Weaknesses of type CWE-78

3,885 results
CVE-2024-40641HIGHUnsigned code template execution through workflows in projectdiscovery/nucleiEPSS 0.3%CVE-2025-27398LOWA vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0). Affected devices do not properly neutralEPSS 0.3%CVE-2024-1683HIGHDLL Injection in Tenable Identity Exposure Secure RelayEPSS 0.3%CVE-2026-27441CRITICALPDF Password CMDiEPSS 0.3%CVE-2021-21503HIGHPowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in a command. The Compadmin user could potentially explEPSS 0.3%CVE-2025-10568MEDIUMHyperX NGENUITY - Arbitrary Code ExecutionEPSS 0.3%CVE-2020-11847HIGHVulnerability in sshrelay in privileged access manager provides full system access.EPSS 0.3%CVE-2021-1441MEDIUMCisco IOS XE Software Hardware Initialization Routines Arbitrary Code Execution VulnerabilityEPSS 0.3%CVE-2026-26982MEDIUMGhostty affected by arbitrary command execution via control characters in paste and drag-and-drop operationsEPSS 0.3%CVE-2021-35028HIGHA command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 could allow an authenticated, local user to exEPSS 0.3%CVE-2026-42994HIGHBitwarden CLI 2026.4.0 from 2026-04-22T21:57Z to 2026-04-22T23:30Z, when obtained from npm, had embedded malicious code. This is related to EPSS 0.3%CVE-2025-67738HIGHsquid/cachemgr.cgi in Webmin before 2.600 does not properly quote arguments. This is relevant if Webmin's Squid module and its Cache ManagerEPSS 0.3%CVE-2026-45255HIGHRemote code execution via installer Wi-Fi access point scansEPSS 0.3%CVE-2026-32948MEDIUMsbt: Source dependency feature (via crafted VCS URL) leads to arbitrary code execution on WindowsEPSS 0.3%CVE-2026-45564HIGHRoxy-WI: Authenticated RCE via 'configver' URL parameter (os.system sink in /config/versions/.../save)EPSS 0.3%CVE-2025-24938HIGHInsufficient Validation of Input while user creationEPSS 0.3%CVE-2021-34728HIGHCisco IOS XR Software Authenticated User Privilege Escalation VulnerabilitiesEPSS 0.3%CVE-2024-47918MEDIUMTiki Wiki CMS – CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)EPSS 0.3%CVE-2026-44932HIGHindirect remote shell command injection via unsanitized DHCP options in wickedEPSS 0.3%CVE-2026-44465HIGHZed: Zed IDE Arbitrary Code Execution via untrusted repository with poisoned .git/configEPSS 0.3%