Weaknesses of type CWE-94

3,787 results
CVE-2026-31018HIGHIn Dolibarr ERP & CRM <= 22.0.4, PHP code detection and editing permission enforcement in the Website module is not applied consistently to EPSS 0.3%CVE-2026-10810MEDIUMitsourcecode Fees Management System navbar.php cross site scriptingEPSS 0.3%CVE-2025-10367MEDIUMMiczFlor RPi-Jukebox-RFID cardEdit.php cross site scriptingEPSS 0.3%CVE-2025-69319HIGHWordPress Beaver Builder plugin <= 2.9.4.1 - Arbitrary Code Execution vulnerabilityEPSS 0.3%CVE-2025-11068MEDIUMwestboy CicadasCMS save cross site scriptingEPSS 0.3%CVE-2021-38448HIGHTrane Symbio Improper Control of Generation of CodeEPSS 0.3%CVE-2025-7870MEDIUMPortabilis i-Diario justificativas-de-falta Endpoint cross site scriptingEPSS 0.3%CVE-2025-11437MEDIUMJhumanJ OpnForm Form Editor forms cross site scriptingEPSS 0.3%CVE-2025-8511MEDIUMPortabilis i-Diario Observações diario-de-observacoes cross site scriptingEPSS 0.3%CVE-2025-11069MEDIUMwestboy CicadasCMS Add Department save cross site scriptingEPSS 0.3%CVE-2025-8509MEDIUMPortabilis i-Educar educar_servidor_cad.php cross site scriptingEPSS 0.3%CVE-2025-7871MEDIUMPortabilis i-Diario conteudos cross site scriptingEPSS 0.3%CVE-2025-9753MEDIUMCampcodes Online Hospital Management System Patient Search patient-search.php cross site scriptingEPSS 0.3%CVE-2025-7872MEDIUMPortabilis i-Diario justificativas-de-falta cross site scriptingEPSS 0.3%CVE-2024-33228HIGHAn issue in the component segwindrvx64.sys of Insyde Software Corp SEG Windows Driver v100.00.07.02 allows attackers to escalate privileges EPSS 0.3%CVE-2025-8507MEDIUMPortabilis i-Educar educar_funcao_lst.php cross site scriptingEPSS 0.3%CVE-2025-8510MEDIUMPortabilis i-Educar educar_matricula_lst.php Gerar cross site scriptingEPSS 0.3%CVE-2023-32546MEDIUMCode injection vulnerability exists in Chatwork Desktop Application (Mac) 2.6.43 and earlier. If this vulnerability is exploited, a non-admiEPSS 0.3%CVE-2025-11485MEDIUMSourceCodester Student Grades Management System Manage Users admin.php add_user cross site scriptingEPSS 0.3%CVE-2025-2352MEDIUMStarSea99 starsea-mall Backend save cross site scriptingEPSS 0.3%