Weaknesses of type CWE-473

5 results

CVE-2023-36845CRITICALJunos OS: EX and SRX Series: A PHP vulnerability in J-Web allows an unauthenticated to control an important environment variableEPSS 93.5%KEV CVE-2023-36844MEDIUMJunos OS: EX Series: A PHP vulnerability in J-Web allows an unauthenticated attacker to control important environment variablesEPSS 89.6%KEV CVE-2026-28411CRITICALWeGIA Vulnerable to Authentication Bypass via `extract($_REQUEST)`EPSS 0.6%CVE-2024-27489HIGHAn issue in the DelFile() function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request.EPSS 0.4%CVE-2026-40285HIGHWeGIA has SQL Injection via Session Variable Override in DespachoControle.phpEPSS 0.3%