Falhas do tipo CWE-94
3.719 resultadosCVE-2026-2701CRITICALRCE vulnerability in Progress ShareFile Storage Zones Controller (SZC)EPSS 48.8%CVE-2024-30568CRITICALNetgear R6850 1.1.0.88 was discovered to contain a command injection vulnerability via the c4-IPAddr parameter.EPSS 47.2%CVE-2023-43661CRITICALCachet vulnerable to Authenticated Remote Code ExecutionEPSS 46.9%CVE-2021-40487HIGHMicrosoft SharePoint Server Remote Code Execution VulnerabilityEPSS 46.3%CVE-2023-30145CRITICALCamaleon CMS v2.7.0 was discovered to contain a Server-Side Template Injection (SSTI) vulnerability via the formats parameter.EPSS 46.1%CVE-2008-4835CRITICALSMB in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allowsEPSS 44.9%CVE-2022-36799HIGHThis issue exists to document that a security improvement in the way that Jira Server and Data Center use templates has been implemented. AfEPSS 44.6%CVE-2023-24709HIGHAn issue found in Paradox Security Systems IPR512 allows attackers to cause a denial of service via the login.html and login.xml parameters.EPSS 44.2%CVE-2023-33157HIGHMicrosoft SharePoint Remote Code Execution VulnerabilityEPSS 44.0%CVE-2024-8672CRITICALWidget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code ExecutionEPSS 43.8%CVE-2025-29306CRITICALAn issue in FoxCMS v.1.2.5 allows a remote attacker to execute arbitrary code via the case display page in the index.html component.EPSS 43.8%CVE-2022-0819HIGHCode Injection in dolibarr/dolibarrEPSS 43.6%CVE-2025-6389CRITICALSneeit Framework <= 8.3 - Unauthenticated Remote Code Execution in sneeit_articles_pagination_callbackEPSS 43.4%CVE-2009-2493HIGHThe Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 200EPSS 43.4%CVE-2013-3894HIGHThe kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1,EPSS 43.1%CVE-2009-0238HIGHMicrosoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Compatibility Pack for WordEPSS 43.1%KEVCVE-2009-2494CRITICALThe Active Template Library (ATL) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 EPSS 42.3%CVE-2026-4257CRITICALContact Form by Supsystic <= 1.7.36 - Unauthenticated Server-Side Template Injection via Prefill FunctionalityEPSS 41.5%CVE-2021-22894HIGHA buffer overflow vulnerability exists in Pulse Connect Secure before 9.1R11.4 allows a remote authenticated attacker to execute arbitrary cEPSS 41.3%KEVCVE-2023-50260HIGHWazuh's vulnerability in host_deny AR script allows arbitrary command executionEPSS 41.2%