Weaknesses of type CWE-94

3,784 results
CVE-2025-10827MEDIUMPHPJabbers Restaurant Menu Maker preview.php cross site scriptingEPSS 0.3%CVE-2025-9440MEDIUM1000projects Online Project Report Submission and Evaluation System add_title.php cross site scriptingEPSS 0.3%CVE-2025-10614MEDIUMitsourcecode E-Logbook with Health Monitoring System for COVID-19 print_reports_prev.php cross site scriptingEPSS 0.3%CVE-2026-14749MEDIUMmjperpinosa stumasy calculate.php eval code injectionEPSS 0.3%CVE-2025-11360MEDIUMjakowenko double-take API app.js app.use cross site scriptingEPSS 0.3%CVE-2025-11125MEDIUMlangleyfcu Online Banking System Error Message connection_error.php cross site scriptingEPSS 0.3%CVE-2026-44346HIGHBentoML: Dockerfile command injection via envs[*].name in bentofile.yamlEPSS 0.3%CVE-2026-54133CRITICALjmespath.php has CompilerRuntime code injection via unescaped function namesEPSS 0.3%CVE-2026-7401MEDIUMSourceCodester CET Automated Grading System with AI Predictive Analytics Registration index.php register cross site scriptingEPSS 0.3%CVE-2025-9656MEDIUMPHPGurukul Directory Management System add-directory.php cross site scriptingEPSS 0.3%CVE-2024-37885LOWCode injection in Nextcloud Desktop Client for macOSEPSS 0.3%CVE-2025-55192HIGHHomeAssistant-Tapo-Control Code Injection Vulnerability in issues.yml WorkflowEPSS 0.3%CVE-2025-13343MEDIUMSourceCodester Interview Management System editQuestion.php cross site scriptingEPSS 0.3%CVE-2025-6092MEDIUMcomfyanonymous comfyui Incomplete Fix CVE-2024-10099 image cross site scriptingEPSS 0.3%CVE-2026-9938HIGHInappropriate implementation in V8 in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sanEPSS 0.3%CVE-2025-9416MEDIUMoitcode samarium Pages Image webpage cross site scriptingEPSS 0.3%CVE-2025-0785MEDIUMESAFENET CDG SysConfig.jsp cross site scriptingEPSS 0.3%CVE-2025-41365MEDIUMCode injection vulnerability in IDF and ZLFEPSS 0.3%CVE-2026-14407HIGHInappropriate implementation in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandEPSS 0.3%CVE-2025-9422MEDIUMoitcode samarium Team Image team cross site scriptingEPSS 0.3%