Falhas do tipo CWE-94

3.785 resultados
CVE-2023-28793HIGHHeap Based Buffer Overflow in LibraryEPSS 0.3%CVE-2024-29409MEDIUMFile Upload vulnerability in nestjs nest v.10.3.2 allows a remote attacker to execute arbitrary code via the Content-Type header.EPSS 0.3%CVE-2025-5516MEDIUMTOTOLINK X2000R URL Filtering Page formFilter cross site scriptingEPSS 0.3%CVE-2025-8812MEDIUMatjiu pybbs Admin Panel settings cross site scriptingEPSS 0.3%CVE-2024-13033MEDIUMcode-projects Chat System chatroom.php cross site scriptingEPSS 0.3%CVE-2026-2154MEDIUMSourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System Patient Registration registration.php cross site scriptingEPSS 0.3%CVE-2025-0578MEDIUMFacile Sistemas Cloud Apps Password Reset forgotpassword cross site scriptingEPSS 0.3%CVE-2025-7856MEDIUMPHPGurukul Apartment Visitors Management System HTTP POST Request pass-details.php cross site scriptingEPSS 0.3%CVE-2025-9681MEDIUMO2OA Personal Profile agent cross site scriptingEPSS 0.3%CVE-2025-0219MEDIUMTrimble SPS851 Receiver Status Identity Tab cross site scriptingEPSS 0.3%CVE-2025-7817MEDIUMPHPGurukul Apartment Visitors Management System HTTP POST Request bwdates-reports.php cross site scriptingEPSS 0.3%CVE-2025-7818MEDIUMPHPGurukul Apartment Visitors Management System HTTP POST Request category.php cross site scriptingEPSS 0.3%CVE-2025-47481MEDIUMWordPress GS Testimonial Slider plugin <= 3.2.9 - Content Injection vulnerabilityEPSS 0.3%CVE-2024-30961HIGHInsecure Permissions vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2- ROS2-humble and navigation 2-humble allowEPSS 0.3%CVE-2026-32573CRITICALWordPress Nelio AB Testing plugin <= 8.2.7 - Remote Code Execution (RCE) vulnerabilityEPSS 0.3%CVE-2025-2645MEDIUMPHPGurukul Art Gallery Management System product.php cross site scriptingEPSS 0.3%CVE-2025-47562MEDIUMWordPress MapSVG plugin <= 8.5.34 - Content Injection VulnerabilityEPSS 0.3%CVE-2026-2547MEDIUMLigeroSmart index.pl AgentDashboard cross site scriptingEPSS 0.3%CVE-2024-37846CRITICALMangoOS before 5.2.0 was discovered to contain a Client-Side Template Injection (CSTI) vulnerability via the Platform Management Edit page.EPSS 0.3%CVE-2026-55388HIGHpiscina: Prototype Pollution Gadget → RCE via inherited options.filenameEPSS 0.3%