CVEs classified under CWE-116, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2025-55730 — CVSS 10.0 (critical): XWiki Remote Macros provides XWiki rendering macros that are useful when migrating content from Confluence. Starting in version 1.0 and…
CVE-2025-55729 — CVSS 10.0 (critical): XWiki Remote Macros provides XWiki rendering macros that are useful when migrating content from Confluence. Starting in version 1.0 and…
CVE-2023-47143 — CVSS 10.0 (critical): IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 is vulnerable to HTTP header injection, caused by improper…
CVE-2023-26472 — CVSS 9.9 (critical): XWiki Platform is a generic wiki platform. Starting in version 6.2-milestone-1, one can execute any wiki content with the right of…
CVE-2022-41934 — CVSS 9.9 (critical): XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Any user with view rights on…
CVE-2022-36100 — CVSS 9.9 (critical): XWiki Platform Applications Tag and XWiki Platform Tag UI are tag applications for XWiki, a generic wiki platform. Starting with version…
CVE-2022-36099 — CVSS 9.9 (critical): XWiki Platform Wiki UI Main Wiki is software for managing subwikis on XWiki Platform, a generic wiki platform. Starting with version…
CVE-2022-23603 — CVSS 9.9 (critical): iTunesRPC-Remastered is a discord rich presence application for use with iTunes & Apple Music. In code before commit 24f43aa user input is…
CVE-2025-46347 — CVSS 9.8 (critical): YesWiki is a wiki system written in PHP. Prior to version 4.5.4, YesWiki vulnerable to remote code execution. An arbitrary file write can…
CVE-2025-31651 — CVSS 9.8 (critical): Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. For a subset of unlikely rewrite rule…
CVE-2024-10441 — CVSS 9.8 (critical): Improper encoding or escaping of output vulnerability in the system plugin daemon in Synology BeeStation OS (BSM) before 1.1-65374 and…
CVE-2024-55663 — CVSS 9.8 (critical): XWiki Platform is a generic wiki platform. Starting in version 6.3-milestone-2 and prior to versions 13.10.5 and 14.3-rc-1, in…
CVE-2024-38474 — CVSS 9.8 (critical): Substitution encoding issue in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows attacker to execute scripts in directories…
CVE-2024-31866 — CVSS 9.8 (critical): Improper Encoding or Escaping of Output vulnerability in Apache Zeppelin. The attackers can execute shell scripts or malicious code by…
CVE-2023-38316 — CVSS 9.8 (critical): An issue was discovered in OpenNDS Captive Portal before version 10.1.2. When the custom unescape callback is enabled, attackers can…
CVE-2023-48655 — CVSS 9.8 (critical): An issue was discovered in MISP before 2.4.176. app/Controller/Component/IndexFilterComponent.php does not properly filter out query…
CVE-2023-46301 — CVSS 9.8 (critical): iTerm2 before 3.4.20 allow (potentially remote) code execution because of mishandling of certain escape sequences related to upload.
CVE-2023-46300 — CVSS 9.8 (critical): iTerm2 before 3.4.20 allow (potentially remote) code execution because of mishandling of certain escape sequences related to tmux…
CVE-2022-46387 — CVSS 9.8 (critical): ConEmu through 220807 and Cmder before 1.3.21 report the title of the terminal, including control characters, which allows an attacker to…
CVE-2021-42010 — CVSS 9.8 (critical): Heron versions <= 0.20.4-incubating allows CRLF log injection because of the lack of escaping in the log statements. Please update to…
CVE-2022-41443 — CVSS 9.8 (critical): phpipam v1.5.0 was discovered to contain a header injection vulnerability via the component /admin/subnets/ripe-query.php.
CVE-2020-36599 — CVSS 9.8 (critical): lib/omniauth/failure_endpoint.rb in OmniAuth before 1.9.2 (and before 2.0) does not escape the message_key value.
CVE-2022-29599 — CVSS 9.8 (critical): In Apache Maven maven-shared-utils prior to version 3.3.3, the Commandline class can emit double-quoted strings without proper escaping…
CVE-2022-26174 — CVSS 9.8 (critical): A remote code execution (RCE) vulnerability in Beekeeper Studio v3.2.0 allows attackers to execute arbitrary code via a crafted payload…
CVE-2022-25235 — CVSS 9.8 (critical): xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is…
CVE-2021-44042 — CVSS 9.8 (critical): An issue was discovered in UiPath Assistant 21.4.4. User-controlled data supplied to the --process-start argument of the URI handler for…
CVE-2021-28940 — CVSS 9.8 (critical): Because of a incorrect escaped exec command in MagpieRSS in 0.72 in the /extlib/Snoopy.class.inc file, it is possible to add a extra…
CVE-2019-11325 — CVSS 9.8 (critical): An issue was discovered in Symfony before 4.2.12 and 4.3.x before 4.3.8. The VarExport component incorrectly escapes strings, allowing some…
CVE-2018-9246 — CVSS 9.8 (critical): The PGObject::Util::DBAdmin module before 0.120.0 for Perl, as used in LedgerSMB through 1.5.x, insufficiently sanitizes or escapes…
CVE-2017-8303 — CVSS 9.8 (critical): An issue was discovered on Accellion FTA devices before FTA_9_12_180. seos/1000/find.api allows Remote Code Execution with shell…
CVE-2026-45570 — CVSS 9.6 (critical): go-git is an extensible git implementation library written in pure Go. Prior to 5.19.1 and 6.0.0-alpha.4, go-git's SSH transport constructs…
CVE-2026-22792 — CVSS 9.6 (critical): 5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Prior to version 0.15.3, an unsafe…
CVE-2021-33672 — CVSS 9.6 (critical): Due to missing encoding in SAP Contact Center's Communication Desktop component- version 700, an attacker could send malicious script in…
CVE-2021-20195 — CVSS 9.6 (critical): A flaw was found in keycloak in versions before 13.0.0. A Self Stored XSS attack vector escalating to a complete account takeover is…
CVE-2025-59936 — CVSS 9.4 (critical): get-jwks contains fetch utils for JWKS keys. In versions prior to 11.0.2, a vulnerability in get-jwks can lead to cache poisoning in the…
CVE-2024-1874 — CVSS 9.4 (critical): In PHP versions 8.1.* before 8.1.28, 8.2.* before 8.2.18, 8.3.* before 8.3.5, when using proc_open() command with array syntax, due to…
CVE-2026-27812 — CVSS 9.1 (critical): Sub2API is an AI API gateway platform designed to distribute and manage API quotas from AI product subscriptions. A vulnerability in…
CVE-2025-40547 — CVSS 9.1 (critical): A logic error vulnerability exists in Serv-U which when abused could give a malicious actor with access to admin privileges the ability to…
CVE-2024-56524 — CVSS 9.1 (critical): Radware Cloud Web Application Firewall (WAF) before 2025-05-07 allows remote attackers to bypass firewall filters by adding a special…
CVE-2025-32974 — CVSS 9.0 (critical): XWiki is a generic wiki platform. In versions starting from 15.9-rc-1 to before 15.10.8 and from 16.0.0-rc-1 to before 16.2.0, the required…
CVE-2023-45135 — CVSS 9.0 (critical): XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In `org.xwiki.platform:xwiki-platfo…
CVE-2026-47171: Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.3, a normal user can create…
CVE-2024-52005 — CVSS 8.8 (high): Git is a source code management tool. When cloning from a server (or fetching, or pushing), informational or error messages are transported…
CVE-2018-9433 — CVSS 8.8 (high): In ArrayConcatVisitor of builtins-array.cc, there is a possible type confusion due to improper input validation. This could lead to remote…
CVE-2024-45498 — CVSS 8.8 (high): Example DAG: example_inlet_event_extra.py shipped with Apache Airflow version 2.10.0 has a vulnerability that allows an authenticated…