CVE-2026-28138

Publication date

2026-02-26 08:33:37

Family

Patchstack

State

PUBLISHED

Description

Deserialization of Untrusted Data vulnerability in Stylemix uListing ulisting allows Object Injection.This issue affects uListing: from n/a through <= 2.2.0.