Fallos del tipo CWE-94

3784 resultados
CVE-2025-69319HIGHWordPress Beaver Builder plugin <= 2.9.4.1 - Arbitrary Code Execution vulnerabilityEPSS 0.3%CVE-2026-11512MEDIUMitsourcecode Hospital Management System billing.php cross site scriptingEPSS 0.3%CVE-2026-10810MEDIUMitsourcecode Fees Management System navbar.php cross site scriptingEPSS 0.3%CVE-2025-9921MEDIUMcode-projects POS Pharmacy System products.php cross site scriptingEPSS 0.3%CVE-2025-2352MEDIUMStarSea99 starsea-mall Backend save cross site scriptingEPSS 0.3%CVE-2025-10099MEDIUMPortabilis i-Educar Editar usuário educar_usuario_cad.php cross site scriptingEPSS 0.3%CVE-2025-11068MEDIUMwestboy CicadasCMS save cross site scriptingEPSS 0.3%CVE-2021-38448HIGHTrane Symbio Improper Control of Generation of CodeEPSS 0.3%CVE-2025-7872MEDIUMPortabilis i-Diario justificativas-de-falta cross site scriptingEPSS 0.3%CVE-2025-8507MEDIUMPortabilis i-Educar educar_funcao_lst.php cross site scriptingEPSS 0.3%CVE-2025-7870MEDIUMPortabilis i-Diario justificativas-de-falta Endpoint cross site scriptingEPSS 0.3%CVE-2024-33228HIGHAn issue in the component segwindrvx64.sys of Insyde Software Corp SEG Windows Driver v100.00.07.02 allows attackers to escalate privileges EPSS 0.3%CVE-2025-11485MEDIUMSourceCodester Student Grades Management System Manage Users admin.php add_user cross site scriptingEPSS 0.3%CVE-2025-8510MEDIUMPortabilis i-Educar educar_matricula_lst.php Gerar cross site scriptingEPSS 0.3%CVE-2025-11069MEDIUMwestboy CicadasCMS Add Department save cross site scriptingEPSS 0.3%CVE-2023-32546MEDIUMCode injection vulnerability exists in Chatwork Desktop Application (Mac) 2.6.43 and earlier. If this vulnerability is exploited, a non-admiEPSS 0.3%CVE-2025-8509MEDIUMPortabilis i-Educar educar_servidor_cad.php cross site scriptingEPSS 0.3%CVE-2026-39087MEDIUMntfy before 2.22.0 allows SSRF because of an unanchored regular expression for web push endpoint URLs.EPSS 0.3%CVE-2025-8511MEDIUMPortabilis i-Diario Observações diario-de-observacoes cross site scriptingEPSS 0.3%CVE-2025-7871MEDIUMPortabilis i-Diario conteudos cross site scriptingEPSS 0.3%