Weaknesses of type CWE-94
3,796 resultsCVE-2024-13420MEDIUMSmart Framework <= Multiple Plugins - Missing Authorization to Authenticated (Subscriber+) Settings UpdatesEPSS 0.2%CVE-2025-15173MEDIUMSohuTV CacheCloud InstanceController.java advancedAnalysis cross site scriptingEPSS 0.2%CVE-2026-10246MEDIUMSourceCodester Pharmacy Sales and Inventory System main create_medicine_presentation cross site scriptingEPSS 0.2%CVE-2026-10247MEDIUMSourceCodester Pharmacy Sales and Inventory System main create_generic_name cross site scriptingEPSS 0.2%CVE-2026-11534MEDIUMimvks786 student_management_system add.php cross site scriptingEPSS 0.2%CVE-2025-53419HIGHCOMMGR Code Injection VulnerabilityEPSS 0.2%CVE-2024-43771HIGHIn gatts_process_read_req of gatt_sr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote (pEPSS 0.2%CVE-2026-4165MEDIUMWorksuite HR, CRM and Project Management create cross site scriptingEPSS 0.2%CVE-2026-10228MEDIUMraisulislamg4 student_management_system_by_php admission_form_check.php cross site scriptingEPSS 0.2%CVE-2024-20485MEDIUMA vulnerability in the VPN web server of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software EPSS 0.2%CVE-2025-15188MEDIUMCampcodes Complete Online Beauty Parlor Management System search-invoices.php cross site scriptingEPSS 0.2%CVE-2025-14228MEDIUMYealink SIP-T21P E2 Local Directory cross site scriptingEPSS 0.2%CVE-2026-2933MEDIUMYiFang CMS Extended Management D_adManage.php update cross site scriptingEPSS 0.2%CVE-2026-2156MEDIUMcode-projects Online Student Management System Announcement Management index.php cross site scriptingEPSS 0.2%CVE-2025-13415MEDIUMicret EasyImages SVG Image upload.php cross site scriptingEPSS 0.2%CVE-2025-2867MEDIUMImproper Control of Generation of Code ('Code Injection') in GitLabEPSS 0.2%CVE-2025-7958HIGHA Code Injection vulnerability existed in Trellix Network Security CM and NX. A locally authenticated admin user can execute arbitrary code EPSS 0.2%CVE-2026-42301HIGHImproper Input Validation leading to Improper Control of Generation of Code ('Code Injection') in pyp2specEPSS 0.2%CVE-2026-53511HIGHcalibre: Arbitrary Code Execution in Template Formatter via Book MetadataEPSS 0.2%CVE-2025-14200MEDIUMalokjaiswal Hotel-Management-services-using-MYSQL-and-php Request Pending usersub.php cross site scriptingEPSS 0.2%