Fallos del tipo CWE-74
4155 resultadosCVE-2024-36420HIGHGHSL-2023-232: Flowise Path Injection at /api/v1/openai-assistants-fileEPSS 1.8%CVE-2025-7160MEDIUMPHPGurukul Zoo Management System index.php sql injectionEPSS 1.7%CVE-2021-38458CRITICALMoxa MXview Network Management SoftwareEPSS 1.7%CVE-2025-6403MEDIUMcode-projects School Fees Payment System student.php sql injectionEPSS 1.7%CVE-2017-16719—An Injection issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPEPSS 1.7%CVE-2026-6980MEDIUMDivyanshu-hash GitPilot-MCP main.py repo_path command injectionEPSS 1.7%CVE-2017-17514HIGHboxes.c in nip2 8.4.0 does not validate strings before launching the program specified by the BROWSER environment variable, which might alloEPSS 1.7%CVE-2025-7883HIGHEluktronics Control Center Powershell Script Command command injectionEPSS 1.7%CVE-2026-11452MEDIUMGL.iNet GL-MT3000 SET_USER_PWD glc FUN_0042e200 command injectionEPSS 1.7%CVE-2025-11488MEDIUMD-Link DIR-852 HNAP1 command injectionEPSS 1.7%CVE-2023-36470CRITICALCode injection in icon themes of XWiki PlatformEPSS 1.7%CVE-2026-7687MEDIUMlangflow-ai langflow Full Builtins code_parser.py CodeParser.parse_callable_details command injectionEPSS 1.7%CVE-2025-9744MEDIUMCampcodes Online Loan Management System ajax.php sql injectionEPSS 1.7%CVE-2025-10090MEDIUMJinher OA GetTreeDate.aspx sql injectionEPSS 1.7%CVE-2023-46304HIGHmodules/Users/models/Module.php in Vtiger CRM 7.5.0 allows a remote authenticated attacker to run arbitrary PHP code because an unprotected EPSS 1.7%CVE-2022-24832HIGHBundled ldap-authentication-plugin fails to neutralise LDAP special elements in usernamesEPSS 1.6%CVE-2023-41834—Apache Flink Stateful Functions allowed HTTP header injection due to Improper Neutralization of CRLF SequencesEPSS 1.6%CVE-2021-21263HIGHQuery Binding Exploitation in LaravelEPSS 1.6%CVE-2026-2130MEDIUMBurtTheCoder mcp-maigret search_username index.ts command injectionEPSS 1.6%CVE-2026-11448MEDIUMGL.iNet GL-MT3000 Minidlna Service rpc realpath command injectionEPSS 1.6%