Falhas do tipo CWE-94
3.747 resultadosCVE-2024-50919CRITICALJpress until v5.1.1 has arbitrary file uploads on the windows platform, and the construction of non-standard file formats such as .jsp. can EPSS 1.1%CVE-2024-7720CRITICALHP Security Manager - Potential Remote Code ExecutionEPSS 1.1%CVE-2021-22646HIGHOvarro TBox Code InjectionEPSS 1.1%CVE-2022-41534HIGHOnline Diagnostic Lab Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /php_action/EPSS 1.1%CVE-2024-3955CRITICALArbitrary code execution in CraftBeerPi 4EPSS 1.1%CVE-2024-54907HIGHTOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Remote Code Execution in /bin/boa via formWsc.EPSS 1.1%CVE-2020-20918HIGHAn issue discovered in Pluck CMS v.4.7.10-dev2 allows a remote attacker to execute arbitrary php code via the hidden parameter to admin.php EPSS 1.1%CVE-2024-40453CRITICALsquirrellyjs squirrelly v9.0.0 and fixed in v.9.0.1 was discovered to contain a code injection vulnerability via the component options.varNaEPSS 1.1%CVE-2025-34074CRITICALLucee Admin Interface Authenticated Remote Code Execution via Scheduled Job File WriteEPSS 1.1%CVE-2024-56373HIGHApache Airflow: SSTI to Code Execution in Airflow through Shared DB InformationEPSS 1.1%CVE-2023-34999HIGHA command injection vulnerability exists in RTS VLink Virtual Matrix Software Versions v5 (< 5.7.6) and v6 (< 6.5.0) that allows an attackerEPSS 1.1%CVE-2022-41061HIGHMicrosoft Word Remote Code Execution VulnerabilityEPSS 1.1%CVE-2024-24091CRITICALYealink Meeting Server before v26.0.0.66 was discovered to contain an OS command injection vulnerability via the file upload interface.EPSS 1.1%CVE-2025-67038CRITICALAn issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell command to write logs when user's authanticatioEPSS 1.1%KEVCVE-2023-2583CRITICAL Code Injection in jsreport/jsreportEPSS 1.1%CVE-2025-31722HIGHIn Jenkins Templating Engine Plugin 2.5.3 and earlier, libraries defined in folders are not subject to sandbox protection, allowing attackerEPSS 1.1%CVE-2024-1577CRITICALRemote Code Execution in MegaBIPEPSS 1.1%CVE-2023-37470CRITICALMetabase vulnerable to remote code execution via POST /api/setup/validate API endpoint EPSS 1.1%CVE-2013-10057HIGHSynactis PDF In-The-Box ConnectToSynactic Stack-Based Buffer OverflowEPSS 1.1%CVE-2025-34127CRITICALAchat v0.150 SEH Buffer Overflow via UDPEPSS 1.1%