Falhas do tipo CWE-93
150 resultadosCVE-2024-1226HIGHMultiple vulnerabilities in Rejetto's Http File ServerEPSS 0.4%CVE-2026-11362CRITICALDataDog::DogStatsd versions through 0.07 for Perl allow metric injections from event tagsEPSS 0.4%CVE-2024-53693HIGHQTS, QuTS heroEPSS 0.4%CVE-2024-48868HIGHQTS, QuTS heroEPSS 0.4%CVE-2025-28357HIGHA CRLF injection vulnerability in Neto CMS v6.313.0 through v6.314.0 allows attackers to execute arbitrary code via supplying a crafted HTTPEPSS 0.4%CVE-2026-42257MEDIUMnet-imap: Command Injection via "raw" arguments to multiple commandsEPSS 0.4%CVE-2026-47075MEDIUMCR/LF injection in query parameter in hackneyEPSS 0.4%CVE-2024-36459HIGHCross-Site Scripting Vulnerability in Symantec SiteMinder Web AgentEPSS 0.4%CVE-2024-7472MEDIUMEmail Injection Vulnerability in lunary-ai/lunaryEPSS 0.4%CVE-2026-44217MEDIUMsse-channel: SSE Injection via unsanitized event fieldsEPSS 0.4%CVE-2026-0672MEDIUMHeader injection in http.cookies.MorselEPSS 0.4%CVE-2023-34472MEDIUMAMI SPx contains a vulnerability in the BMC where an Attacker may cause an improper neutralization of CRLF sequences in HTTP Headers. A succEPSS 0.4%CVE-2025-59151HIGHPi-hole Admin Interface vulnerable to HTTP response header injection via CRLF injectionEPSS 0.4%CVE-2025-0293MEDIUMCLRF injection in Ivanti Connect Secure before version 22.7R2.8 and Ivanti Policy Secure before version 22.7R1.5 allows a remote authenticatEPSS 0.4%CVE-2026-29046CRITICALTinyWeb: HTTP Header Control Character Injection into CGI EnvironmentEPSS 0.4%CVE-2026-57281HIGHJenkins Script Security Plugin 1402.v94c9ce464861 and earlier does not reject Groovy AST transformation annotations carrying an extensions mEPSS 0.4%CVE-2025-8715HIGHPostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target serverEPSS 0.4%CVE-2025-8419MEDIUMOrg.keycloak/keycloak-services: keycloak smtp inject vulnerabilityEPSS 0.4%CVE-2024-50405MEDIUMQTS, QuTS heroEPSS 0.4%CVE-2023-26148MEDIUMAll versions of the package ithewei/libhv are vulnerable to CRLF Injection when untrusted user input is used to set request headers. An attaEPSS 0.4%