Skip to content

CVE lookup

CVE-2026-27206

Pruva has a verified reproduction for CVE-2026-27206: Zumba JSON Serializer PHP Object Injection. The canonical evidence record is REPRO-2026-00108.

REPRO

REPRO-2026-00108

Package

zumba/json-serializer · composer

Severity

HIGH

Status

published