Falhas do tipo CWE-94
3.746 resultadosCVE-2023-27868MEDIUMIBM Db2 code executionEPSS 1.4%CVE-2024-33430HIGHAn issue in phiola/src/afilter/pcm_convert.h:513 of phiola v2.0-rc22 allows a remote attacker to execute arbitrary code via the a crafted .wEPSS 1.4%CVE-2023-5550MEDIUMMoodle: rce due to lfi risk in some misconfigured shared hosting environmentsEPSS 1.4%CVE-2024-30923CRITICALSQL Injection vulnerability in DerbyNet v9.0 and below allows a remote attacker to execute arbitrary code via the where Clause in Racer DocuEPSS 1.4%CVE-2024-5651HIGHFence-agents-remediation: fence agent command line options leads to remote code executionEPSS 1.4%CVE-2024-31807CRITICALTOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a remote code execution (RCE) vulnerability via the hostTime parameter in thEPSS 1.4%CVE-2022-44702HIGHWindows Terminal Remote Code Execution VulnerabilityEPSS 1.4%CVE-2024-21672HIGHThis High severity Remote Code Execution (RCE) vulnerability was introduced in version 2.1.0 of Confluence Data Center and Server.
Remote CEPSS 1.4%CVE-2022-47318HIGHruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a reposEPSS 1.4%CVE-2022-48116HIGHAyaCMS v3.1.2 was discovered to contain a remote code execution (RCE) vulnerability via the component /admin/tpl_edit.inc.php.EPSS 1.4%CVE-2022-3242MEDIUMHTML code Injection in template search keyword in microweber/microweberEPSS 1.4%CVE-2023-41450HIGHAn issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter.EPSS 1.4%CVE-2022-46648HIGHruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a reposEPSS 1.4%CVE-2024-50492HIGHWordPress ScottCart plugin <= 1.1 - Remote Code Execution (RCE) vulnerabilityEPSS 1.4%CVE-2023-36014HIGHMicrosoft Edge (Chromium-based) Remote Code Execution VulnerabilityEPSS 1.4%CVE-2024-33445CRITICALAn issue in hisiphp v2.0.111 allows a remote attacker to execute arbitrary code via a crafted script to the SystemPlugins::mkInfo parameter EPSS 1.3%CVE-2024-10950HIGHCode Injection in binary-husky/gpt_academicEPSS 1.3%CVE-2024-10954HIGHPrompt Injection Leading to RCE in binary-husky/gpt_academic Plugin `manim`EPSS 1.3%CVE-2025-8518MEDIUMgivanz Vvveb Code Editor code.php save code injectionEPSS 1.3%CVE-2022-39424HIGHVulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are PriorEPSS 1.3%