Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CVEs (6,471)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-8938 1Progress 1Whatsup Gold Nov 21, 2024 May 1, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A Code Injection issue was discovered in DlgSelectMibFile.asp in Ipswitch WhatsUp Gold before 2018 (18.0). Malicious actors can inject a specially crafted SNMP MIB file that could allow them to execute arbitrary commands...Show more A Code Injection issue was discovered in DlgSelectMibFile.asp in Ipswitch WhatsUp Gold before 2018 (18.0). Malicious actors can inject a specially crafted SNMP MIB file that could allow them to execute arbitrary commands and code on the WhatsUp Gold server.Show less
CVE-2018-10574 1Bigtreecms 1Bigtree Cms Nov 21, 2024 Apr 30, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 site/index.php/admin/trees/add/ in BigTree 4.2.22 and earlier allows remote attackers to upload and execute arbitrary PHP code because the BigTreeStorage class in core/inc/bigtree/apis/storage.php does not prevent upload...Show more site/index.php/admin/trees/add/ in BigTree 4.2.22 and earlier allows remote attackers to upload and execute arbitrary PHP code because the BigTreeStorage class in core/inc/bigtree/apis/storage.php does not prevent uploads of .htaccess files.Show less
CVE-2018-10517 1Cmsmadesimple 1Cms Made Simple Nov 21, 2024 Apr 27, 2018 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 In CMS Made Simple (CMSMS) through 2.2.7, the "module import" operation in the admin dashboard contains a remote code execution vulnerability, exploitable by an admin user, because an XML Package can contain base64-encod...Show more In CMS Made Simple (CMSMS) through 2.2.7, the "module import" operation in the admin dashboard contains a remote code execution vulnerability, exploitable by an admin user, because an XML Package can contain base64-encoded PHP code in a data element.Show less
CVE-2018-10515 1Cmsmadesimple 1Cms Made Simple Nov 21, 2024 Apr 27, 2018 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 In CMS Made Simple (CMSMS) through 2.2.7, the "file unpack" operation in the admin dashboard contains a remote code execution vulnerability exploitable by an admin user because a .php file can be present in the extracted...Show more In CMS Made Simple (CMSMS) through 2.2.7, the "file unpack" operation in the admin dashboard contains a remote code execution vulnerability exploitable by an admin user because a .php file can be present in the extracted ZIP archive.Show less
CVE-2018-10429 1Cosmocms 1Cosmo Nov 21, 2024 Apr 26, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Cosmo 1.0.0Beta6 allows attackers to execute arbitrary PHP code via the Database Prefix field on the Database Info screen of install.php.
CVE-2017-1721 1Ibm 1Qradar Security Information And Event Manager Nov 21, 2024 Apr 26, 2018 N/A· v4 5.6 MEDIUM· v3 6.8 MEDIUM· v2 IBM Security QRadar SIEM 7.2 and 7.3 could allow an unauthenticated user to execute code remotely with lower level privileges under unusual circumstances. IBM X-Force ID: 134810.
CVE-2018-9113 1Cdc 1Microbetrace Nov 21, 2024 Apr 26, 2018 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Centers for Disease Control and Prevention MicrobeTRACE 0.1.12 allows remote attackers to execute arbitrary code, related to code injection via a crafted CSV file with an initial '><script type="text/javascript" src=' li...Show more Centers for Disease Control and Prevention MicrobeTRACE 0.1.12 allows remote attackers to execute arbitrary code, related to code injection via a crafted CSV file with an initial '><script type="text/javascript" src=' line. Fix released on 2018-03-29.Show less
CVE-2018-8974 1Cdc 1Microbetrace Nov 21, 2024 Apr 26, 2018 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Centers for Disease Control and Prevention MicrobeTRACE 0.1.11 allows remote attackers to execute arbitrary code, related to code injection via a crafted CSV file with an initial 'Source<script type="text/javascript" src...Show more Centers for Disease Control and Prevention MicrobeTRACE 0.1.11 allows remote attackers to execute arbitrary code, related to code injection via a crafted CSV file with an initial 'Source<script type="text/javascript" src=' line. Fix released on 2018-03-28.Show less
CVE-2018-10236 1Poscms 1Poscms Nov 21, 2024 Apr 19, 2018 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 POSCMS 3.2.18 allows remote attackers to execute arbitrary PHP code via the diy\dayrui\controllers\admin\Syscontroller.php 'add' function because an attacker can control the value of $data['name'] with no restrictions, a...Show more POSCMS 3.2.18 allows remote attackers to execute arbitrary PHP code via the diy\dayrui\controllers\admin\Syscontroller.php 'add' function because an attacker can control the value of $data['name'] with no restrictions, and this value is written to the FCPATH.$file file.Show less
CVE-2018-10235 1Poscms 1Poscms Nov 21, 2024 Apr 19, 2018 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 POSCMS 3.2.10 allows remote attackers to execute arbitrary PHP code via the diy\module\member\controllers\admin\Setting.php 'index' function because an attacker can control the value of $cache['setting']['ucssocfg'] in d...Show more POSCMS 3.2.10 allows remote attackers to execute arbitrary PHP code via the diy\module\member\controllers\admin\Setting.php 'index' function because an attacker can control the value of $cache['setting']['ucssocfg'] in diy\module\member\models\Member_model.php and write this code into the api/ucsso/config.php file.Show less
CVE-2018-10133 1Pbootcms 1Pbootcms Nov 21, 2024 Apr 16, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 PbootCMS v0.9.8 allows PHP code injection via an IF label in index.php/About/6.html or admin.php/Site/index.html, related to the parserIfLabel function in \apps\home\controller\ParserController.php.
CVE-2018-10086 1Cmsmadesimple 1Cms Made Simple Nov 21, 2024 Apr 13, 2018 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 CMS Made Simple (CMSMS) through 2.2.7 contains an arbitrary code execution vulnerability in the admin dashboard because the implementation uses "eval('function testfunction'.rand()" and it is possible to bypass certain r...Show more CMS Made Simple (CMSMS) through 2.2.7 contains an arbitrary code execution vulnerability in the admin dashboard because the implementation uses "eval('function testfunction'.rand()" and it is possible to bypass certain restrictions on these "testfunction" functions.Show less
CVE-2018-1028 1Microsoft 6Excel Services OfficeOffice 2010+3 more Nov 21, 2024 Apr 12, 2018 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts, aka "Microsoft Office Graphics Remote Code Execution Vulnerability." This affects Word,...Show more A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts, aka "Microsoft Office Graphics Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft SharePoint, Excel, Microsoft SharePoint Server.Show less
CVE-2018-1275 2Oracle Vmware 19Application Testing Suite Big Data DiscoveryCommunications Converged Application Server+16 more Nov 21, 2024 Apr 11, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.16 and older unsupported versions, allow applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the...Show more Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.16 and older unsupported versions, allow applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a remote code execution attack. This CVE addresses the partial fix for CVE-2018-1270 in the 4.3.x branch of the Spring Framework.Show less
CVE-2018-1273 4Apache BroadcomOracle+1 more 5Financial Services Crime And Compliance Management Studio IgniteSpring Data Commons+2 more Jun 15, 2026 Apr 11, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property binder vulnerability caused by improper neutralization of special elements. An unauthenticated remo...Show more Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property binder vulnerability caused by improper neutralization of special elements. An unauthenticated remote malicious user (or attacker) can supply specially crafted request parameters against Spring Data REST backed HTTP resources or using Spring Data's projection-based request payload binding hat can lead to a remote code execution attack.Show less
CVE-2018-9848 1Gxlcms 1Gxlcms Qy Nov 21, 2024 Apr 7, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In Gxlcms QY v1.0.0713, the upload function in Lib\Lib\Action\Admin\UploadAction.class.php allows remote attackers to execute arbitrary PHP code by first using an Admin-Admin-Configsave request to change the config[uploa...Show more In Gxlcms QY v1.0.0713, the upload function in Lib\Lib\Action\Admin\UploadAction.class.php allows remote attackers to execute arbitrary PHP code by first using an Admin-Admin-Configsave request to change the config[upload_class] value from jpg,gif,png,jpeg to jpg,gif,png,jpeg,php and then making an Admin-Upload-Upload request.Show less
CVE-2018-9847 1Gxlcms 1Gxlcms Qy Nov 21, 2024 Apr 7, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In Gxlcms QY v1.0.0713, the update function in Lib\Lib\Action\Admin\TplAction.class.php allows remote attackers to execute arbitrary PHP code by placing this code into a template.
CVE-2018-1270 4Debian OracleRedhat+1 more 28Application Testing Suite Big Data DiscoveryCommunications Converged Application Server+25 more Nov 21, 2024 Apr 6, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported versions, allow applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the...Show more Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported versions, allow applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a remote code execution attack.Show less
CVE-2017-3967 1Mcafee 1Network Security Manager Nov 21, 2024 Apr 4, 2018 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to inject arbitrary web script or HTML via application pages inability...Show more Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to inject arbitrary web script or HTML via application pages inability to break out of 3rd party HTML frames.Show less
CVE-2018-9175 1Dedecms 1Dedecms Nov 21, 2024 Apr 2, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 DedeCMS 5.7 allows remote attackers to execute arbitrary PHP code via the egroup parameter to uploads/dede/stepselect_main.php because code within the database is accessible to uploads/dede/sys_cache_up.php.

Previous 1...213214215...324 Next