Weaknesses of type CWE-94

3,786 results
CVE-2025-14927HIGHHugging Face Transformers SEW-D convert_config Code Injection Remote Code Execution VulnerabilityEPSS 0.3%CVE-2025-5405MEDIUMchaitak-gorai Blogbook post.php cross site scriptingEPSS 0.3%CVE-2024-28893HIGHCertain HP software packages (SoftPaqs) are potentially vulnerable to arbitrary code execution when the SoftPaq configuration file has been EPSS 0.3%CVE-2026-5671MEDIUMCyber-III Student-Management-System Class Schedule Deletion Endpoint delete_batch.php cross site scriptingEPSS 0.3%CVE-2025-3806MEDIUMdazhouda lecms Edit Profile admin cross site scriptingEPSS 0.3%CVE-2026-13499MEDIUMyashpokharna2555 restaurent-management-system Registration login_register.php cross site scriptingEPSS 0.3%CVE-2025-5542MEDIUMTOTOLINK X2000R Virtual Server Page formPortFw cross site scriptingEPSS 0.3%CVE-2025-15220MEDIUMSohuTV CacheCloud LoginController.java init cross site scriptingEPSS 0.3%CVE-2026-2947MEDIUMrymcu forest User Profile UserInfoController.java updateUserInfo cross site scriptingEPSS 0.3%CVE-2022-22285MEDIUMA vulnerability using PendingIntent in Reminder prior to version 12.2.05.0 in Android R(11.0) and 12.3.02.1000 in Android S(12.0) allows attEPSS 0.3%CVE-2025-5721MEDIUMSourceCodester Student Result Management System Profile Setting Page update_profile cross site scriptingEPSS 0.3%CVE-2025-10369MEDIUMMiczFlor RPi-Jukebox-RFID cardRegisterNew.php cross site scriptingEPSS 0.3%CVE-2022-22286MEDIUMA vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R(11.0) and 2.6.30.5 in Android Q(10.0) allows atEPSS 0.3%CVE-2025-5407MEDIUMchaitak-gorai Blogbook register_script.php cross site scriptingEPSS 0.3%CVE-2025-3393MEDIUMmrcen springboot-ucan-admin Personal Settings Interface index cross site scriptingEPSS 0.3%CVE-2025-7361HIGHCode Injection Vulnerability in NI LabVIEW when using CIN nodesEPSS 0.3%CVE-2025-33178HIGHNVIDIA NeMo Framework for all platforms contains a vulnerability in the bert services component where malicious data created by an attacker EPSS 0.3%CVE-2025-2977MEDIUMGFI KerioConnect PDF File cross site scriptingEPSS 0.3%CVE-2026-45131CRITICALCloudPirates Open Source Helm Charts: GitHub Actions pull_request_target workflow allows secret exfiltration via fork pull requestsEPSS 0.3%CVE-2025-2975MEDIUMGFI KerioConnect Signature EditHtmlSource cross site scriptingEPSS 0.3%