Description
In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code.
Remediation
References
Related Vulnerabilities
WordPress Plugin Facebook With Login Multiple Vulnerabilities (1.0)
Perl Improper Input Validation Vulnerability (CVE-2016-2381)
WordPress Plugin SEO Redirection-301 Redirect Manager Cross-Site Request Forgery (8.9)
SharePoint CVE-2020-1440 Vulnerability (CVE-2020-1440)
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.113)