Falhas do tipo CWE-94
3.766 resultadosCVE-2024-29991MEDIUMMicrosoft Edge (Chromium-based) Security Feature Bypass VulnerabilityEPSS 0.6%CVE-2026-25481CRITICALLangroid has WAF Bypass Leading to RCE in TableChatAgentEPSS 0.6%CVE-2024-58351CRITICALFlowise - Remote Code Execution via overrideConfig ParameterEPSS 0.6%CVE-2024-8623HIGHMDTF – Meta Data and Taxonomies Filter <= 1.3.3.3 - Unauthenticated Arbitrary Shortcode ExecutionEPSS 0.6%CVE-2024-0004CRITICALA condition exists in FlashArray Purity whereby an user with array admin role can execute arbitrary commands remotely to escalate privilege EPSS 0.6%CVE-2024-27476MEDIUMLeantime 3.0.6 is vulnerable to HTML Injection via /dashboard/show#/tickets/newTicket.EPSS 0.6%CVE-2023-40621MEDIUMCode Injection vulnerability in SAP PowerDesigner ClientEPSS 0.6%CVE-2026-40911CRITICALWWBN AVideo YPTSocket WebSocket Broadcast Relay Leads to Unauthenticated Cross-User JavaScript Execution via Client-Side eval() SinksEPSS 0.6%CVE-2025-54451CRITICALImproper Control of Generation of Code ('Code Injection') vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.ThisEPSS 0.6%CVE-2026-25587CRITICALSandboxJS has a Sandbox EscapeEPSS 0.6%CVE-2024-57099CRITICALClassCMS v4.8 has a code execution vulnerability. Attackers can exploit this vulnerability by constructing a payload in the classview parameEPSS 0.6%CVE-2025-68619HIGHSignal K Server Vulnerable to Remote Code Execution via Malicious npm PackageEPSS 0.6%CVE-2023-37424HIGHUnauthenticated Remote Code Execution in EdgeConnect SD-WAN Orchestrator Web-Based Management InterfaceEPSS 0.6%CVE-2024-30845MEDIUMCross Site Scripting vulnerability in Rainbow external link network disk v.5.5 allows a remote attacker to execute arbitrary code via the vaEPSS 0.6%CVE-2025-5717MEDIUMAuthenticated Remote Code Execution in Multiple WSO2 Products via Event Processor Admin ServiceEPSS 0.6%CVE-2024-31974MEDIUMThe com.solarized.firedown (aka Solarized FireDown Browser & Downloader) application 1.0.76 for Android allows a remote attacker to execute EPSS 0.6%CVE-2026-25807HIGHUnauthenticated Remote Code Execution via P2P Sharing in ZAI-ShellEPSS 0.6%CVE-2026-1540HIGHSpam Protect for Contact Form 7 < 1.2.10 - Editor+ Remote Code ExecutionEPSS 0.6%CVE-2025-65716HIGHAn issue in Visual Studio Code Extensions Markdown Preview Enhanced v0.8.18 allows attackers to execute arbitrary code via uploading a craftEPSS 0.6%CVE-2023-50710MEDIUMHono's named path parameters can be overridden in TrieRouterEPSS 0.6%