Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CVEs (6,471)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-23281 1Eaton 1Intelligent Power Manager Nov 21, 2024 Apr 13, 2021 N/A· v4 10.0 CRITICAL· v3 7.5 HIGH· v2 Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated remote code execution vulnerability. IPM software does not sanitize the date provided via coverterCheckList action in meta_driver_srv.j...Show more Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated remote code execution vulnerability. IPM software does not sanitize the date provided via coverterCheckList action in meta_driver_srv.js class. Attackers can send a specially crafted packet to make IPM connect to rouge SNMP server and execute attacker-controlled code.Show less
CVE-2021-23277 1Eaton 3Intelligent Power Manager Intelligent Power Manager Virtual ApplianceIntelligent Power Protector Nov 21, 2024 Apr 13, 2021 N/A· v4 10.0 CRITICAL· v3 7.5 HIGH· v2 Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated eval injection vulnerability. The software does not neutralize code syntax from users before using in the dynamic evaluation call in lo...Show more Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated eval injection vulnerability. The software does not neutralize code syntax from users before using in the dynamic evaluation call in loadUserFile function under scripts/libs/utils.js. Successful exploitation can allow attackers to control the input to the function and execute attacker controlled commands.Show less
CVE-2021-21433 1Demon1a 1Discord Recon Nov 21, 2024 Apr 9, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server resulting in serious is...Show more Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server resulting in serious issues. This flaw is patched in 0.0.2.Show less
CVE-2021-1362 1Cisco 4Prime License Manager Unified Communications ManagerUnified Communications Manager Im & Presence Service+1 more Nov 21, 2024 Apr 8, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability in the SOAP API endpoint of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, Cisco Uni...Show more A vulnerability in the SOAP API endpoint of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, Cisco Unity Connection, and Cisco Prime License Manager could allow an authenticated, remote attacker to execute arbitrary code on an affected device. This vulnerability is due to improper sanitization of user-supplied input. An attacker could exploit this vulnerability by sending a SOAP API request with crafted parameters to an affected device. A successful exploit could allow the attacker to execute arbitrary code with root privileges on the underlying Linux operating system of the affected device.Show less
CVE-2021-24209 1Automattic 1Wp Super Cache Nov 21, 2024 Apr 5, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 The WP Super Cache WordPress plugin before 1.7.2 was affected by an authenticated (admin+) RCE in the settings page due to input validation failure and weak $cache_path check in the WP Super Cache Settings -> Cache Locat...Show more The WP Super Cache WordPress plugin before 1.7.2 was affected by an authenticated (admin+) RCE in the settings page due to input validation failure and weak $cache_path check in the WP Super Cache Settings -> Cache Location option. Direct access to the wp-cache-config.php file is not prohibited, so this vulnerability can be exploited for a web shell injection.Show less
CVE-2021-23358 4Debian FedoraprojectTenable+1 more 4Debian Linux FedoraTenable.sc+1 more Nov 3, 2025 Mar 29, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Injection via the template function, particularly when a variable property is passed as an argument...Show more The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Injection via the template function, particularly when a variable property is passed as an argument as it is not sanitized.Show less
CVE-2021-27438 1Ge 1Reason Dr60 Firmware Nov 21, 2024 Mar 25, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 (all firmware versions prior to 02A04.1).
CVE-2021-21345 6Apache DebianFedoraproject+3 more 16Activemq Banking Enterprise Default ManagementBanking Platform+13 more May 23, 2025 Mar 23, 2021 N/A· v4 9.9 CRITICAL· v3 6.5 MEDIUM· v2 XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker who has sufficient rights to execute commands of the host...Show more XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker who has sufficient rights to execute commands of the host only by manipulating the processed input stream. No user is affected, who followed the recommendation to setup XStream's security framework with a whitelist limited to the minimal required types. If you rely on XStream's default blacklist of the Security Framework, you will have to use at least version 1.4.16.Show less
CVE-2021-27928 4Debian GaleraclusterMariadb+1 more 4Debian Linux MariadbPercona Server+1 more Nov 21, 2024 Mar 19, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 A remote code execution issue was discovered in MariaDB 10.2 before 10.2.37, 10.3 before 10.3.28, 10.4 before 10.4.18, and 10.5 before 10.5.9; Percona Server through 2021-03-03; and the wsrep patch through 2021-03-03 for...Show more A remote code execution issue was discovered in MariaDB 10.2 before 10.2.37, 10.3 before 10.3.28, 10.4 before 10.4.18, and 10.5 before 10.5.9; Percona Server through 2021-03-03; and the wsrep patch through 2021-03-03 for MySQL. An untrusted search path leads to eval injection, in which a database SUPER user can execute OS commands after modifying wsrep_provider and wsrep_notify_cmd. NOTE: this does not affect an Oracle product.Show less
CVE-2021-27230 1Expressionengine 1Expressionengine Nov 21, 2024 Mar 15, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 ExpressionEngine before 5.4.2 and 6.x before 6.0.3 allows PHP Code Injection by certain authenticated users who can leverage Translate::save() to write to an _lang.php file under the system/user/language directory.
CVE-2021-3411 2Linux Redhat 2Enterprise Linux Linux Kernel Nov 21, 2024 Mar 9, 2021 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confide...Show more A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.Show less
CVE-2021-21480 1Sap 1Manufacturing Integration And Intelligence May 5, 2025 Mar 9, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 SAP MII allows users to create dashboards and save them as JSP through the SSCE (Self Service Composition Environment). An attacker can intercept a request to the server, inject malicious JSP code in the request and forw...Show more SAP MII allows users to create dashboards and save them as JSP through the SSCE (Self Service Composition Environment). An attacker can intercept a request to the server, inject malicious JSP code in the request and forward to server. When this dashboard is opened by users having at least SAP_XMII Developer role, malicious content in the dashboard gets executed, leading to remote code execution in the server, which allows privilege escalation. The malicious JSP code can contain certain OS commands, through which an attacker can read sensitive files in the server, modify files or even delete contents in the server thus compromising the confidentiality, integrity and availability of the server hosting the SAP MII application. Also, an attacker authenticated as a developer can use the application to upload and execute a file which will permit them to execute operating systems commands completely compromising the server hosting the application.Show less
CVE-2020-28502 1Xmlhttprequest Project 1Xmlhttprequest Nov 21, 2024 Mar 5, 2021 N/A· v4 8.1 HIGH· v3 6.8 MEDIUM· v2 This affects the package xmlhttprequest before 1.7.0; all versions of package xmlhttprequest-ssl. Provided requests are sent synchronously (async=False on xhr.open), malicious user input flowing into xhr.send could resul...Show more This affects the package xmlhttprequest before 1.7.0; all versions of package xmlhttprequest-ssl. Provided requests are sent synchronously (async=False on xhr.open), malicious user input flowing into xhr.send could result in arbitrary code being injected and run.Show less
CVE-2021-23344 1Totaljs 1Total.js Nov 21, 2024 Mar 4, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The package total.js before 3.4.8 are vulnerable to Remote Code Execution (RCE) via set.
CVE-2021-21353 1Pugjs 2Pug Pug Code Gen May 27, 2025 Mar 3, 2021 N/A· v4 9.0 CRITICAL· v3 6.8 MEDIUM· v2 Pug is an npm package which is a high-performance template engine. In pug before version 3.0.1, if a remote attacker was able to control the `pretty` option of the pug compiler, e.g. if you spread a user provided object...Show more Pug is an npm package which is a high-performance template engine. In pug before version 3.0.1, if a remote attacker was able to control the `pretty` option of the pug compiler, e.g. if you spread a user provided object such as the query parameters of a request into the pug template inputs, it was possible for them to achieve remote code execution on the node.js backend. This is fixed in version 3.0.1. This advisory applies to multiple pug packages including "pug", "pug-code-gen". pug-code-gen has a backported fix at version 2.0.3. This advisory is not exploitable if there is no way for un-trusted input to be passed to pug as the `pretty` option, e.g. if you compile templates in advance before applying user input to them, you do not need to upgrade.Show less
CVE-2021-25283 3Debian FedoraprojectSaltstack 3Debian Linux FedoraSalt Nov 21, 2024 Feb 27, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in through SaltStack Salt before 3002.5. The jinja renderer does not protect against server side template injection attacks.
CVE-2021-3273 1Nagios 1Nagios Xi Nov 21, 2024 Feb 25, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Nagios XI below 5.7 is affected by code injection in the /nagiosxi/admin/graphtemplates.php component. To exploit this vulnerability, someone must have an admin user account in Nagios XI's web system.
CVE-2021-26120 2Debian Smarty 2Debian Linux Smarty Nov 21, 2024 Feb 22, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Smarty before 3.1.39 allows code injection via an unexpected function name after a {function name= substring.
CVE-2020-35339 174cms 174cms Nov 21, 2024 Feb 17, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In 74cms version 5.0.1, there is a remote code execution vulnerability in /Application/Admin/Controller/ConfigController.class.php and /ThinkPHP/Common/functions.php where attackers can obtain server permissions and cont...Show more In 74cms version 5.0.1, there is a remote code execution vulnerability in /Application/Admin/Controller/ConfigController.class.php and /ThinkPHP/Common/functions.php where attackers can obtain server permissions and control the server.Show less
CVE-2020-35734 1Batflat 1Batflat Nov 21, 2024 Feb 15, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Sruu.pl in Batflat 1.3.6 allows an authenticated user to perform code injection (and consequently Remote Code Execution) via the input fields of the Users tab. To exploit this, one must login to the administration panel...Show more Sruu.pl in Batflat 1.3.6 allows an authenticated user to perform code injection (and consequently Remote Code Execution) via the input fields of the Users tab. To exploit this, one must login to the administration panel and edit an arbitrary user's data (username, displayed name, etc.). NOTE: This vulnerability only affects products that are no longer supported by the maintainerShow less

Previous 1...193194195...324 Next