Falhas do tipo CWE-94

3.789 resultados
CVE-2025-9722MEDIUMPortabilis i-Educar educar_tipo_ocorrencia_disciplinar_cad.php cross site scriptingEPSS 0.2%CVE-2026-2064MEDIUMPortabilis i-Educar User Data meusdadod.php cross site scriptingEPSS 0.2%CVE-2025-13412MEDIUMCampcodes Retro Basketball Shoes Online Store admin_running.php cross site scriptingEPSS 0.2%CVE-2026-3050MEDIUMhorilla-opensource horilla Leads global.js cross site scriptingEPSS 0.2%CVE-2025-13232MEDIUMprojectsend File Editor/Custom Download Aliases cross site scriptingEPSS 0.2%CVE-2025-70341HIGHInsecure permissions in App-Auto-Patch v3.4.2 create a race condition which allows attackers to write arbitrary files.EPSS 0.2%CVE-2026-7013MEDIUMMaxSite CMS mail_send Plugin cross site scriptingEPSS 0.2%CVE-2026-2830MEDIUMWP All Import <= 4.0.0 - Reflected Cross-Site Scripting via 'filepath'EPSS 0.2%CVE-2026-3171MEDIUMSourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System queue.php cross site scriptingEPSS 0.2%CVE-2025-15052MEDIUMcode-projects Student Information System profile.php cross site scriptingEPSS 0.2%CVE-2026-7016MEDIUMMaxSite CMS ushki Plugin cross site scriptingEPSS 0.2%CVE-2026-7015MEDIUMMaxSite CMS Guestbook Plugin cross site scriptingEPSS 0.2%CVE-2026-11468MEDIUMSourceCodester Hospitals Patient Records Management System page room_types cross site scriptingEPSS 0.2%CVE-2026-12202MEDIUMIntelliants Subrion CMS Blocks Endpoint cross site scriptingEPSS 0.2%CVE-2026-2201MEDIUMZeroWdd studentmanager LeaveController.java addLeave cross site scriptingEPSS 0.2%CVE-2025-23295HIGHNVIDIA Apex for all platforms contains a vulnerability in a Python component where an attacker could cause a code injection issue by providiEPSS 0.2%CVE-2026-6486MEDIUMclassroombookings User Display Name layout.php read cross site scriptingEPSS 0.2%CVE-2026-6107MEDIUM1Panel-dev MaxKB ChatHeadersMiddleware chat_headers_middleware.py cross site scriptingEPSS 0.2%CVE-2025-13484MEDIUMCampcodes Complete Online Beauty Parlor Management System customer-list.php cross site scriptingEPSS 0.2%CVE-2022-41576HIGHThe rphone module has a script that can be maliciously modified.Successful exploitation of this vulnerability may cause irreversible programEPSS 0.2%