Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CVEs (6,471)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-4300 1Xjd2020 1Fastcms Nov 21, 2024 Dec 6, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 A vulnerability was found in FastCMS. It has been rated as critical. This issue affects some unknown processing of the file /template/edit of the component Template Handler. The manipulation leads to injection. The attac...Show more A vulnerability was found in FastCMS. It has been rated as critical. This issue affects some unknown processing of the file /template/edit of the component Template Handler. The manipulation leads to injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-214901 was assigned to this vulnerability.Show less
CVE-2022-23465 1Swiftterm Project 1Swiftterm Nov 21, 2024 Dec 2, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 SwiftTerm is a Xterm/VT100 Terminal emulator. Prior to commit a94e6b24d24ce9680ad79884992e1dff8e150a31, an attacker could modify the window title via a certain character escape sequence and then insert it back to the com...Show more SwiftTerm is a Xterm/VT100 Terminal emulator. Prior to commit a94e6b24d24ce9680ad79884992e1dff8e150a31, an attacker could modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands. Version a94e6b24d24ce9680ad79884992e1dff8e150a31 contains a patch for this issue. There are no known workarounds available.Show less
CVE-2022-43333 1Teleniasoftware 1Tvox Apr 24, 2025 Dec 1, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Telenia Software s.r.l TVox before v22.0.17 was discovered to contain a remote code execution (RCE) vulnerability in the component action_export_control.php.
CVE-2022-3713 1Sophos 1Xg Firewall Firmware Apr 24, 2025 Dec 1, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 A code injection vulnerability allows adjacent attackers to execute code in the Wifi controller of Sophos Firewall releases older than version 19.5 GA.
CVE-2022-3696 1Sophos 1Xg Firewall Firmware Apr 24, 2025 Dec 1, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 A post-auth code injection vulnerability allows admins to execute code in Webadmin of Sophos Firewall releases older than version 19.5 GA.
CVE-2022-44262 1Ff4j 1Ff4j Apr 29, 2025 Dec 1, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 ff4j 1.8.1 is vulnerable to Remote Code Execution (RCE).
CVE-2022-3384 1Ultimatemember 1Ultimate Member Apr 8, 2026 Nov 29, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 The Ultimate Member plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.5.0 via the populate_dropdown_options function that accepts user supplied input and passes it through ca...Show more The Ultimate Member plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.5.0 via the populate_dropdown_options function that accepts user supplied input and passes it through call_user_func(). This is restricted to non-parameter PHP functions like phpinfo(); since user supplied parameters are not passed through the function. This makes it possible for authenticated attackers, with administrative privileges, to execute code on the server.Show less
CVE-2022-3383 1Ultimatemember 1Ultimate Member Apr 8, 2026 Nov 29, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 The Ultimate Member plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.5.0 via the get_option_value_from_callback function that accepts user supplied input and passes it throu...Show more The Ultimate Member plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.5.0 via the get_option_value_from_callback function that accepts user supplied input and passes it through call_user_func(). This makes it possible for authenticated attackers, with administrative capabilities, to execute code on the server.Show less
CVE-2022-44038 1Russound 1Xsourceplayer 777d Firmware Apr 25, 2025 Nov 29, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Russound XSourcePlayer 777D v06.08.03 was discovered to contain a remote code execution vulnerability via the scriptRunner.cgi component.
CVE-2022-45908 1Paddlepaddle 1Paddlepaddle Apr 25, 2025 Nov 26, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In PaddlePaddle before 2.4, paddle.audio.functional.get_window is vulnerable to code injection because it calls eval on a user-supplied winstr. This may lead to arbitrary code execution.
CVE-2022-45907 1Linuxfoundation 1Pytorch Apr 25, 2025 Nov 26, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In PyTorch before trunk/89695, torch.jit.annotations.parse_type_line can cause arbitrary code execution because eval is used unsafely.
CVE-2022-41158 1Eyoom 1Eyoom Builder Nov 21, 2024 Nov 25, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Remote code execution vulnerability can be achieved by using cookie values as paths to a file by this builder program. A remote attacker could exploit the vulnerability to execute or inject malicious code.
CVE-2022-39833 1Filecloud 1Filecloud Apr 25, 2025 Nov 23, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 FileCloud Versions 20.2 and later allows remote attackers to potentially cause unauthorized remote code execution and access to reported API endpoints via a crafted HTTP request.
CVE-2022-41223 1Mitel 1Mivoice Connect Nov 3, 2025 Nov 22, 2022 N/A· v4 6.8 MEDIUM· v3 N/A· v2 The Director database component of MiVoice Connect through 19.3 (22.22.6100.0) could allow an authenticated attacker to conduct a code-injection attack via crafted data due to insufficient restrictions on the database da...Show more The Director database component of MiVoice Connect through 19.3 (22.22.6100.0) could allow an authenticated attacker to conduct a code-injection attack via crafted data due to insufficient restrictions on the database data type.Show less
CVE-2022-41945 1Super Xray Project 1Super Xray Nov 21, 2024 Nov 21, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 super-xray is a vulnerability scanner (xray) GUI launcher. In version 0.1-beta, the URL is not filtered and directly spliced into the command, resulting in a possible RCE vulnerability. Users should upgrade to super-xr...Show more super-xray is a vulnerability scanner (xray) GUI launcher. In version 0.1-beta, the URL is not filtered and directly spliced into the command, resulting in a possible RCE vulnerability. Users should upgrade to super-xray 0.2-beta.Show less
CVE-2022-45132 1Linaro 1Lava Apr 30, 2025 Nov 18, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Linaro Automated Validation Architecture (LAVA) before 2022.11.1, remote code execution can be achieved through user-submitted Jinja2 template. The REST API endpoint for validating device configuration files in lava-s...Show more In Linaro Automated Validation Architecture (LAVA) before 2022.11.1, remote code execution can be achieved through user-submitted Jinja2 template. The REST API endpoint for validating device configuration files in lava-server loads input as a Jinja2 template in a way that can be used to trigger remote code execution in the LAVA server.Show less
CVE-2022-28766 1Zoom 2Meetings Rooms Nov 21, 2024 Nov 17, 2022 N/A· v4 7.3 HIGH· v3 N/A· v2 Windows 32-bit versions of the Zoom Client for Meetings before 5.12.6 and Zoom Rooms for Conference Room before version 5.12.6 are susceptible to a DLL injection vulnerability. A local low-privileged user could exploit t...Show more Windows 32-bit versions of the Zoom Client for Meetings before 5.12.6 and Zoom Rooms for Conference Room before version 5.12.6 are susceptible to a DLL injection vulnerability. A local low-privileged user could exploit this vulnerability to run arbitrary code in the context of the Zoom client.Show less
CVE-2022-43279 1Limesurvey 1Limesurvey Nov 21, 2024 Nov 15, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 LimeSurvey before v5.0.4 was discovered to contain a SQL injection vulnerability via the component /application/views/themeOptions/update.php.
CVE-2022-40127 1Apache 1Airflow Apr 30, 2025 Nov 14, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 A vulnerability in Example Dags of Apache Airflow allows an attacker with UI access who can trigger DAGs, to execute arbitrary commands via manually provided run_id parameter. This issue affects Apache Airflow Apache Air...Show more A vulnerability in Example Dags of Apache Airflow allows an attacker with UI access who can trigger DAGs, to execute arbitrary commands via manually provided run_id parameter. This issue affects Apache Airflow Apache Airflow versions prior to 2.4.0.Show less
CVE-2022-41882 1Nextcloud 1Desktop Nov 21, 2024 Nov 11, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server with your computer. In version 3.6.0, if a user received a malicious file share and has it synced locally or the virtual filesystem enable...Show more The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server with your computer. In version 3.6.0, if a user received a malicious file share and has it synced locally or the virtual filesystem enabled and clicked a nc://open/ link it will open the default editor for the file type of the shared file, which on Windows can also sometimes mean that a file depending on the type, e.g. "vbs", is being executed. It is recommended that the Nextcloud Desktop client is upgraded to version 3.6.1. As a workaround, users can block the Nextcloud Desktop client 3.6.0 by setting the `minimum.supported.desktop.version` system config to `3.6.1` on the server, so new files designed to use this attack vector are not downloaded anymore. Already existing files can still be used. Another workaround would be to enforce shares to be accepted by setting the `sharing.force_share_accept` system config to `true` on the server, so new files designed to use this attack vector are not downloaded anymore. Already existing shares can still be abused.Show less

Previous 1...176177178...324 Next