuilder: from n/a through 3.5.1.2.

CWE: CWE-502 Published: 2025-07-16T11:15:26.907
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 7.2 (HIGH)
  • Detected tags: deserialization (tag impact: MODERATE)

Recommended actions:

  • Avoid untrusted deserialization; prefer safe formats (JSON) and signatures.

Recommended tools

Tags