Fallos del tipo CWE-94

3798 resultados
CVE-2025-6127MEDIUMPHPGurukul Nipah Virus Testing Management System search-report.php cross site scriptingEPSS 0.2%CVE-2025-5651MEDIUMcode-projects Traffic Offense Reporting System saveuser.php cross site scriptingEPSS 0.2%CVE-2025-5797MEDIUMcode-projects Laundry System insert_type.php cross site scriptingEPSS 0.2%CVE-2026-52200CRITICALAn issue in Generic OEM UZ801_v2.1 4G LTE Router V3.4.3 allows a remote attacker to execute arbitrary code via the /ajax web management API EPSS 0.2%CVE-2025-15583MEDIUMdetronetdip E-commerce function.php get_safe_value cross site scriptingEPSS 0.2%CVE-2026-5254MEDIUMwelovemedia FFmate Webhook AppJsonTreeView.vue cross site scriptingEPSS 0.2%CVE-2026-1136MEDIUMlcg0124 BootDo ContentController save cross site scriptingEPSS 0.2%CVE-2026-5253MEDIUMbufanyun HotGo editNotice Endpoint MessageList.vue cross site scriptingEPSS 0.2%CVE-2025-5796MEDIUMcode-projects Laundry System edit_type.php cross site scriptingEPSS 0.2%CVE-2025-13784MEDIUMyungifez Skuul School Management System SVG File edit cross site scriptingEPSS 0.2%CVE-2026-4973MEDIUMSourceCodester Online Quiz System add-question.php cross site scriptingEPSS 0.2%CVE-2026-44287MEDIUMFastGPT: sandbox escape to RCE - code-sandbox regex /\bimport\s*\(/ is bypassableEPSS 0.2%CVE-2025-6288MEDIUMPHPGurukul Bus Pass Management System Profile Page admin-profile.php cross site scriptingEPSS 0.2%CVE-2026-7388MEDIUMEyouCMS Template File FilemanagerLogic.php editFile code injectionEPSS 0.2%CVE-2025-9717MEDIUMO2OA Personal Profile unit cross site scriptingEPSS 0.2%CVE-2025-9719MEDIUMO2OA Personal Profile script cross site scriptingEPSS 0.2%CVE-2026-0730MEDIUMPHPGurukul Staff Leave Management System SVG File adminviews.py UPDATE_STAFF cross site scriptingEPSS 0.2%CVE-2026-43874HIGHWWBN AVideo: Incomplete Fix for YPTSocket autoEvalCodeOnHTML Strip: Unauthenticated Cross-User JavaScript Execution via `$msg['json']` Relay BypassEPSS 0.2%CVE-2024-45933MEDIUMOnlineNewsSite v1.0 is vulnerable to Cross Site Scripting (XSS) which allows attackers to execute arbitrary code via the Title and summary fEPSS 0.2%CVE-2025-9655MEDIUMO2OA Personal Profile person cross site scriptingEPSS 0.2%