Weaknesses of type CWE-94
3,754 resultsCVE-2021-37384CRITICALRCE (Remote Code Execution) vulnerability was found in some Furukawa ONU models, this vulnerability allows remote unauthenticated users to sEPSS 1.4%CVE-2024-28117HIGHGrav vulnerable to Server Side Template Injection (SSTI)EPSS 1.4%CVE-2023-27867MEDIUMIBM Db2 code executionEPSS 1.4%CVE-2023-27868MEDIUMIBM Db2 code executionEPSS 1.4%CVE-2023-27869MEDIUMIBM Db2 code executionEPSS 1.4%CVE-2024-33430HIGHAn issue in phiola/src/afilter/pcm_convert.h:513 of phiola v2.0-rc22 allows a remote attacker to execute arbitrary code via the a crafted .wEPSS 1.4%CVE-2024-30923CRITICALSQL Injection vulnerability in DerbyNet v9.0 and below allows a remote attacker to execute arbitrary code via the where Clause in Racer DocuEPSS 1.4%CVE-2023-5550MEDIUMMoodle: rce due to lfi risk in some misconfigured shared hosting environmentsEPSS 1.4%CVE-2024-5651HIGHFence-agents-remediation: fence agent command line options leads to remote code executionEPSS 1.4%CVE-2024-31807CRITICALTOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a remote code execution (RCE) vulnerability via the hostTime parameter in thEPSS 1.4%CVE-2022-44702HIGHWindows Terminal Remote Code Execution VulnerabilityEPSS 1.4%CVE-2024-21672HIGHThis High severity Remote Code Execution (RCE) vulnerability was introduced in version 2.1.0 of Confluence Data Center and Server.
Remote CEPSS 1.4%CVE-2022-47318HIGHruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a reposEPSS 1.4%CVE-2022-48116HIGHAyaCMS v3.1.2 was discovered to contain a remote code execution (RCE) vulnerability via the component /admin/tpl_edit.inc.php.EPSS 1.4%CVE-2022-3242MEDIUMHTML code Injection in template search keyword in microweber/microweberEPSS 1.4%CVE-2023-41450HIGHAn issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter.EPSS 1.4%CVE-2022-46648HIGHruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a reposEPSS 1.4%CVE-2024-50492HIGHWordPress ScottCart plugin <= 1.1 - Remote Code Execution (RCE) vulnerabilityEPSS 1.4%CVE-2023-36014HIGHMicrosoft Edge (Chromium-based) Remote Code Execution VulnerabilityEPSS 1.4%CVE-2024-33445CRITICALAn issue in hisiphp v2.0.111 allows a remote attacker to execute arbitrary code via a crafted script to the SystemPlugins::mkInfo parameter EPSS 1.3%