Fallos del tipo CWE-94
3736 resultadosCVE-2011-10011CRITICALWeBid 1.0.2 converter.php Remote PHP Code InjectionEPSS 1.6%CVE-2022-24664CRITICALRemote Code Execution by by Contributor+ users via WordPress metaboxEPSS 1.6%CVE-2026-26216CRITICALCrawl4AI < 0.8.0 Docker API Unauthenticated Remote Code Execution via Hooks ParameterEPSS 1.6%CVE-2022-46161CRITICALCode injection in pdfmakeEPSS 1.6%CVE-2024-28119HIGHGrav vulnerable to Server Side Template Injection (SSTI) via Twig escape handlerEPSS 1.6%CVE-2023-36718HIGHMicrosoft Virtual Trusted Platform Module Remote Code Execution VulnerabilityEPSS 1.6%CVE-2019-7486—Code injection in SonicWall SMA100 allows an authenticated user to execute arbitrary code in viewcacert CGI script. This vulnerability impacEPSS 1.6%CVE-2020-15142HIGHArbitrary Code GenerationEPSS 1.6%CVE-2021-22557MEDIUMCode execution in SLO Generator via YAML PayloadEPSS 1.6%CVE-2024-54804CRITICALNetgear WNR854T 1.5.2 (North America) is vulnerable to Command Injection. An attacker can send a specially crafted request to post.cgi, updaEPSS 1.6%CVE-2024-54803CRITICALNetgear WNR854T 1.5.2 (North America) is vulnerable to Command Injection. An attacker can send a specially crafted request to post.cgi, updaEPSS 1.6%CVE-2022-34714HIGHWindows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution VulnerabilityEPSS 1.6%CVE-2024-10958HIGHWP Photo Album Plus <= 8.8.08.007 - Unauthenticated Arbitrary Shortcode Execution via getshortcodedrenderedfenodelayEPSS 1.6%CVE-2024-23741CRITICALAn issue in Hyper on macOS version 3.4.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnEPSS 1.6%CVE-2021-20187—It was found in Moodle before version 3.10.1, 3.9.4, 3.8.7 and 3.5.16 that it was possible for site administrators to execute arbitrary PHP EPSS 1.6%CVE-2026-50871CRITICALAn OS command injection vulnerability in the media archiving and export pipeline component of kanishka-linux Reminiscence v0.3.0 allows attaEPSS 1.6%CVE-2024-37770CRITICAL14Finger v1.1 was discovered to contain a remote command execution (RCE) vulnerability in the fingerprint function. This vulnerability allowEPSS 1.6%CVE-2007-4290CRITICALMultiple PHP remote file inclusion vulnerabilities in Guestbook Script 1.9 allow remote attackers to execute arbitrary PHP code via a URL inEPSS 1.6%CVE-2023-22526HIGHThis High severity RCE (Remote Code Execution) vulnerability was introduced in version 7.19.0 of Confluence Data Center.
This RCE (RemoteEPSS 1.6%CVE-2023-30349CRITICALJFinal CMS v5.1.0 was discovered to contain a remote code execution (RCE) vulnerability via the ActionEnter function.EPSS 1.6%