Falhas do tipo CWE-94
3.781 resultadosCVE-2026-4564MEDIUMyangzongzhuan RuoYi Quartz Job job code injectionEPSS 0.3%CVE-2026-14722MEDIUMtiddly-gittly TidGi-Desktop Git Repository Import loadWikiTiddlersWithSubWikis.ts code injectionEPSS 0.3%CVE-2024-13140MEDIUMEmlog Pro Cover Upload article.php cross site scriptingEPSS 0.3%CVE-2024-13083MEDIUMPHPGurukul Land Record System admin-profile.php cross site scriptingEPSS 0.3%CVE-2024-13081MEDIUMPHPGurukul Land Record System contactus.php cross site scriptingEPSS 0.3%CVE-2025-4325MEDIUMMRCMS Category Management Page add.do cross site scriptingEPSS 0.3%CVE-2026-12209MEDIUMRubyLouvre avalon Template Filter index.js prototype pollutionEPSS 0.3%CVE-2025-0485MEDIUMFanli2012 native-php-cms sysconfig_doedit.php cross site scriptingEPSS 0.3%CVE-2026-52704CRITICALWordPress WooCommerce PDF Invoice Builder plugin <= 2.0.8 - Remote Code Execution (RCE) vulnerabilityEPSS 0.3%CVE-2025-3005MEDIUMSayski ForestBlog Friend Link cross site scriptingEPSS 0.3%CVE-2025-3004MEDIUMSayski ForestBlog search cross site scriptingEPSS 0.3%CVE-2026-25447CRITICALWordPress Widget Wrangler plugin <= 2.3.9 - Remote Code Execution (RCE) vulnerabilityEPSS 0.3%CVE-2026-12208MEDIUMjsonata-js jsonata Function Binding Frame System jsonata.js createFrame prototype pollutionEPSS 0.3%CVE-2025-12290MEDIUMSui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 359 cross site scriptingEPSS 0.3%CVE-2026-44888CRITICALUnauthenticated RCE via Python Config File Injection in SaveConfigFile() (Interger)EPSS 0.3%CVE-2026-10134CRITICALUnauthenticated Server-Side RCE via PythonCodeStructuredTool in Public FlowsEPSS 0.3%CVE-2025-66078CRITICALWordPress Hotel Booking Lite plugin <= 5.2.3 - Remote Code Execution (RCE) vulnerabilityEPSS 0.3%CVE-2025-2375MEDIUMPHPGurukul Human Metapneumovirus Testing Management System Admin Profile Page profile.php cross site scriptingEPSS 0.3%CVE-2025-1905MEDIUMSourceCodester Employee Management System employee.php cross site scriptingEPSS 0.3%CVE-2026-32999CRITICALInsufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute EPSS 0.3%