Fallos del tipo CWE-94
3781 resultadosCVE-2024-11489MEDIUM115cms file.html cross site scriptingEPSS 0.3%CVE-2024-11490MEDIUM115cms set.html cross site scriptingEPSS 0.3%CVE-2025-6268MEDIUMLuna Imaging search cross site scriptingEPSS 0.3%CVE-2024-22724MEDIUMAn issue was discovered in osCommerce v4, allows local attackers to bypass file upload restrictions and execute arbitrary code via administrEPSS 0.3%CVE-2025-8380MEDIUMCampcodes Online Hotel Reservation System add_query_account.php cross site scriptingEPSS 0.3%CVE-2026-3028MEDIUMerzhongxmu JEEWMS JeecgListDemoController.java doAdd cross site scriptingEPSS 0.3%CVE-2024-37860HIGHBuffer Overflow vulnerability in Open Robotic Operating System 2 ROS2 navigation2- ROS2-humble&& navigation2-humble allows a local attacker EPSS 0.3%CVE-2026-2971MEDIUMa466350665 Smart-SSO Login login.html cross site scriptingEPSS 0.3%CVE-2025-0398MEDIUMlongpi1 warehouse Backend updateInport cross site scriptingEPSS 0.3%CVE-2025-10590MEDIUMPortabilis i-Educar educar_usuario_det.php cross site scriptingEPSS 0.3%CVE-2021-3615MEDIUMA vulnerability was reported in Lenovo Smart Camera X3, X5, and C2E that could allow code execution if a specific file exists on the attacheEPSS 0.3%CVE-2025-15170MEDIUMAdvaya Softech GEMS ERP Portal Error Message home.jsp cross site scriptingEPSS 0.3%CVE-2025-3149MEDIUMitning Student Homework Management System Edit Job Page fileupload cross site scriptingEPSS 0.3%CVE-2026-44586HIGHSiYuan: Bazaar marketplace renders unescaped package author metadata, allowing XSS and Electron code executionEPSS 0.3%CVE-2025-3152MEDIUMcaipeichao ThinkOX Search search.html cross site scriptingEPSS 0.3%CVE-2025-6285MEDIUMPHPGurukul COVID19 Testing Management System search-report-result.php cross site scriptingEPSS 0.3%CVE-2025-65817HIGHLSC Smart Connect Indoor IP Camera 1.4.13 contains a RCE vulnerability in start_app.sh.EPSS 0.3%CVE-2025-11851MEDIUMApeman ID71 set_alias.cgi cross site scriptingEPSS 0.3%CVE-2025-3996MEDIUMTOTOLINK N150RT MAC Filtering Page home.htm cross site scriptingEPSS 0.3%CVE-2024-25359MEDIUMAn issue in zuoxingdong lagom v.0.1.2 allows a local attacker to execute arbitrary code via the pickle_load function of the serialize.py filEPSS 0.3%