Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CVEs (6,471)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-38967 1Ibm 1Mq Appliance Nov 21, 2024 Nov 30, 2021 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code. IBM X-Force ID: 212441.
CVE-2021-3725 1Planetargon 1Oh My Zsh Nov 21, 2024 Nov 30, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Vulnerability in dirhistory plugin Description: the widgets that go back and forward in the directory history, triggered by pressing Alt-Left and Alt-Right, use functions that unsafely execute eval on directory names. If...Show more Vulnerability in dirhistory plugin Description: the widgets that go back and forward in the directory history, triggered by pressing Alt-Left and Alt-Right, use functions that unsafely execute eval on directory names. If you cd into a directory with a carefully-crafted name, then press Alt-Left, the system is subject to command injection. Impacted areas: - Functions pop_past and pop_future in dirhistory plugin.Show less
CVE-2021-43221 1Microsoft 1Edge Chromium Nov 21, 2024 Nov 24, 2021 N/A· v4 4.2 MEDIUM· v3 4.0 MEDIUM· v2 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
CVE-2021-38448 1Trane 2Symbio 700 Symbio 800 Nov 21, 2024 Nov 22, 2021 N/A· v4 7.6 HIGH· v3 4.6 MEDIUM· v2 The affected controllers do not properly sanitize the input containing code syntax. As a result, an attacker could craft code to alter the intended controller flow of the software.
CVE-2021-33493 1Open Xchange 1Ox App Suite Nov 21, 2024 Nov 22, 2021 N/A· v4 6.0 MEDIUM· v3 3.6 LOW· v2 The middleware component in OX App Suite through 7.10.5 allows Code Injection via Java classes in a YAML format.
CVE-2021-22053 1Vmware 1Spring Cloud Netflix Nov 21, 2024 Nov 19, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Applications using both `spring-cloud-netflix-hystrix-dashboard` and `spring-boot-starter-thymeleaf` expose a way to execute code submitted within the request URI path during the resolution of view templates. When a requ...Show more Applications using both `spring-cloud-netflix-hystrix-dashboard` and `spring-boot-starter-thymeleaf` expose a way to execute code submitted within the request URI path during the resolution of view templates. When a request is made at `/hystrix/monitor;[user-provided data]`, the path elements following `hystrix/monitor` are being evaluated as SpringEL expressions, which can lead to code execution.Show less
CVE-2021-41269 1Cron Utils Project 1Cron Utils Nov 21, 2024 Nov 15, 2021 N/A· v4 9.8 CRITICAL· v3 6.8 MEDIUM· v2 cron-utils is a Java library to define, parse, validate, migrate crons as well as get human readable descriptions for them. In affected versions A template Injection was identified in cron-utils enabling attackers to inj...Show more cron-utils is a Java library to define, parse, validate, migrate crons as well as get human readable descriptions for them. In affected versions A template Injection was identified in cron-utils enabling attackers to inject arbitrary Java EL expressions, leading to unauthenticated Remote Code Execution (RCE) vulnerability. Versions up to 9.1.2 are susceptible to this vulnerability. Please note, that only projects using the @Cron annotation to validate untrusted Cron expressions are affected. The issue was patched and a new version was released. Please upgrade to version 9.1.6. There are no known workarounds known.Show less
CVE-2021-41653 1Tp Link 1Tl Wr840n Firmware Nov 21, 2024 Nov 13, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable to remote code execution via a crafted payload in an IP address input field.
CVE-2021-33816 1Dolibarr 1Dolibarr Erp/crm Nov 21, 2024 Nov 10, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The website builder module in Dolibarr 13.0.2 allows remote PHP code execution because of an incomplete protection mechanism in which system, exec, and shell_exec are blocked but backticks are not blocked.
CVE-2021-43208 1Microsoft 13d Viewer Nov 21, 2024 Nov 10, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 3D Viewer Remote Code Execution Vulnerability
CVE-2021-42298 1Microsoft 1Malware Protection Engine Nov 21, 2024 Nov 10, 2021 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Microsoft Defender Remote Code Execution Vulnerability
CVE-2021-42296 1Microsoft 3365 Apps OfficeOffice Long Term Servicing Channel May 19, 2026 Nov 10, 2021 N/A· v4 7.8 HIGH· v3 6.9 MEDIUM· v2 Microsoft Word Remote Code Execution Vulnerability
CVE-2021-43466 1Thymeleaf 1Thymeleaf Nov 21, 2024 Nov 9, 2021 N/A· v4 9.8 CRITICAL· v3 6.8 MEDIUM· v2 In the thymeleaf-spring5:3.0.12 component, thymeleaf combined with specific scenarios in template injection may lead to remote code execution.
CVE-2021-24721 1Loco Translate Project 1Loco Translate Nov 21, 2024 Nov 8, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 The Loco Translate WordPress plugin before 2.5.4 mishandles data inputs which get saved to a file, which can be renamed to an extension ending in .php, resulting in authenticated "translator" users being able to inject P...Show more The Loco Translate WordPress plugin before 2.5.4 mishandles data inputs which get saved to a file, which can be renamed to an extension ending in .php, resulting in authenticated "translator" users being able to inject PHP code into files ending with .php in web accessible locations.Show less
CVE-2021-24537 1Shareaholic 1Similar Posts Nov 21, 2024 Nov 8, 2021 N/A· v4 7.2 HIGH· v3 6.0 MEDIUM· v2 The Similar Posts WordPress plugin through 3.1.5 allow high privilege users to execute arbitrary PHP code in an hardened environment (ie with DISALLOW_FILE_EDIT, DISALLOW_FILE_MODS and DISALLOW_UNFILTERED_HTML set to tru...Show more The Similar Posts WordPress plugin through 3.1.5 allow high privilege users to execute arbitrary PHP code in an hardened environment (ie with DISALLOW_FILE_EDIT, DISALLOW_FILE_MODS and DISALLOW_UNFILTERED_HTML set to true) via the 'widget_rrm_similar_posts_condition' widget setting of the plugin.Show less
CVE-2021-41228 1Google 1Tensorflow Nov 21, 2024 Nov 5, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 TensorFlow is an open source platform for machine learning. In affected versions TensorFlow's `saved_model_cli` tool is vulnerable to a code injection as it calls `eval` on user supplied strings. This can be used by atta...Show more TensorFlow is an open source platform for machine learning. In affected versions TensorFlow's `saved_model_cli` tool is vulnerable to a code injection as it calls `eval` on user supplied strings. This can be used by attackers to run arbitrary code on the plaform where the CLI tool runs. However, given that the tool is always run manually, the impact of this is not severe. We have patched this by adding a `safe` flag which defaults to `True` and an explicit warning for users. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.Show less
CVE-2021-42057 1Obsidian 1Obsidian Dataview Nov 21, 2024 Nov 4, 2021 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Obsidian Dataview through 0.4.12-hotfix1 allows eval injection. The evalInContext function in executes user input, which allows an attacker to craft malicious Markdown files that will execute arbitrary code once opened....Show more Obsidian Dataview through 0.4.12-hotfix1 allows eval injection. The evalInContext function in executes user input, which allows an attacker to craft malicious Markdown files that will execute arbitrary code once opened. NOTE: 0.4.13 provides a mitigation for some use cases.Show less
CVE-2021-43281 1Mybb 1Mybb Nov 21, 2024 Nov 4, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 MyBB before 1.8.29 allows Remote Code Injection by an admin with the "Can manage settings?" permission. The Admin CP's Settings management module does not validate setting types correctly on insertion and update, making...Show more MyBB before 1.8.29 allows Remote Code Injection by an admin with the "Can manage settings?" permission. The Admin CP's Settings management module does not validate setting types correctly on insertion and update, making it possible to add settings of supported type "php" with PHP code, executed on Change Settings pages.Show less
CVE-2021-42754 1Fortinet 1Forticlient Nov 21, 2024 Nov 2, 2021 N/A· v4 5.0 MEDIUM· v3 3.5 LOW· v2 An improper control of generation of code vulnerability [CWE-94] in FortiClientMacOS versions 7.0.0 and below and 6.4.5 and below may allow an authenticated attacker to hijack the MacOS camera without the user permission...Show more An improper control of generation of code vulnerability [CWE-94] in FortiClientMacOS versions 7.0.0 and below and 6.4.5 and below may allow an authenticated attacker to hijack the MacOS camera without the user permission via the malicious dylib file.Show less
CVE-2021-25877 1Youphptube 1Youphptube Nov 21, 2024 Nov 1, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 AVideo/YouPHPTube 10.0 and prior is affected by Insecure file write. An administrator privileged user is able to write files on filesystem using flag and code variables in file save.php.

Previous 1...187188189...324 Next