Weaknesses of type CWE-94
3,787 resultsCVE-2025-10254MEDIUMAscensio System SIA OnlyOffice SVG Image Messages.aspx cross site scriptingEPSS 0.2%CVE-2026-5594MEDIUMpremAI-io premsql followup.py eval code injectionEPSS 0.2%CVE-2025-15024HIGHRCE in Yordam Informatics' Library Automation SystemEPSS 0.2%CVE-2024-21571HIGHSnyk has identified a remote code execution (RCE) vulnerability in all versions of Code Agent. The vulnerability enables an attacker to execEPSS 0.2%CVE-2025-11134MEDIUMCudy TR1200 Wireless Settings config cross site scriptingEPSS 0.2%CVE-2026-40287HIGHPraisonAI has RCE via Automatic tools.py ImportEPSS 0.2%CVE-2025-10949MEDIUMChangsha Developer Technology iView Editor Markdown cross site scriptingEPSS 0.2%CVE-2025-10253MEDIUMopenDCIM SVG File uploadifive.php cross site scriptingEPSS 0.2%CVE-2025-9103MEDIUMZenCart CKEditor cross site scriptingEPSS 0.2%CVE-2026-44334HIGHPraisonAI: Unauthenticated RCE via `tool_override.py`EPSS 0.2%CVE-2025-12330MEDIUMWillow CMS Add Post add cross site scriptingEPSS 0.2%CVE-2025-11333MEDIUMlangleyfcu Online Banking System Add Customer customer_add_action.php cross site scriptingEPSS 0.2%CVE-2021-33636HIGHLoad malicious images may cause process to be hijackedEPSS 0.2%CVE-2025-9659MEDIUMO2OA Personal Profile widget cross site scriptingEPSS 0.2%CVE-2025-15175MEDIUMSohuTV CacheCloud AppController.java appCommandAnalysis cross site scriptingEPSS 0.2%CVE-2026-7001MEDIUMDatacom DM4100 Ethernet Configuration cross site scriptingEPSS 0.2%CVE-2026-6998MEDIUMBDCOM P3310D New RMON Statistics cross site scriptingEPSS 0.2%CVE-2025-9658MEDIUMO2OA Personal Profile dict cross site scriptingEPSS 0.2%CVE-2026-7000MEDIUMDatacom DM4100 VLAN Page cross site scriptingEPSS 0.2%CVE-2026-6995MEDIUMBDCOM P3310D New User index.asp cross site scriptingEPSS 0.2%