Weaknesses of type CWE-94
3,798 resultsCVE-2025-60068MEDIUMWordPress Javo Core plugin <= 3.0.0.266 - Arbitrary Code Execution vulnerabilityEPSS 0.2%CVE-2025-60070MEDIUMWordPress Molla - Multipurpose Responsive Shopify theme <= 1.5.13 - Arbitrary Code Execution vulnerabilityEPSS 0.2%CVE-2026-5332MEDIUMXiaopi Panel WAF Firewall demo.php cross site scriptingEPSS 0.2%CVE-2025-23306HIGHNVIDIA Megatron-LM for all platforms contains a vulnerability in the megatron/training/
arguments.py component where an attacker could causeEPSS 0.2%CVE-2026-2224MEDIUMcode-projects Online Reviewer System btn_functions.php cross site scriptingEPSS 0.2%CVE-2025-23305HIGHNVIDIA Megatron-LM for all platforms contains a vulnerability in the tools component, where an attacker may exploit a code injection issue. EPSS 0.2%CVE-2026-24155HIGHNVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to coEPSS 0.2%CVE-2025-54940MEDIUMAn HTML injection vulnerability exists in WordPress plugin "Advanced Custom Fields" prior to 6.4.3. If this vulnerability is exploited, crafEPSS 0.2%CVE-2026-48192MEDIUMA vulnerability has been identified in Mendix Studio Pro 10.11 (All versions), Mendix Studio Pro 10.12 (All versions), Mendix Studio Pro 10.EPSS 0.2%CVE-2026-1151MEDIUMtechnical-laohu mpay User Center cross site scriptingEPSS 0.2%CVE-2025-14662MEDIUMcode-projects Student File Management System Update User update_user.php cross site scriptingEPSS 0.2%CVE-2026-0587MEDIUMXinhu Rainrock RockOA Cover Image rock_page_gong.php cross site scriptingEPSS 0.2%CVE-2026-27674MEDIUMCode Injection vulnerability in SAP NetWeaver Application Server Java (Web Dynpro Java)EPSS 0.2%CVE-2026-1161MEDIUMpbrong hrms recruitment.go UpdateRecruitmentById cross site scriptingEPSS 0.2%CVE-2026-6216MEDIUMDbGate SVG Icon String FontIcon.svelte cross site scriptingEPSS 0.2%CVE-2025-15134MEDIUMyourmaileyes MOOC Submission MainController.java subreview cross site scriptingEPSS 0.2%CVE-2026-5106MEDIUMcode-projects Exam Form Submission update_fst.php cross site scriptingEPSS 0.2%CVE-2026-9414MEDIUMSourceCodester Indian Invoicing System Invoice Template Render Database-Backed add_order.php cross site scriptingEPSS 0.2%CVE-2026-6745MEDIUMBagisto Custom Scripts cross site scriptingEPSS 0.2%CVE-2026-13570MEDIUMSourceCodester Inventory Management System User Registration Endpoint users_handler.php cross site scriptingEPSS 0.2%