Fallos del tipo CWE-94

3787 resultados
CVE-2025-7791MEDIUMPHPGurukul Online Security Guards Hiring System search.php cross site scriptingEPSS 0.2%CVE-2026-45058CRITICALelecterm: Import unsafe bookmark data could lead to unsafe operation when click local type bookmarkEPSS 0.2%CVE-2025-7408MEDIUMSourceCodester Zoo Management System animal_form_template.php cross site scriptingEPSS 0.2%CVE-2025-6340MEDIUMcode-projects School Fees Payment System branch.php cross site scriptingEPSS 0.2%CVE-2026-25001HIGHWordPress Post Snippets plugin <= 4.0.12 - Remote Code Execution (RCE) vulnerabilityEPSS 0.2%CVE-2023-20063HIGHCisco Cisco Firepower Threat Defense Software and Cisco Firepower Management Center Code Injection VulnerabilityEPSS 0.2%CVE-2025-7858MEDIUMPHPGurukul Apartment Visitors Management System HTTP POST Request admin-profile.php cross site scriptingEPSS 0.2%CVE-2025-24287MEDIUMA vulnerability allowing local system users to modify directory contents, allowing for arbitrary code execution on the local system with eleEPSS 0.2%CVE-2025-9590MEDIUMWeaver E-Mobile Mobile Management Platform cross site scriptingEPSS 0.2%CVE-2025-13186MEDIUMBdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution manage_customer cross site scriptingEPSS 0.2%CVE-2025-10945MEDIUMnuz007 smsboom d.php cross site scriptingEPSS 0.2%CVE-2025-11276MEDIUMRebuild Comment/Guestbook cross site scriptingEPSS 0.2%CVE-2025-9095MEDIUMExpressGateway express-gateway REST Endpoint users.js cross site scriptingEPSS 0.2%CVE-2025-32801HIGHLoading a malicious hook library can lead to local privilege escalationEPSS 0.2%CVE-2026-37630HIGHAn issue in QuickJS-NG v.0.12.1 allows an attacker to execute arbitrary code via the js_mapped_arguments_mark functionEPSS 0.2%CVE-2025-10340MEDIUMWhatCD Gazelle Commit Message change_log.php cross site scriptingEPSS 0.2%CVE-2025-69001MEDIUMWordPress FluentForm plugin <= 6.1.11 - Arbitrary Shortcode Execution vulnerabilityEPSS 0.2%CVE-2025-10944MEDIUMyi-ge get-header-ip ip.php cross site scriptingEPSS 0.2%CVE-2025-10943MEDIUMMikeCen WeChat-Face-Recognition wx.php valid cross site scriptingEPSS 0.2%CVE-2025-11137MEDIUMGstarsoft GstarCAD File Renaming cross site scriptingEPSS 0.2%