Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CVEs (6,471)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-40323 1Cobbler Project 1Cobbler Nov 21, 2024 Oct 4, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XMLRPC method that logs to the logfile for template injection.
CVE-2020-20124 1Wuzhicms 1Wuzhicms May 5, 2025 Sep 28, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Wuzhi CMS v4.1.0 contains a remote code execution (RCE) vulnerability in \attachment\admin\index.php.
CVE-2021-22952 1Ui 1Unifi Talk Nov 21, 2024 Sep 23, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A vulnerability found in UniFi Talk application V1.12.3 and earlier permits a malicious actor who has already gained access to a network to subsequently control Talk device(s) assigned to said network if they are not yet...Show more A vulnerability found in UniFi Talk application V1.12.3 and earlier permits a malicious actor who has already gained access to a network to subsequently control Talk device(s) assigned to said network if they are not yet adopted. This vulnerability is fixed in UniFi Talk application V1.12.5 and later.Show less
CVE-2021-3583 1Redhat 3Ansible Automation Platform Ansible EngineAnsible Tower Nov 21, 2024 Sep 22, 2021 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 A flaw was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through facts used in the template if the user is trying to put templates in multi-line YAML strings and th...Show more A flaw was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through facts used in the template if the user is trying to put templates in multi-line YAML strings and the facts being handled do not routinely include special template characters. This flaw allows attackers to perform command injection, which discloses sensitive information. The highest threat from this vulnerability is to confidentiality and integrity.Show less
CVE-2021-39402 1Maianmedia 1Maianaffiliate Nov 21, 2024 Sep 20, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 MaianAffiliate v.1.0 is suffers from code injection by adding a new product via the admin panel. The injected payload is reflected on the affiliate main page for all authenticated and unauthenticated visitors.
CVE-2021-39128 1Atlassian 2Jira Data Center Jira Server Nov 21, 2024 Sep 16, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Affected versions of Atlassian Jira Server or Data Center using the Jira Service Management addon allow remote attackers with JIRA Administrators access to execute arbitrary Java code via a server-side template injection...Show more Affected versions of Atlassian Jira Server or Data Center using the Jira Service Management addon allow remote attackers with JIRA Administrators access to execute arbitrary Java code via a server-side template injection vulnerability in the Email Template feature. The affected versions of Jira Server or Data Center are before version 8.13.12, and from version 8.14.0 before 8.19.1.Show less
CVE-2021-33693 1Sap 1Cloud Connector Nov 21, 2024 Sep 15, 2021 N/A· v4 6.8 MEDIUM· v3 7.7 HIGH· v2 SAP Cloud Connector, version - 2.0, allows an authenticated administrator to modify a configuration file to inject malicious codes that could potentially lead to OS command execution.
CVE-2021-40373 1Playsms 1Playsms Nov 21, 2024 Sep 10, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 playSMS before 1.4.5 allows Arbitrary Code Execution by entering PHP code at the #tabs-information-page of core_main_config, and then executing that code via the index.php?app=main&inc=core_welcome URI.
CVE-2021-32836 1Zstack 1Zstack Nov 21, 2024 Sep 9, 2021 N/A· v4 8.1 HIGH· v3 6.8 MEDIUM· v2 ZStack is open source IaaS(infrastructure as a service) software. In ZStack before versions 3.10.12 and 4.1.6 there is a pre-auth unsafe deserialization vulnerability in the REST API. An attacker in control of the reques...Show more ZStack is open source IaaS(infrastructure as a service) software. In ZStack before versions 3.10.12 and 4.1.6 there is a pre-auth unsafe deserialization vulnerability in the REST API. An attacker in control of the request body will be able to provide both the class name and the data to be deserialized and therefore will be able to instantiate an arbitrary type and assign arbitrary values to its fields. This issue may lead to a Denial Of Service. If a suitable gadget is available, then an attacker may also be able to exploit this vulnerability to gain pre-auth remote code execution. For additional details see the referenced GHSL-2021-087.Show less
CVE-2021-32834 1Eclipse 1Keti Nov 21, 2024 Sep 9, 2021 N/A· v4 9.9 CRITICAL· v3 6.5 MEDIUM· v2 Eclipse Keti is a service that was designed to protect RESTfuls API using Attribute Based Access Control (ABAC). In Keti a user able to create Policy Sets can run arbitrary code by sending malicious Groovy scripts which...Show more Eclipse Keti is a service that was designed to protect RESTfuls API using Attribute Based Access Control (ABAC). In Keti a user able to create Policy Sets can run arbitrary code by sending malicious Groovy scripts which will escape the configured Groovy sandbox. This vulnerability is known to exist in the latest commit at the time of writing this CVE (commit a1c8dbe). For more details see the referenced GHSL-2021-063.Show less
CVE-2021-39503 1Phpmywind 1Phpmywind Nov 21, 2024 Sep 7, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 PHPMyWind 5.6 is vulnerable to Remote Code Execution. Becase input is filtered without "<, >, ?, =, `,...." In WriteConfig() function, an attacker can inject php code to /include/config.cache.php file.
CVE-2021-39115 1Atlassian 2Jira Service Desk Jira Service Management Nov 21, 2024 Sep 1, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers with "Jira Administrators" access to execute arbitrary Java code or run arbitrary system commands via a Server_Side Tem...Show more Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers with "Jira Administrators" access to execute arbitrary Java code or run arbitrary system commands via a Server_Side Template Injection vulnerability in the Email Template feature. The affected versions are before version 4.13.9, and from version 4.14.0 before 4.18.0.Show less
CVE-2021-32831 1Totaljs 1Total.js Nov 21, 2024 Aug 30, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Total.js framework (npm package total.js) is a framework for Node.js platfrom written in pure JavaScript similar to PHP's Laravel or Python's Django or ASP.NET MVC. In total.js framework before version 3.4.9, calling the...Show more Total.js framework (npm package total.js) is a framework for Node.js platfrom written in pure JavaScript similar to PHP's Laravel or Python's Django or ASP.NET MVC. In total.js framework before version 3.4.9, calling the utils.set function with user-controlled values leads to code-injection. This can cause a variety of impacts that include arbitrary code execution. This is fixed in version 3.4.9.Show less
CVE-2021-29772 1Ibm 1Api Connect Nov 21, 2024 Aug 26, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 IBM API Connect 5.0.0.0 through 5.0.8.11 could allow a user to potentially inject code due to unsanitized user input. IBM X-Force ID: 202774.
CVE-2020-19822 1Zzcms 1Zzcms Nov 21, 2024 Aug 26, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 A remote code execution (RCE) vulnerability in template_user.php of ZZCMS version 2018 allows attackers to execute arbitrary PHP code via the "ml" and "title" parameters.
CVE-2021-39159 1Jupyter 1Binderhub Nov 21, 2024 Aug 25, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 BinderHub is a kubernetes-based cloud service that allows users to share reproducible interactive computing environments from code repositories. In affected versions a remote code execution vulnerability has been identif...Show more BinderHub is a kubernetes-based cloud service that allows users to share reproducible interactive computing environments from code repositories. In affected versions a remote code execution vulnerability has been identified in BinderHub, where providing BinderHub with maliciously crafted input could execute code in the BinderHub context, with the potential to egress credentials of the BinderHub deployment, including JupyterHub API tokens, kubernetes service accounts, and docker registry credentials. This may provide the ability to manipulate images and other user created pods in the deployment, with the potential to escalate to the host depending on the underlying kubernetes configuration. Users are advised to update to version 0.2.0-n653. If users are unable to update they may disable the git repo provider by specifying the `BinderHub.repo_providers` as a workaround.Show less
CVE-2021-39160 1Jupyterhub 1Nbgitpuller Nov 21, 2024 Aug 25, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 nbgitpuller is a Jupyter server extension to sync a git repository one-way to a local path. Due to unsanitized input, visiting maliciously crafted links could result in arbitrary code execution in the user environment. T...Show more nbgitpuller is a Jupyter server extension to sync a git repository one-way to a local path. Due to unsanitized input, visiting maliciously crafted links could result in arbitrary code execution in the user environment. This has been resolved in version 0.10.2 and all users are advised to upgrade. No work around exist for users who can not upgrade.Show less
CVE-2021-40084 1Artixlinux 1Opensysusers Nov 21, 2024 Aug 25, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 opensysusers through 0.6 does not safely use eval on files in sysusers.d that may contain shell metacharacters. For example, it allows command execution via a crafted GECOS field whereas systemd-sysusers (a program with...Show more opensysusers through 0.6 does not safely use eval on files in sysusers.d that may contain shell metacharacters. For example, it allows command execution via a crafted GECOS field whereas systemd-sysusers (a program with the same specification) does not do that.Show less
CVE-2021-39144 5Debian FedoraprojectNetapp+2 more 15Business Activity Monitoring Commerce Guided SearchCommunications Billing And Revenue Management Elastic Charging Engine+12 more Oct 24, 2025 Aug 23, 2021 N/A· v4 8.5 HIGH· v3 6.0 MEDIUM· v2 XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker has sufficient rights to execute commands of the host only by manipulating the p...Show more XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker has sufficient rights to execute commands of the host only by manipulating the processed input stream. No user is affected, who followed the recommendation to setup XStream's security framework with a whitelist limited to the minimal required types. XStream 1.4.18 uses no longer a blacklist by default, since it cannot be secured for general purpose.Show less
CVE-2020-22120 1Txjia 1Imcat Nov 21, 2024 Aug 18, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A remote code execution (RCE) vulnerability in /root/run/adm.php?admin-ediy&part=exdiy of imcat v5.1 allows authenticated attackers to execute arbitrary code.

Previous 1...189190191...324 Next