Weaknesses of type CWE-94
3,787 resultsCVE-2025-23354HIGHNVIDIA Megatron-LM for all platforms contains a vulnerability in the ensemble_classifer script where malicious data created by an attacker mEPSS 0.2%CVE-2023-34195—An issue was discovered in SystemFirmwareManagementRuntimeDxe in Insyde InsydeH2O with kernel 5.0 through 5.5. The implementation of the GetEPSS 0.2%CVE-2022-29821MEDIUMIn JetBrains Rider before 2022.1 local code execution via links in ReSharper Quick Documentation was possibleEPSS 0.2%CVE-2022-29814MEDIUMIn JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possibleEPSS 0.2%CVE-2025-12264MEDIUMWisencode Create Support Ticket create cross site scriptingEPSS 0.2%CVE-2022-29819MEDIUMIn JetBrains IntelliJ IDEA before 2022.1 local code execution via links in Quick Documentation was possibleEPSS 0.2%CVE-2025-23349HIGHNVIDIA Megatron-LM for all platforms contains a vulnerability in the tasks/orqa/unsupervised/nq.py component, where an attacker may cause a EPSS 0.2%CVE-2025-23348HIGHNVIDIA Megatron-LM for all platforms contains a vulnerability in the pretrain_gpt script, where malicious data created by an attacker may caEPSS 0.2%CVE-2025-23353HIGHNVIDIA Megatron-LM for all platforms contains a vulnerability in the msdp preprocessing script where malicious data created by an attacker mEPSS 0.2%CVE-2026-9568LOWThingsBoard YAML provision getGatewayDockerComposeFile code injectionEPSS 0.2%CVE-2025-10837MEDIUMcode-projects Simple Food Ordering System order.php cross site scriptingEPSS 0.2%CVE-2025-9939MEDIUMCodeAstro Real Estate Management System propertyview.php cross site scriptingEPSS 0.2%CVE-2026-47162HIGHVim: Vimscript Code Injection in netrw NetrwBookHistSave() via crafted directory nameEPSS 0.2%CVE-2025-33251HIGHNVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution. A successful exploit of this vulnerabiliEPSS 0.2%CVE-2024-47158HIGHN-LINE 2.0.6 and prior versions contain a code injection vulnerability. If this vulnerability is exploited, arbitrary code may be executed oEPSS 0.2%CVE-2025-33250HIGHNVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution. A successful exploit of this vulnerabiliEPSS 0.2%CVE-2026-1520MEDIUMrethinkdb Secondary Index cross site scriptingEPSS 0.2%CVE-2026-31251HIGHCosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (CWE-502) in EPSS 0.2%CVE-2025-14194MEDIUMcode-projects Employee Profile Management System view_personnel.php cross site scriptingEPSS 0.2%CVE-2026-11231HIGHInappropriate implementation in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary EPSS 0.2%