Fallos del tipo CWE-94
3787 resultadosCVE-2025-3004MEDIUMSayski ForestBlog search cross site scriptingEPSS 0.3%CVE-2025-0485MEDIUMFanli2012 native-php-cms sysconfig_doedit.php cross site scriptingEPSS 0.3%CVE-2025-66078CRITICALWordPress Hotel Booking Lite plugin <= 5.2.3 - Remote Code Execution (RCE) vulnerabilityEPSS 0.3%CVE-2025-3005MEDIUMSayski ForestBlog Friend Link cross site scriptingEPSS 0.3%CVE-2026-10134CRITICALUnauthenticated Server-Side RCE via PythonCodeStructuredTool in Public FlowsEPSS 0.3%CVE-2025-6694MEDIUMLabRedesCefetRJ WeGIA Adicionar Unidade adicionar_unidade.php cross site scriptingEPSS 0.3%CVE-2025-1577MEDIUMcode-projects Blood Bank System prostatus.php cross site scriptingEPSS 0.3%CVE-2025-1209MEDIUMcode-projects Wazifa System search_resualts.php searchuser cross site scriptingEPSS 0.3%CVE-2022-27537HIGHPotential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escEPSS 0.3%CVE-2025-7951MEDIUMcode-projects Public Chat Room send_message.php cross site scriptingEPSS 0.3%CVE-2024-13557MEDIUMShortcodes by United Themes <= 5.1.6 - Unauthenticated Arbitrary Shortcode ExecutionEPSS 0.3%CVE-2026-32999CRITICALInsufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute EPSS 0.3%CVE-2025-1208MEDIUMcode-projects Wazifa System Profile.php cross site scriptingEPSS 0.3%CVE-2025-2375MEDIUMPHPGurukul Human Metapneumovirus Testing Management System Admin Profile Page profile.php cross site scriptingEPSS 0.3%CVE-2025-1195MEDIUMcode-projects Real Estate Property Management System EditCategory cross site scriptingEPSS 0.3%CVE-2025-2085MEDIUMStarSea99 starsea-mall save cross site scriptingEPSS 0.3%CVE-2025-13244MEDIUMcode-projects Student Information System register.php cross site scriptingEPSS 0.3%CVE-2024-52925MEDIUMIn OPSWAT MetaDefender Kiosk before 4.7.0, arbitrary code execution can be performed by an attacker via the MD Kiosk Unlock Device feature fEPSS 0.3%CVE-2025-3795MEDIUMDaiCuo SEO Optimization Settings Section cross site scriptingEPSS 0.3%CVE-2025-50123HIGHA
CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists that could cause remote
command execution by a priEPSS 0.3%