Falhas do tipo CWE-94

3.786 resultados
CVE-2025-10088MEDIUMSourceCodester Time Tracker index.html cross site scriptingEPSS 0.3%CVE-2025-9754MEDIUMCampcodes Online Hospital Management System Edit Profile edit-profile.php cross site scriptingEPSS 0.3%CVE-2026-2622MEDIUMBlossom Article Title ArticleController.java content cross site scriptingEPSS 0.3%CVE-2025-9834MEDIUMPHPGurukul Small CRM registration.php cross site scriptingEPSS 0.3%CVE-2025-9235MEDIUMScada-LTS compound_events.shtm cross site scriptingEPSS 0.3%CVE-2025-9940MEDIUMCodeAstro Real Estate Management System feature.php cross site scriptingEPSS 0.3%CVE-2026-24149HIGHNVIDIA Megatron-LM for all platforms contains a vulnerability in a script, where malicious data created by an attacker may cause a code injeEPSS 0.3%CVE-2025-9234MEDIUMScada-LTS maintenance_events.shtm cross site scriptingEPSS 0.3%CVE-2025-9653MEDIUMPortabilis i-Educar Cadastrar projeto educar_projeto_cad.php cross site scriptingEPSS 0.3%CVE-2025-8743MEDIUMScada-LTS Virtual Data Source Property data_source_edit.shtm cross site scriptingEPSS 0.3%CVE-2025-10632MEDIUMitsourcecode Online Petshop Management System Admin Dashboard availableframe.php cross site scriptingEPSS 0.3%CVE-2025-9145MEDIUMScada-LTS SVG File view_edit.shtm cross site scriptingEPSS 0.3%CVE-2026-11688HIGHInappropriate implementation in SVG in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a saEPSS 0.3%CVE-2025-5523MEDIUMenilu web-flash File Upload upload fileService.upload cross site scriptingEPSS 0.3%CVE-2025-9233MEDIUMScada-LTS view_edit.shtm cross site scriptingEPSS 0.3%CVE-2025-9138MEDIUMScada-LTS new cross site scriptingEPSS 0.3%CVE-2025-9845MEDIUMcode-projects Fruit Shop Management System products.php cross site scriptingEPSS 0.3%CVE-2025-9652MEDIUMPortabilis i-Educar Cadastrar tipo de transferência educar_transferencia_tipo_cad.php cross site scriptingEPSS 0.3%CVE-2026-55413CRITICALToolJet - Marketplace Plugin Poisoning Enables Instance-Wide Remote Code ExecutionEPSS 0.3%CVE-2025-8976MEDIUMgivanz Vvveb Endpoint post cross site scriptingEPSS 0.3%