Fallos del tipo CWE-20
4743 resultadosCVE-2025-1741MEDIUMb1gMail Admin Page users.php deserializationEPSS 0.4%CVE-2017-12338—A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to read the contents of arbitrary filEPSS 0.4%CVE-2025-13319HIGHAuthenticated SQL injection in API - Digi On-Prem ManagerEPSS 0.4%CVE-2023-7240MEDIUMBroken Access Control leading to SSRF in NetIQ Identity ConsoleEPSS 0.4%CVE-2025-24319HIGHBIG-IP Next Central Manager vulnerabilityEPSS 0.4%CVE-2018-0122—A vulnerability in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series Aggregation Services Routers could allow an authenEPSS 0.4%CVE-2025-10164MEDIUMlmsys sglang update_weights_from_tensor main deserializationEPSS 0.4%CVE-2021-34714HIGHMultiple Cisco Operating Systems Unidirectional Link Detection Denial of Service VulnerabilityEPSS 0.4%CVE-2024-7512MEDIUMConcrete CMS Stored XSS in Board instancesEPSS 0.4%CVE-2025-23202CRITICALImproper Input Validation in Bible Module for ROBLOXEPSS 0.4%CVE-2026-22699HIGHRustCrypto SM2-PKE has Unchecked AffinePoint Decoding (unwrap) in decrypt()EPSS 0.4%CVE-2024-2867MEDIUMPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.15.4 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.4%CVE-2023-5421LOW Possible XSS execution in customer information EPSS 0.4%CVE-2025-71003HIGHAn input validation vulnerability in the flow.arange() component of OneFlow v0.9.0 allows attackers to cause a Denial of Service (DoS) via aEPSS 0.4%CVE-2025-9207MEDIUMTI WooCommerce Wishlist <= 2.10.0 - Unauthenticated HTML InjectionEPSS 0.4%CVE-2025-54785HIGHSuiteCRM is Vulnerable to PHP Object Injection in ReportsEPSS 0.4%CVE-2026-22547CRITICALGitea repository creation accepts invalid field valuesEPSS 0.4%CVE-2026-34685LOWAdobe Commerce | Improper Input Validation (CWE-20)EPSS 0.4%CVE-2024-39780HIGHUse of unsafe yaml load in dynparamEPSS 0.4%CVE-2026-45556CRITICALRoxy-WI: Authenticated arbitrary file write on every managed load balancer (and downstream RCE) via WAF rule save `config_file_name`EPSS 0.4%