CVEs classified under CWE-96, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2024-13264 — CVSS 9.8 (critical): Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno module allows PHP…
CVE-2023-39726 — CVSS 9.8 (critical): An issue in Mintty v.3.6.4 and before allows a remote attacker to execute arbitrary code via crafted commands to the terminal.
CVE-2025-30091: In Tiny MoxieManager PHP before 4.0.0, remote code execution can occur in the installer command. This vulnerability allows unauthenticated…
CVE-2025-57707 — CVSS 8.8 (high): An improper neutralization of directives in statically saved code ('Static Code Injection') vulnerability has been reported to affect File…
CVE-2024-32487 — CVSS 8.6 (high): less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c…
CVE-2024-13267 — CVSS 7.5 (high): Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno TinCan Question…
CVE-2024-13265 — CVSS 7.5 (high): Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno Learning path…
CVE-2025-36595 — CVSS 7.2 (high): Dell Unisphere for PowerMax vApp, version(s) 9.2.4.x, contain(s) an Improper Neutralization of Directives in Statically Saved Code ('Static…
CVE-2024-13268 — CVSS 6.8 (medium): Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno allows PHP Local…
CVE-2024-0788 — CVSS 6.6 (medium): SUPERAntiSpyware Pro X v10.0.1260 is vulnerable to kernel-level API parameters manipulation and Denial of Service vulnerabilities by…
CVE-2025-7825 — CVSS 6.3 (medium): The Schema Plugin For Divi, Gutenberg & Shortcodes plugin for WordPress is vulnerable to Object Instantiation in all versions up to, and…
CVE-2024-13263 — CVSS 5.5 (medium): Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno group manager…