Fallos del tipo CWE-94

3781 resultados
CVE-2025-1209MEDIUMcode-projects Wazifa System search_resualts.php searchuser cross site scriptingEPSS 0.3%CVE-2025-13244MEDIUMcode-projects Student Information System register.php cross site scriptingEPSS 0.3%CVE-2024-13557MEDIUMShortcodes by United Themes <= 5.1.6 - Unauthenticated Arbitrary Shortcode ExecutionEPSS 0.3%CVE-2025-1905MEDIUMSourceCodester Employee Management System employee.php cross site scriptingEPSS 0.3%CVE-2025-2375MEDIUMPHPGurukul Human Metapneumovirus Testing Management System Admin Profile Page profile.php cross site scriptingEPSS 0.3%CVE-2025-7951MEDIUMcode-projects Public Chat Room send_message.php cross site scriptingEPSS 0.3%CVE-2022-27537HIGHPotential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escEPSS 0.3%CVE-2025-2085MEDIUMStarSea99 starsea-mall save cross site scriptingEPSS 0.3%CVE-2025-1195MEDIUMcode-projects Real Estate Property Management System EditCategory cross site scriptingEPSS 0.3%CVE-2026-32999CRITICALInsufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute EPSS 0.3%CVE-2025-1577MEDIUMcode-projects Blood Bank System prostatus.php cross site scriptingEPSS 0.3%CVE-2025-1208MEDIUMcode-projects Wazifa System Profile.php cross site scriptingEPSS 0.3%CVE-2024-52925MEDIUMIn OPSWAT MetaDefender Kiosk before 4.7.0, arbitrary code execution can be performed by an attacker via the MD Kiosk Unlock Device feature fEPSS 0.3%CVE-2025-6694MEDIUMLabRedesCefetRJ WeGIA Adicionar Unidade adicionar_unidade.php cross site scriptingEPSS 0.3%CVE-2025-1548MEDIUMiteachyou Dreamer CMS edit cross site scriptingEPSS 0.3%CVE-2025-69443MEDIUMRemote Code Execution in coleam00 Archon 0.1.0. A crafted HTML page, when accessed by a victim, can execute commands, run prompts on behalf EPSS 0.3%CVE-2026-0586MEDIUMcode-projects Online Product Reservation System prod.php cross site scriptingEPSS 0.3%CVE-2025-2194MEDIUMMRCMS org.marker.mushroom.controller.FileController list.do list cross site scriptingEPSS 0.3%CVE-2026-5631MEDIUMassafelovic gpt-researcher ws Endpoint server_utils.py extract_command_data code injectionEPSS 0.3%CVE-2026-7703MEDIUMAV Stumpfl Pixera Two Media Server Websocket API code injectionEPSS 0.3%