Falhas do tipo CWE-943
57 resultadosCVE-2026-29793CRITICALNoSQL Injection via WebSocket id Parameter in MongoDB AdapterEPSS 0.5%CVE-2026-30941HIGHParse Server has a NoSQL injection via token type in password reset and email verification endpointsEPSS 0.5%CVE-2026-41327CRITICALDgraph: Pre-Auth Full Database Exfiltration via DQL Injection in Upsert Condition FieldEPSS 0.4%CVE-2026-33980HIGHAzure Data Explorer MCP Server: KQL Injection in multiple tools allows MCP client to execute arbitrary Kusto queriesEPSS 0.4%CVE-2025-36442MEDIUMIBM Db2 Denial of ServiceEPSS 0.4%CVE-2026-40352HIGHFastGPT: NoSQL Injection in updatePasswordByOld Leads to Account TakeoverEPSS 0.4%CVE-2025-36366MEDIUMIBM Db2 Denial of ServiceEPSS 0.4%CVE-2026-32247HIGHGraphiti vulnerable to Cypher Injection via unsanitized node_labels in search filtersEPSS 0.3%CVE-2026-42316MEDIUMKQL injection via kusto.tables.topics.mapping in kafka-sink-azure-kustoEPSS 0.3%CVE-2026-41328CRITICALDgraph: Pre-Auth Full Database Exfiltration via DQL Injection in NQuad Lang FieldEPSS 0.3%CVE-2026-34973MEDIUMphpMyFAQ has a LIKE Wildcard Injection in Search.php — Unescaped % and _ Metacharacters Enable Broad Content DisclosureEPSS 0.3%CVE-2026-3023MEDIUMNon-relational SQL injection vulnerability (NoSQLi) in the Wakyma application webEPSS 0.3%CVE-2026-45689CRITICALRocket.Chat: Pre-Auth NoSQL Injection in OAuth2 Token Endpoint leading to Arbitrary User ATOEPSS 0.3%CVE-2026-40102MEDIUMPlane: ORM Field Reference Injection via `segment` Parameter in Saved AnalyticsEPSS 0.3%CVE-2026-45688CRITICALRocket.Chat: Pre-Auth NoSQL Injection in CAS Login Handler leading to Arbitrary CAS/SAML User Session HijackEPSS 0.3%CVE-2026-53674HIGHBuddyPress 14.4.0 REGEXP Injection via @Mention Username ResolutionEPSS 0.3%CVE-2025-33114MEDIUMIBM Db2 for Linux denial of serviceEPSS 0.3%CVE-2026-42156HIGHFlowsint: Cypher query injection in node type on node creationEPSS 0.3%CVE-2026-54019MEDIUMOpen WebUI: RAG ACL Bypass in Milvus Multitenancy ModeEPSS 0.3%CVE-2026-30833MEDIUMRocket.Chat: NoSQL injection in the EE ddp-streamer-serviceEPSS 0.3%