Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-94 (对生成代码的控制不恰当(代码注入)) — Vulnerability Class 1296

1296 vulnerabilities classified as CWE-94 (对生成代码的控制不恰当(代码注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-0195 spider-flow FunctionController.java FunctionService.saveFunction code injection — spider-flow 6.3 Medium2024-01-02
CVE-2023-39157 WordPress JetElements For Elementor Plugin <= 2.6.10 is vulnerable to Remote Code Execution (RCE) — JetElements For Elementor 9.0 Critical2023-12-31
CVE-2023-51420 WordPress Verge3D Plugin <= 4.5.2 is vulnerable to Remote Code Execution (RCE) — Verge3D Publishing and E-Commerce 9.1 Critical2023-12-29
CVE-2023-49830 WordPress Astra Pro Plugin <= 4.3.1 is vulnerable to Remote Code Execution (RCE) — Astra Pro 9.9 Critical2023-12-29
CVE-2023-47840 WordPress Qode Essential Addons Plugin <= 1.5.2 is vulnerable to Remote Code Execution (RCE) — Qode Essential Addons 9.9 Critical2023-12-29
CVE-2023-46623 WordPress WP EXtra Plugin <= 6.2 is vulnerable to Remote Code Execution (RCE) — WP EXtra 9.9 Critical2023-12-29
CVE-2023-45751 WordPress Nexter Extension Plugin <= 2.0.3 is vulnerable to Remote Code Execution (RCE) — Nexter Extension 9.1 Critical2023-12-29
CVE-2023-40606 WordPress Kanban Boards for WordPress Plugin <= 2.5.21 is vulnerable to Arbitrary Code Execution — Kanban Boards for WordPress 9.1 Critical2023-12-29
CVE-2023-32095 WordPress Rename Media Files Plugin <= 1.0.1 is vulnerable to Remote Code Execution (RCE) — Rename Media Files 9.9 Critical2023-12-29
CVE-2023-25054 WordPress RSVPMarker Plugin <= 10.6.6 is vulnerable to Remote Code Execution (RCE) — RSVPMaker 10.0 Critical2023-12-29
CVE-2023-22677 WordPress WP Booklet Plugin <= 2.1.8 is vulnerable to Remote Code Execution (RCE) — WP Booklet 8.5 High2023-12-29
CVE-2023-7148 ShifuML shifu Java Expression Language DataPurifier.java code injection — shifu 5.0 Medium2023-12-29
CVE-2023-51387 Expression Injection Vulnerability in Hertzbeat — hertzbeat 7.2 High2023-12-22
CVE-2023-6691 Code Injection vulnerability in Cambium ePMP Force 300-25 — ePMP Force 300-25 7.8 High2023-12-18
CVE-2023-6899 rmountjoy92 DashMachine Config save_config code injection — DashMachine 4.3 Medium2023-12-17
CVE-2023-6886 xnx3 wangmarket Role Management Page code injection — wangmarket 4.7 Medium2023-12-17
CVE-2023-6851 kalcaddle KodExplorer ZIP Archive app.php unzipList code injection — KodExplorer 6.3 Medium2023-12-16
CVE-2023-5512 Improper Control of Generation of Code ('Code Injection') in GitLab — GitLab 4.8 Medium2023-12-15
CVE-2023-6051 Improper Control of Generation of Code ('Code Injection') in GitLab — GitLab 5.7 Medium2023-12-15
CVE-2023-6553 Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution — BackupBliss – Backup & Migration with Free Cloud Storage 9.8 Critical2023-12-15
CVE-2023-48390 Multisuns EasyLog web+ - Command Injection — EasyLog web+ 9.8 Critical2023-12-15
CVE-2023-50710 Hono's named path parameters can be overridden in TrieRouter — hono 4.2 Medium2023-12-14
CVE-2023-5500 Frauscher: FDS102 for FAdC/FAdCi remote code execution vulnerability — FDS102 for FAdC/FAdCi 8.8 High2023-12-11
CVE-2023-49070 Pre-auth RCE in Apache Ofbiz 18.12.09 due to XML-RPC still present — Apache OFBiz 9.8 -2023-12-05
CVE-2023-49093 HtmlUnit vulnerable to Remote Code Execution (RCE) via XSTL — htmlunit 9.8 Critical2023-12-04
CVE-2023-44381 October CMS safe mode bypass using Page template injection — october 4.9 Medium2023-12-01
CVE-2023-44382 October CMS safe mode bypass using Twig sandbox escape — october 9.1 Critical2023-12-01
CVE-2023-5226 Improper Control of Generation of Code ('Code Injection') in GitLab — GitLab 4.8 Medium2023-12-01
CVE-2021-22150 Kibana code execution issue — Kibana 6.6 Medium2023-11-22
CVE-2023-6188 GetSimpleCMS theme-edit.php code injection — GetSimpleCMS 4.7 Medium2023-11-17

Vulnerabilities classified as CWE-94 (对生成代码的控制不恰当(代码注入)) represent 1296 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.