Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CVEs (6,471)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-7798 3Debian MozillaRedhat 8Debian Linux Enterprise LinuxEnterprise Linux Desktop+5 more Nov 25, 2025 Jun 11, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. In the worst case, this could allow arbitrary code execution when opening a malicious page...Show more The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. In the worst case, this could allow arbitrary code execution when opening a malicious page with the style editor tool. This vulnerability affects Firefox ESR < 52.3 and Firefox < 55.Show less
CVE-2018-6512 1Puppet 3Pe Razor Server Puppet EnterpriseRazor Server Nov 21, 2024 Jun 11, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The previous version of Puppet Enterprise 2018.1 is vulnerable to unsafe code execution when upgrading pe-razor-server. Affected releases are Puppet Enterprise: 2018.1.x versions prior to 2018.1.1 and razor-server and pe...Show more The previous version of Puppet Enterprise 2018.1 is vulnerable to unsafe code execution when upgrading pe-razor-server. Affected releases are Puppet Enterprise: 2018.1.x versions prior to 2018.1.1 and razor-server and pe-razor-server prior to 1.9.0.0.Show less
CVE-2018-11228 1Crestron 1Crestron Toolbox Protocol Firmware Nov 21, 2024 Jun 8, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP).
CVE-2017-16151 1Electronjs 1Electron Nov 21, 2024 Jun 7, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Based on details posted by the ElectronJS team; A remote code execution vulnerability has been discovered in Google Chromium that affects all recent versions of Electron. Any Electron app that accesses remote content is...Show more Based on details posted by the ElectronJS team; A remote code execution vulnerability has been discovered in Google Chromium that affects all recent versions of Electron. Any Electron app that accesses remote content is vulnerable to this exploit, regardless of whether the [sandbox option](https://electron.atom.io/docs/api/sandbox-option) is enabled.Show less
CVE-2017-16100 1Dns Sync Project 1Dns Sync Nov 21, 2024 Jun 7, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 dns-sync is a sync/blocking dns resolver. If untrusted user input is allowed into the resolve() method then command injection is possible.
CVE-2017-16082 1Node Postgres 1Pg Nov 21, 2024 Jun 7, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A remote code execution vulnerability was found within the pg module when the remote database or query specifies a specially crafted column name. There are 2 likely scenarios in which one would likely be vulnerable. 1) E...Show more A remote code execution vulnerability was found within the pg module when the remote database or query specifies a specially crafted column name. There are 2 likely scenarios in which one would likely be vulnerable. 1) Executing unsafe, user-supplied sql which contains a malicious column name. 2) Connecting to an untrusted database and executing a query which returns results where any of the column names are malicious.Show less
CVE-2017-16042 1Growl Project 1Growl Nov 21, 2024 Jun 4, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Growl adds growl notification support to nodejs. Growl before 1.10.2 does not properly sanitize input before passing it to exec, allowing for arbitrary command execution.
CVE-2017-16020 1Summit Project 1Summit Nov 21, 2024 Jun 4, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Summit is a node web framework. When using the PouchDB driver in the module, Summit 0.1.0 and later allows an attacker to execute arbitrary commands via the collection name.
CVE-2018-7951 1Huawei 201288h V5 Firmware 2288h V5 Firmware2488 V5 Firmware+17 more Nov 21, 2024 Jun 1, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to mod...Show more The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Successful exploit may allow attackers to obtain the management privilege of the system.Show less
CVE-2018-7950 1Huawei 201288h V5 Firmware 2288h V5 Firmware2488 V5 Firmware+17 more Nov 21, 2024 Jun 1, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to mod...Show more The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Successful exploit may allow attackers to obtain the management privilege of the system.Show less
CVE-2016-10548 1Reduce Css Calc Project 1Reduce Css Calc Nov 21, 2024 May 31, 2018 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Arbitrary code execution is possible in reduce-css-calc node module <=1.2.4 through crafted css. This makes cross sites scripting (XSS) possible on the client and arbitrary code injection possible on the server and user...Show more Arbitrary code execution is possible in reduce-css-calc node module <=1.2.4 through crafted css. This makes cross sites scripting (XSS) possible on the client and arbitrary code injection possible on the server and user input is passed to the `calc` function.Show less
CVE-2016-10546 1Pouchdb 1Pouchdb Nov 21, 2024 May 31, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 An arbitrary code injection vector was found in PouchDB 6.0.4 and lesser via the map/reduce functions used in PouchDB temporary views and design documents. The code execution engine for this branch is not properly sandbo...Show more An arbitrary code injection vector was found in PouchDB 6.0.4 and lesser via the map/reduce functions used in PouchDB temporary views and design documents. The code execution engine for this branch is not properly sandboxed and may be used to run arbitrary JavaScript as well as system commands.Show less
CVE-2016-10541 1Shell Quote Project 1Shell Quote Nov 21, 2024 May 31, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The npm module "shell-quote" 1.6.0 and earlier cannot correctly escape ">" and "<" operator used for redirection in shell. Applications that depend on shell-quote may also be vulnerable. A malicious user could perform co...Show more The npm module "shell-quote" 1.6.0 and earlier cannot correctly escape ">" and "<" operator used for redirection in shell. Applications that depend on shell-quote may also be vulnerable. A malicious user could perform code injection.Show less
CVE-2014-10065 1Remarkable Project 1Remarkable Nov 21, 2024 May 31, 2018 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Certain input when passed into remarkable before 1.4.1 will bypass the bad protocol check that disallows the javascript: scheme allowing for javascript: url's to be injected into the rendered content.
CVE-2018-1133 1Moodle 1Moodle Nov 21, 2024 May 25, 2018 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 An issue was discovered in Moodle 3.x. A Teacher creating a Calculated question can intentionally cause remote code execution on the server, aka eval injection.
CVE-2018-1260 1Pivotal Software 1Spring Security Oauth Nov 21, 2024 May 11, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Spring Security OAuth, versions 2.3 prior to 2.3.3, 2.2 prior to 2.2.2, 2.1 prior to 2.1.2, 2.0 prior to 2.0.15 and older unsupported versions contains a remote code execution vulnerability. A malicious user or attacker...Show more Spring Security OAuth, versions 2.3 prior to 2.3.3, 2.2 prior to 2.2.2, 2.1 prior to 2.1.2, 2.0 prior to 2.0.15 and older unsupported versions contains a remote code execution vulnerability. A malicious user or attacker can craft an authorization request to the authorization endpoint that can lead to remote code execution when the resource owner is forwarded to the approval endpoint.Show less
CVE-2018-2418 1Sap 1Maxdb Odbc Driver Nov 21, 2024 May 9, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 SAP MaxDB ODBC driver (all versions before 7.9.09.07) allows an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.
CVE-2018-10740 1Axublog 1Axublog Nov 21, 2024 May 4, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Axublog 1.1.0 allows remote Code Execution as demonstrated by injection of PHP code (contained in the webkeywords parameter) into the cmsconfig.php file.
CVE-2018-1104 1Redhat 2Ansible Tower Cloudforms Nov 21, 2024 May 2, 2018 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Ansible Tower through version 3.2.3 has a vulnerability that allows users only with access to define variables for a job template to execute arbitrary code on the Tower server.
CVE-2018-10642 1Combodo 1Itop Nov 21, 2024 May 2, 2018 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Command injection vulnerability in Combodo iTop 2.4.1 allows remote authenticated administrators to execute arbitrary commands by changing the platform configuration, because web/env-production/itop-config/config.php con...Show more Command injection vulnerability in Combodo iTop 2.4.1 allows remote authenticated administrators to execute arbitrary commands by changing the platform configuration, because web/env-production/itop-config/config.php contains a function called TestConfig() that calls the vulnerable function eval().Show less

Previous 1...212213214...324 Next