Weaknesses of type CWE-94
3,778 resultsCVE-2025-15394MEDIUMiCMS POST Parameter ConfigAdmincp.php save code injectionEPSS 0.4%CVE-2025-0134MEDIUMCortex XDR Broker VM: Authenticated Code Injection Vulnerability in Broker VMEPSS 0.4%CVE-2025-3533MEDIUMYouDianCMS index.html.Attackers cross site scriptingEPSS 0.4%CVE-2025-3532MEDIUMYouDianCMS index.html.Attackers cross site scriptingEPSS 0.4%CVE-2025-3531MEDIUMYouDianCMS index.html cross site scriptingEPSS 0.4%CVE-2025-2802HIGHLayoutBoxx <= 0.3.1 - Unauthenticated Arbitrary Shortcode ExecutionEPSS 0.4%CVE-2024-11078MEDIUMcode-projects Job Recruitment register.php cross site scriptingEPSS 0.4%CVE-2024-11997MEDIUMcode-projects Farmacia vendas.php cross site scriptingEPSS 0.4%CVE-2024-11996MEDIUMcode-projects Farmacia editar-fornecedor.php cross site scriptingEPSS 0.4%CVE-2025-69564CRITICALcode-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExAddNewUser.php via the Name, Address, email, UserName, EPSS 0.4%CVE-2024-12181MEDIUMDedeCMS SWF File uploads_add.php cross site scriptingEPSS 0.4%CVE-2025-13792MEDIUMQualitor getResumo.php eval code injectionEPSS 0.4%CVE-2021-3411—A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in EPSS 0.4%CVE-2023-37518MEDIUMA code injection vulnerability affects HCL BigFix ServiceNow Data FlowEPSS 0.4%CVE-2024-12182MEDIUMDedeCMS soft_add.php cross site scriptingEPSS 0.4%CVE-2025-4531MEDIUMSeeyon Zhiyuan OA Web Application System Beetl Template EhrSalaryPayrollServiceImpl.class postData code injectionEPSS 0.4%CVE-2026-41149MEDIUMMermaid: Improper sanitization of `classDef` in state diagrams leads to HTML injectionEPSS 0.4%CVE-2026-24806MEDIUMBuffer Write Security Vulnerability in liuyueyi/quick-mediaEPSS 0.4%CVE-2024-8002MEDIUMVIWIS LMS File Upload cross site scriptingEPSS 0.4%CVE-2026-26056HIGHArbitrary WASM Code Execution via AnnotationOverrideFlight Injection in Yoke ATCEPSS 0.4%