Weaknesses of type CWE-94
3,787 resultsCVE-2026-42214HIGHImproper Control of Generation of Code ('Code Injection') in dail8859/NotepadNextEPSS 0.2%CVE-2026-7595MEDIUMnextlevelbuilder ui-ux-pro-max-skill Tailwind Config Generator tailwind_config_gen.py _format_plugins code injectionEPSS 0.2%CVE-2025-15437MEDIUMLigeroSmart Environment Variable cross site scriptingEPSS 0.2%CVE-2025-66533MEDIUMWordPress GiveWP plugin <= 4.13.1 - Arbitrary Shortocde Execution vulnerabilityEPSS 0.2%CVE-2026-4515MEDIUMFoundation Agents MetaGPT operator.py code_generate code injectionEPSS 0.2%CVE-2025-7941MEDIUMPHPGurukul Time Table Generator System profile.php cross site scriptingEPSS 0.2%CVE-2025-5984MEDIUMSourceCodester Online Student Clearance System add-fee.php cross site scriptingEPSS 0.2%CVE-2025-11425MEDIUMprojectworlds Advanced Library Management System edit_admin.php cross site scriptingEPSS 0.2%CVE-2025-5884MEDIUMKonica Minolta bizhub Display MFP Information List cross site scriptingEPSS 0.2%CVE-2026-40158HIGHPraisonAI has Improper Control of Generation of Code ('Code Injection') and Protection Mechanism Failure in praisonaiEPSS 0.2%CVE-2025-7554MEDIUMSapido RB-1802 URL Filtering Page urlfilter.asp cross site scriptingEPSS 0.2%CVE-2026-5810MEDIUMSourceCodester Sales and Inventory System GET Parameter delete.php cross site scriptingEPSS 0.2%CVE-2026-5806MEDIUMcode-projects Easy Blog Site update.php cross site scriptingEPSS 0.2%CVE-2025-8483MEDIUMDiscussion Board – WordPress Forum Plugin <= 2.5.5 - Authenticated (Subscriber+) Arbitrary Shortcode ExecutionEPSS 0.2%CVE-2025-7803MEDIUMdescreekert wx-discuz wx.php validToken cross site scriptingEPSS 0.2%CVE-2025-14538MEDIUMyangshare warehouseManager 仓库管理系统 CustomerManageHandler.java addCustomer cross site scriptingEPSS 0.2%CVE-2025-14013MEDIUMJIZHICMS Comment addcomment.html cross site scriptingEPSS 0.2%CVE-2026-7388MEDIUMEyouCMS Template File FilemanagerLogic.php editFile code injectionEPSS 0.2%CVE-2026-4973MEDIUMSourceCodester Online Quiz System add-question.php cross site scriptingEPSS 0.2%CVE-2025-5796MEDIUMcode-projects Laundry System edit_type.php cross site scriptingEPSS 0.2%