Falhas do tipo CWE-94
3.746 resultadosCVE-2020-15171MEDIUMUsers with SCRIPT rights can execute arbitrary code in XWikiEPSS 1.3%CVE-2023-42374CRITICALAn issue in mystenlabs Sui Blockchain before v.1.6.3 allow a remote attacker to execute arbitrary code and cause a denial of service via a cEPSS 1.3%CVE-2023-35034—Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8 and Manager V10 R1 before V10 R1.42.0 and V10 R1.34.8 allow reEPSS 1.3%CVE-2024-50715HIGHAn issue in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive information via command injection through a vulnEPSS 1.3%CVE-2023-22731CRITICALImproper Control of Generation of Code in Twig rendered views in shopwareEPSS 1.3%CVE-2022-26112CRITICALPinot query endpoint and the realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function supportEPSS 1.3%CVE-2024-39331CRITICALIn Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %(...) link abbrev even when it specifies an unsafe function, such as sEPSS 1.3%CVE-2022-42699CRITICALWordPress Easy WP SMTP Plugin <= 1.5.1 is vulnerable to Remote Code Execution (RCE)EPSS 1.3%CVE-2024-48061CRITICALlangflow <=1.0.18 is vulnerable to Remote Code Execution (RCE) as any component provided the code functionality and the components run on thEPSS 1.3%CVE-2024-12729HIGHA post-auth code injection vulnerability in the User Portal allows authenticated users to execute code remotely in Sophos Firewall older thaEPSS 1.3%CVE-2023-24676HIGHAn issue found in ProcessWire 3.0.210 allows attackers to execute arbitrary code and install a reverse shell via the download_zip_url parameEPSS 1.3%CVE-2022-3394HIGHWP All Export Pro < 1.7.9 - Authenticated Code InjectionEPSS 1.3%CVE-2006-5610CRITICALPHP remote file inclusion vulnerability in player/includes/common.php in Teake Nutma Foing, as modified in Fully Modded phpBB (phpbbfm) 2021EPSS 1.3%CVE-2024-24780CRITICALApache IoTDB: Remote Code Execution with untrusted URI of User-defined functionEPSS 1.3%CVE-2023-5221MEDIUMForU CMS index.php code injectionEPSS 1.3%CVE-2024-6983HIGHRemote Code Execution in mudler/localaiEPSS 1.3%CVE-2021-38243CRITICALxunruicms up to v4.5.1 was discovered to contain a remote code execution (RCE) vulnerability in /index.php. This vulnerability allows attackEPSS 1.3%CVE-2023-46958CRITICALAn issue in lmxcms v.1.41 allows a remote attacker to execute arbitrary code via a crafted script to the admin.php file.EPSS 1.3%CVE-2022-44533HIGHA vulnerability in the Aruba EdgeConnect Enterprise web management interface allows remote authenticated users to run arbitrary commands on EPSS 1.3%CVE-2024-23746CRITICALMiro Desktop 0.8.18 on macOS allows local Electron code injection via a complex series of steps that might be usable in some environments (bEPSS 1.3%