Weaknesses of type CWE-94

3,767 results
CVE-2024-53561HIGHA remote code execution (RCE) vulnerability in Arcadyan Meteor 2 CPE FG360 Firmware ETV2.10 allows attackers to execute arbitrary code via aEPSS 0.6%CVE-2023-7035MEDIUMautomad Setting post.php cross site scriptingEPSS 0.6%CVE-2025-3491HIGHAdd custom page template <= 2.0.1 - Authenticated (Administrator+) PHP Code Injection to Remote Code ExecutionEPSS 0.6%CVE-2026-31228CRITICALThe Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kubeflow component. The robustnesEPSS 0.6%CVE-2025-29058CRITICALAn issue in Qimou CMS v.3.34.0 allows a remote attacker to execute arbitrary code via the upgrade.php component.EPSS 0.6%CVE-2023-54345HIGHFrappe Framework ERPNext 13.4.0 Remote Code ExecutionEPSS 0.6%CVE-2026-40288CRITICALPraisonAI: Critical RCE via `type: job` workflow YAMLEPSS 0.6%CVE-2023-36859HIGHPiiGAB M-Bus Code InjectionEPSS 0.6%CVE-2026-22793CRITICAL5ire vulnerable to Remote Code Execution (RCE) via EChartsEPSS 0.6%CVE-2026-33414MEDIUMPowerShell Command Injection in Podman HyperV MachineEPSS 0.6%CVE-2020-22612Installer RCE on settings file write in MyBB before 1.8.22.EPSS 0.6%CVE-2024-36679CRITICALIn the module "Module Live Chat Pro (All in One Messaging)" (livechatpro) <=8.4.0, a guest can perform PHP Code injection. Due to a predictaEPSS 0.6%CVE-2026-21853HIGHAFFiNE: One-click Remote Code Execution through Custom URL HandlingEPSS 0.6%CVE-2025-50692CRITICALFoxCMS <=v1.2.5 is vulnerable to Code Execution in admin/template_file/editFile.html.EPSS 0.6%CVE-2025-61774CRITICALPyVista has Dependency Confusion Vulnerability in that leads to RCEEPSS 0.6%CVE-2024-6946MEDIUMFlute CMS list code injectionEPSS 0.6%CVE-2021-23154MEDIUMCommand injection in Lens causes arbitrary shell command execution when malicious custom helm chart configuration providedEPSS 0.6%CVE-2026-4965MEDIUMletta-ai letta Incomplete Fix CVE-2025-6101 ast_parsers.py resolve_type eval injectionEPSS 0.6%CVE-2024-5407CRITICALCode Injection vulnerability in RhinOS from SaltOSEPSS 0.6%CVE-2026-41138HIGHFlowise: Remote code execution vulnerability in AirtableAgent.ts caused by lack of input verification when using Pandas.EPSS 0.6%