Fallos del tipo CWE-94
3736 resultadosCVE-2024-37287CRITICALKibana arbitrary code execution via prototype pollutionEPSS 1.6%CVE-2025-8191MEDIUMmacrozheng mall Swagger UI index.html cross site scriptingEPSS 1.6%CVE-2024-31823HIGHAn issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitraryEPSS 1.6%CVE-2022-44038CRITICALRussound XSourcePlayer 777D v06.08.03 was discovered to contain a remote code execution vulnerability via the scriptRunner.cgi component.EPSS 1.6%CVE-2022-43333CRITICALTelenia Software s.r.l TVox before v22.0.17 was discovered to contain a remote code execution (RCE) vulnerability in the component action_exEPSS 1.6%CVE-2024-0917CRITICALremote code execution in paddlepaddle/paddle 2.6.0EPSS 1.6%CVE-2023-1773MEDIUMRockoa Configuration File webmainConfig.php code injectionEPSS 1.6%CVE-2023-36542HIGHApache NiFi: Potential Code Injection with Properties Referencing Remote ResourcesEPSS 1.6%CVE-2024-27972CRITICALWordPress WP Fusion Lite plugin <= 3.41.24 - Remote Code Execution (RCE) vulnerabilityEPSS 1.6%CVE-2025-15616HIGHWazuh Agent and Manager OS Command Injection and Untrusted Search PathEPSS 1.6%CVE-2023-46480CRITICALAn issue in OwnCast v.0.1.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the authHost parameter oEPSS 1.6%CVE-2023-29963HIGHS-CMS v5.0 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the component /admin/ajax.php.EPSS 1.6%CVE-2024-30565HIGHAn issue was discovered in SeaCMS version 12.9, allows remote attackers to execute arbitrary code via admin notify.php.EPSS 1.6%CVE-2024-47208CRITICALApache OFBiz: URLs allowing remote use of Groovy expressions, leading to RCEEPSS 1.6%CVE-2024-22116CRITICALRemote code execution within ping scriptEPSS 1.6%CVE-2022-44087CRITICALESPCMS P8.21120101 was discovered to contain a remote code execution (RCE) vulnerability in the component UPFILE_PIC_ZOOM_HIGHT.EPSS 1.6%CVE-2022-44089CRITICALESPCMS P8.21120101 was discovered to contain a remote code execution (RCE) vulnerability in the component IS_GETCACHE.EPSS 1.6%CVE-2024-25291CRITICALDeskfiler v1.2.3 allows attackers to execute arbitrary code via uploading a crafted plugin.EPSS 1.6%CVE-2024-43469HIGHAzure CycleCloud Remote Code Execution VulnerabilityEPSS 1.6%CVE-2023-32697HIGHSqlite-jdbc vulnerable to remote code execution when JDBC url is attacker controlledEPSS 1.6%