Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CVEs (6,471)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-27837 1Samsung 1Accessibility Nov 21, 2024 Apr 11, 2022 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A vulnerability using PendingIntent in Accessibility prior to version 12.5.3.2 in Android R(11.0) and 13.0.1.1 in Android S(12.0) allows attacker to access the file with system privilege.
CVE-2022-22954 1Vmware 5Cloud Foundation Identity ManagerVrealize Automation+2 more Oct 30, 2025 Apr 11, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-side template injection. A malicious actor with network access can trigger a server-side template injection tha...Show more VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-side template injection. A malicious actor with network access can trigger a server-side template injection that may result in remote code execution.Show less
CVE-2021-40219 1Bolt 1Bolt Cms Nov 21, 2024 Apr 11, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Bolt CMS <= 4.2 is vulnerable to Remote Code Execution. Unsafe theme rendering allows an authenticated attacker to edit theme to inject server-side template injection that leads to remote code execution.
CVE-2022-24780 1Combodo 1Itop Nov 21, 2024 Apr 5, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Combodo iTop is a web based IT Service Management tool. In versions prior to 2.7.6 and 3.0.0, users of the iTop user portal can send TWIG code to the server by forging specific http queries, and execute arbitrary code on...Show more Combodo iTop is a web based IT Service Management tool. In versions prior to 2.7.6 and 3.0.0, users of the iTop user portal can send TWIG code to the server by forging specific http queries, and execute arbitrary code on the server using http server user privileges. This issue is fixed in versions 2.7.6 and 3.0.0. There are currently no known workarounds.Show less
CVE-2022-26982 1Simplemachines 1Simple Machines Forum Nov 21, 2024 Apr 5, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 SimpleMachinesForum 2.1.1 and earlier allows remote authenticated administrators to execute arbitrary code by inserting a vulnerable php code because the themes can be modified by an administrator. NOTE: the vendor's pos...Show more SimpleMachinesForum 2.1.1 and earlier allows remote authenticated administrators to execute arbitrary code by inserting a vulnerable php code because the themes can be modified by an administrator. NOTE: the vendor's position is that administrators are intended to have the ability to modify themes, and can thus choose any PHP code that they wish to have executed on the server.Show less
CVE-2021-39114 1Atlassian 2Confluence Data Center Confluence Server Nov 21, 2024 Apr 5, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Affected versions of Atlassian Confluence Server and Data Center allow users with a valid account on a Confluence Data Center instance to execute arbitrary Java code or run arbitrary system commands by injecting an OGNL...Show more Affected versions of Atlassian Confluence Server and Data Center allow users with a valid account on a Confluence Data Center instance to execute arbitrary Java code or run arbitrary system commands by injecting an OGNL payload. The affected versions are before version 6.13.23, from version 6.14.0 before 7.4.11, from version 7.5.0 before 7.11.6, and from version 7.12.0 before 7.12.5.Show less
CVE-2022-22965 5Cisco OracleSiemens+2 more 38Access Appliance Commerce PlatformCommunications Cloud Native Core Automated Test Suite+35 more Oct 30, 2025 Apr 1, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the a...Show more A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is not vulnerable to the exploit. However, the nature of the vulnerability is more general, and there may be other ways to exploit it.Show less
CVE-2022-22963 2Oracle Vmware 28Banking Branch Banking Cash ManagementBanking Corporate Lending Process Management+25 more Oct 30, 2025 Apr 1, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in rem...Show more In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources.Show less
CVE-2022-1159 1Rockwellautomation 5Compact Guardlogix 5380 Firmware Compactlogix 5380 FirmwareCompactlogix 5480 Firmware+2 more Nov 21, 2024 Apr 1, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Rockwell Automation Studio 5000 Logix Designer (all versions) are vulnerable when an attacker who achieves administrator access on a workstation running Studio 5000 Logix Designer could inject controller code undetectabl...Show more Rockwell Automation Studio 5000 Logix Designer (all versions) are vulnerable when an attacker who achieves administrator access on a workstation running Studio 5000 Logix Designer could inject controller code undetectable to a user.Show less
CVE-2021-39908 1Gitlab 1Gitlab Nov 21, 2024 Apr 1, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In all versions of GitLab CE/EE starting from 0.8.0 before 14.2.6, all versions starting from 14.3 before 14.3.4, and all versions starting from 14.4 before 14.4.1 certain Unicode characters can be abused to commit malic...Show more In all versions of GitLab CE/EE starting from 0.8.0 before 14.2.6, all versions starting from 14.3 before 14.3.4, and all versions starting from 14.4 before 14.4.1 certain Unicode characters can be abused to commit malicious code into projects without being noticed in merge request or source code viewer UI.Show less
CVE-2021-43097 1Diyhi 1Bbs Nov 21, 2024 Mar 28, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 A Server-side Template Injection (SSTI) vulnerability exists in bbs 5.3 in TemplateManageAction.javawhich could let a malicoius user execute arbitrary code.
CVE-2021-26622 1Genians 1Genian Nac Nov 21, 2024 Mar 25, 2022 N/A· v4 10.0 CRITICAL· v3 10.0 HIGH· v2 An remote code execution vulnerability due to SSTI vulnerability and insufficient file name parameter validation was discovered in Genian NAC. Remote attackers are able to execute arbitrary malicious code with SYSTEM pri...Show more An remote code execution vulnerability due to SSTI vulnerability and insufficient file name parameter validation was discovered in Genian NAC. Remote attackers are able to execute arbitrary malicious code with SYSTEM privileges on all connected nodes in NAC through this vulnerability.Show less
CVE-2021-38745 1Chamilo 1Chamilo Nov 21, 2024 Mar 21, 2022 N/A· v4 6.8 MEDIUM· v3 4.6 MEDIUM· v2 Chamilo LMS v1.11.14 was discovered to contain a zero click code injection vulnerability which allows attackers to execute arbitrary code via a crafted plugin. This vulnerability is triggered through user interaction wit...Show more Chamilo LMS v1.11.14 was discovered to contain a zero click code injection vulnerability which allows attackers to execute arbitrary code via a crafted plugin. This vulnerability is triggered through user interaction with the attacker's profile page.Show less
CVE-2021-39383 1Diaowen 1Dwsurvey Nov 21, 2024 Mar 20, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 DWSurvey v3.2.0 was discovered to contain a remote command execution (RCE) vulnerability via the component /sysuser/SysPropertyAction.java.
CVE-2022-25578 1Taogogo 1Taocms Nov 21, 2024 Mar 18, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 taocms v3.0.2 allows attackers to execute code injection via arbitrarily editing the .htaccess file.
CVE-2020-25197 1Ge 3Rt430 Firmware Rt431 FirmwareRt434 Firmware Nov 21, 2024 Mar 18, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A code injection vulnerability exists in one of the webpages in GE Reason RT430, RT431 & RT434 GNSS clocks in firmware versions prior to version 08A06 that could allow an authenticated remote attacker to execute arbitrar...Show more A code injection vulnerability exists in one of the webpages in GE Reason RT430, RT431 & RT434 GNSS clocks in firmware versions prior to version 08A06 that could allow an authenticated remote attacker to execute arbitrary code on the system.Show less
CVE-2020-15591 1Uni Stuttgart 1Frams' Fast File Exchange Nov 21, 2024 Mar 17, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 fexsrv in F*EX (aka Frams' Fast File EXchange) before fex-20160919_2 allows eval injection (for unauthenticated remote code execution).
CVE-2022-25760 1Accesslog Project 1Accesslog Nov 21, 2024 Mar 17, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 All versions of package accesslog are vulnerable to Arbitrary Code Injection due to the usage of the Function constructor without input sanitization. If (attacker-controlled) user input is given to the format option of t...Show more All versions of package accesslog are vulnerable to Arbitrary Code Injection due to the usage of the Function constructor without input sanitization. If (attacker-controlled) user input is given to the format option of the package's exported constructor function, it is possible for an attacker to execute arbitrary JavaScript code on the host that this package is being run on.Show less
CVE-2022-0811 1Kubernetes 1Cri O Nov 21, 2024 Mar 16, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A flaw was found in CRI-O in the way it set kernel options for a pod. This issue allows anyone with rights to deploy a pod on a Kubernetes cluster that uses the CRI-O runtime to achieve a container escape and arbitrary c...Show more A flaw was found in CRI-O in the way it set kernel options for a pod. This issue allows anyone with rights to deploy a pod on a Kubernetes cluster that uses the CRI-O runtime to achieve a container escape and arbitrary code execution as root on the cluster node, where the malicious pod was deployed.Show less
CVE-2022-25498 1Cuppacms 1Cuppacms Nov 21, 2024 Mar 15, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 CuppaCMS v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the saveConfigData function in /classes/ajax/Functions.php.

Previous 1...183184185...324 Next