Fallos del tipo CWE-94

3799 resultados
CVE-2024-53386MEDIUMStage.js through 0.8.10 allows DOM Clobbering (with resultant XSS for untrusted input that contains HTML but does not directly contain JavaSEPSS 0.2%CVE-2025-0161HIGHIBM Security Verify Access Appliance code injectionEPSS 0.2%CVE-2024-13187MEDIUMKingsoft WPS Office TCC code injectionEPSS 0.2%CVE-2026-2939MEDIUMitsourcecode Student Management System Add Student add_student cross site scriptingEPSS 0.2%CVE-2026-33233HIGHAutoGPT Platform: Remote Code Execution via Unsafe Pickle Deserialization of Redis Cache EntriesEPSS 0.2%CVE-2024-30963HIGHBuffer Overflow vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2- ROS2-humble and navigation 2-humble allows a lEPSS 0.2%CVE-2026-42879MEDIUMFacturaScripts: Authenticated Remote Code Execution (RCE) via GIF Image Upload in Product ImagesEPSS 0.2%CVE-2025-23313HIGHNVIDIA NeMo Framework for all platforms contains a vulnerability in the NLP component, where malicious data created by an attacker could cauEPSS 0.2%CVE-2026-3716MEDIUMWavlink WL-WN579X3-C adm.cgi sub_401AD4 cross site scriptingEPSS 0.2%CVE-2026-1700MEDIUMprojectworlds House Rental and Property Listing sms.php cross site scriptingEPSS 0.2%CVE-2026-4506MEDIUMMindinventory MindSQL mindsql_core.py ask_db code injectionEPSS 0.2%CVE-2026-3170MEDIUMSourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System patient-search.php cross site scriptingEPSS 0.2%CVE-2026-54271HIGHprotobufjs-cli: Code injection in pbjs static output from crafted JSON descriptor namesEPSS 0.2%CVE-2024-52945HIGHAn issue was discovered in Veritas NetBackup before 10.5. This only applies to NetBackup components running on a Windows Operating System. IEPSS 0.2%CVE-2026-1977MEDIUMisaacwasserman mcp-vegalite-server visualize_data eval code injectionEPSS 0.2%CVE-2026-3955MEDIUMelecV2P jsfile Endpoint wbjs.js runJSFile code injectionEPSS 0.2%CVE-2025-7868MEDIUMPortabilis i-Educar Calendar educar_calendario_dia_motivo_cad.php cross site scriptingEPSS 0.2%CVE-2026-3968MEDIUMAutohomeCorp frostmourne Oracle Nashorn JavaScript ExpressionRule.java scriptEngine.eval code injectionEPSS 0.2%CVE-2025-13181MEDIUMpojoin h3blog add cross site scriptingEPSS 0.2%CVE-2025-13182MEDIUMpojoin h3blog addtitle cross site scriptingEPSS 0.2%