Weaknesses of type CWE-95
142 resultsCVE-2026-22666HIGHDolibarr ERP/CRM < 23.0.2 Authenticated RCE via dol_eval_standard()EPSS 15.5%CVE-2025-0868CRITICALRemote Code Execution in DocsGPTEPSS 15.1%CVE-2025-54322CRITICALXspeeder SXZOS through 2025-12-26 allows root remote code execution via base64-encoded Python code in the chkid parameter to vLogin.py. The EPSS 14.0%CVE-2026-0863HIGHSandbox escape in n8n Python task runner allows for arbitrary code execution on the underlying host.EPSS 8.5%CVE-2025-64496HIGHOpen WebUI Affected by an External Model Server (Direct Connections) Code Injection via SSE EventsEPSS 7.6%CVE-2021-33678MEDIUMA function module of SAP NetWeaver AS ABAP (Reconciliation Framework), versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 75AEPSS 2.5%CVE-2025-48868HIGHHorilla vulnerable to authenticated RCE via eval() in project_bulk_archiveEPSS 2.3%CVE-2019-9507HIGHThe web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to arbitrary remote code executionEPSS 2.1%CVE-2024-45846HIGHAn arbitrary code execution vulnerability exists in versions 23.10.3.0 up to 24.7.4.1 of the MindsDB platform, when the Weaviate integrationEPSS 2.1%CVE-2024-31996CRITICALXWiki Commons missing escaping of `{` in Velocity escapetool allows remote code executionEPSS 2.1%CVE-2020-6650HIGHArbitrary code execution through “Update Manager” ClassEPSS 2.1%CVE-2020-5256HIGHRemote Code Execution Through Image Uploads in BookStackEPSS 2.0%CVE-2013-10051CRITICALInstantCMS <= 1.6 Remote PHP Code ExecutionEPSS 1.9%CVE-2020-5217MEDIUMDirective injection when using dynamic overrides with user input in RubyGems secure_headersEPSS 1.8%CVE-2023-50447HIGHPillow through 10.1.0 allows PIL.ImageMath.eval Arbitrary Code Execution via the environment parameter, a different vulnerability than CVE-2EPSS 1.7%CVE-2023-37909CRITICALPrivilege escalation (PR)/remote code execution from account through Menu.UIExtensionSheetEPSS 1.6%CVE-2013-10070CRITICALPHP-Charts v1.0 PHP Code ExecutionEPSS 1.4%CVE-2022-36010CRITICALArbitrary code execution via function parsing in react-editable-json-treeEPSS 1.2%CVE-2023-29211CRITICALorg.xwiki.platform:xwiki-platform-wiki-ui-mainwiki Eval Injection vulnerabilityEPSS 1.2%CVE-2023-29210CRITICALorg.xwiki.platform:xwiki-platform-notifications-ui Eval Injection vulnerabilityEPSS 1.2%