Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CVEs (6,471)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-40348 2Spacewalk Project Uyuni Project 2Spacewalk Uyuni Nov 21, 2024 Nov 1, 2021 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 Spacewalk 2.10, and derivatives such as Uyuni 2021.08, allows code injection. rhn-config-satellite.pl doesn't sanitize the configuration filename used to append Spacewalk-specific key-value pair. The script is intended t...Show more Spacewalk 2.10, and derivatives such as Uyuni 2021.08, allows code injection. rhn-config-satellite.pl doesn't sanitize the configuration filename used to append Spacewalk-specific key-value pair. The script is intended to be run by the tomcat user account with Sudo, according to the installation setup. This can lead to the ability of an attacker to use --option to append arbitrary code to a root-owned file that eventually will be executed by the system. This is fixed in Uyuni spacewalk-admin 4.3.2-1.Show less
CVE-2021-42694 1Unicode 1Unicode Nov 21, 2024 Nov 1, 2021 N/A· v4 8.3 HIGH· v3 5.1 MEDIUM· v2 An issue was discovered in the character definitions of the Unicode Specification through 14.0. The specification allows an adversary to produce source code identifiers such as function names using homoglyphs that render...Show more An issue was discovered in the character definitions of the Unicode Specification through 14.0. The specification allows an adversary to produce source code identifiers such as function names using homoglyphs that render visually identical to a target identifier. Adversaries can leverage this to inject code via adversarial identifier definitions in upstream software dependencies invoked deceptively in downstream software. NOTE: the Unicode Consortium offers the following alternative approach to presenting this concern. An issue is noted in the nature of international text that can affect applications that implement support for The Unicode Standard (all versions). Unless mitigated, an adversary could produce source code identifiers using homoglyph characters that render visually identical to but are distinct from a target identifier. In this way, an adversary could inject adversarial identifier definitions in upstream software that are not detected by human reviewers and are invoked deceptively in downstream software. The Unicode Consortium has documented this class of security vulnerability in its document, Unicode Technical Report #36, Unicode Security Considerations. The Unicode Consortium also provides guidance on mitigations for this class of issues in Unicode Technical Standard #39, Unicode Security Mechanisms.Show less
CVE-2021-42574 3Fedoraproject StarwindsoftwareUnicode 3Fedora Starwind Virtual SanUnicode Nov 21, 2024 Nov 1, 2021 N/A· v4 8.3 HIGH· v3 5.1 MEDIUM· v2 An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visual reordering of characters via control sequences, which can be used to craft source code that renders...Show more An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visual reordering of characters via control sequences, which can be used to craft source code that renders different logic than the logical ordering of tokens ingested by compilers and interpreters. Adversaries can leverage this to encode source code for compilers accepting Unicode such that targeted vulnerabilities are introduced invisibly to human reviewers. NOTE: the Unicode Consortium offers the following alternative approach to presenting this concern. An issue is noted in the nature of international text that can affect applications that implement support for The Unicode Standard and the Unicode Bidirectional Algorithm (all versions). Due to text display behavior when text includes left-to-right and right-to-left characters, the visual order of tokens may be different from their logical order. Additionally, control characters needed to fully support the requirements of bidirectional text can further obfuscate the logical order of tokens. Unless mitigated, an adversary could craft source code such that the ordering of tokens perceived by human reviewers does not match what will be processed by a compiler/interpreter/etc. The Unicode Consortium has documented this class of vulnerability in its document, Unicode Technical Report #36, Unicode Security Considerations. The Unicode Consortium also provides guidance on mitigations for this class of issues in Unicode Technical Standard #39, Unicode Security Mechanisms, and in Unicode Standard Annex #31, Unicode Identifier and Pattern Syntax. Also, the BIDI specification allows applications to tailor the implementation in ways that can mitigate misleading visual reordering in program text; see HL4 in Unicode Standard Annex #9, Unicode Bidirectional Algorithm.Show less
CVE-2021-36985 1Huawei 2Emui Magic Ui Nov 21, 2024 Oct 28, 2021 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 There is a Code injection vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may exhaust system resources and cause the system to restart.
CVE-2021-41619 1Gradle 1Enterprise Nov 21, 2024 Oct 27, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 An issue was discovered in Gradle Enterprise before 2021.1.2. There is potential remote code execution via the application startup configuration. The installation configuration user interface (available to administrators...Show more An issue was discovered in Gradle Enterprise before 2021.1.2. There is potential remote code execution via the application startup configuration. The installation configuration user interface (available to administrators) allows specifying arbitrary Java Virtual Machine startup options. Some of these options, such as -XX:OnOutOfMemoryError, allow specifying a command to be run on the host. This can be abused to run arbitrary commands on the host, should an attacker gain administrative access to the application.Show less
CVE-2021-38450 1Trane 2Tracer Concierge Tracer Sc Firmware Nov 21, 2024 Oct 27, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 The affected controllers do not properly sanitize the input containing code syntax. As a result, an attacker could craft code to alter the intended controller flow of the software.
CVE-2020-23037 1Portable 1Playable Nov 21, 2024 Oct 22, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Portable Ltd Playable v9.18 contains a code injection vulnerability in the filename parameter, which allows attackers to execute arbitrary web scripts or HTML via a crafted POST request.
CVE-2021-22961 1Glasswire 1Glasswire Nov 21, 2024 Oct 18, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A code injection vulnerability exists within the firewall software of GlassWire v2.1.167 that could lead to arbitrary code execution from a file in the user path on first execution.
CVE-2021-29679 2Ibm Netapp 2Cognos Analytics Oncommand Insight Nov 21, 2024 Oct 15, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated user to execute code remotely due to incorrectly neutralizaing user-contrlled input that could be interpreted a a server-side include (SSI) directive. I...Show more IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated user to execute code remotely due to incorrectly neutralizaing user-contrlled input that could be interpreted a a server-side include (SSI) directive. IBM X-Force ID: 199915.Show less
CVE-2021-40487 1Microsoft 3Sharepoint Enterprise Server Sharepoint FoundationSharepoint Server Feb 28, 2025 Oct 13, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2021-40485 1Microsoft 6365 Apps ExcelOffice+3 more Feb 28, 2025 Oct 13, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Microsoft Excel Remote Code Execution Vulnerability
CVE-2021-40499 1Sap 1Netweaver Application Server Abap Nov 21, 2024 Oct 12, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the applicati...Show more Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.Show less
CVE-2021-24546 1Extendify 1Editorskit Nov 21, 2024 Oct 11, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 The Gutenberg Block Editor Toolkit – EditorsKit WordPress plugin before 1.31.6 does not sanitise and validate the Conditional Logic of the Custom Visibility settings, allowing users with a role as low contributor to exec...Show more The Gutenberg Block Editor Toolkit – EditorsKit WordPress plugin before 1.31.6 does not sanitise and validate the Conditional Logic of the Custom Visibility settings, allowing users with a role as low contributor to execute Arbitrary PHP codeShow less
CVE-2021-40889 1Cmsuno Project 1Cmsuno Nov 21, 2024 Oct 11, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 CMSUno version 1.7.2 is affected by a PHP code execution vulnerability. sauvePass action in {webroot}/uno/central.php file calls to file_put_contents() function to write username in password.php file when a user successf...Show more CMSUno version 1.7.2 is affected by a PHP code execution vulnerability. sauvePass action in {webroot}/uno/central.php file calls to file_put_contents() function to write username in password.php file when a user successfully changed their password. The attacker can inject malicious PHP code into password.php and then use the login function to execute code.Show less
CVE-2021-42139 1Deno 1Deno Standard Modules Nov 21, 2024 Oct 11, 2021 N/A· v4 9.8 CRITICAL· v3 6.8 MEDIUM· v2 Deno Standard Modules before 0.107.0 allows Code Injection via an untrusted YAML file in certain configurations.
CVE-2020-21652 1Myucms Project 1Myucms Nov 21, 2024 Oct 6, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller\Config.php, which can be exploited via the addqq() method.
CVE-2020-21651 1Myucms Project 1Myucms Nov 21, 2024 Oct 6, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller\point.php, which can be exploited via the add() method.
CVE-2020-21650 1Myucms Project 1Myucms Nov 21, 2024 Oct 6, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller\Config.php, which can be exploited via the add() method.
CVE-2021-25470 1Google 1Android Nov 21, 2024 Oct 6, 2021 N/A· v4 7.9 HIGH· v3 3.6 LOW· v2 An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1 can be used to compromise TEE.
CVE-2021-22557 1Google 1Slo Generator Nov 21, 2024 Oct 4, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/googl...Show more SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173Show less

Previous 1...188189190...324 Next