Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-94 (对生成代码的控制不恰当(代码注入)) — Vulnerability Class 1295

1295 vulnerabilities classified as CWE-94 (对生成代码的控制不恰当(代码注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-34821 Siemens SIMATIC 代码注入漏洞 — RUGGEDCOM RM1224 LTE(4G) EU 7.6 High2022-07-12
CVE-2015-3173 Wordpress plugin custom-content-type-manager 代码注入漏洞 — custom-content-type-manager 7.2 -2022-07-06
CVE-2022-2073 Code Injection in getgrav/grav — getgrav/grav 8.8 -2022-06-29
CVE-2017-20099 Analytics Stats Counter Statistics Plugin code injection — Analytics Stats Counter Statistics Plugin 7.3 High2022-06-27
CVE-2017-20095 Simple Ads Manager Plugin code injection — Simple Ads Manager Plugin 6.3 Medium2022-06-24
CVE-2017-20086 VaultPress Plugin code injection — VaultPress Plugin 6.3 Medium2022-06-23
CVE-2017-20064 Elefant CMS layout code injection — CMS 6.3 Medium2022-06-20
CVE-2022-2054 Code Injection in nuitka/nuitka — nuitka/nuitka 8.4 High2022-06-12
CVE-2022-2014 Code Injection in jgraph/drawio — jgraph/drawio 6.1 -2022-06-08
CVE-2022-21831 Ruby on Rails 代码注入漏洞 — https://github.com/rails/rails 9.8 -2022-05-26
CVE-2022-29221 PHP Code Injection by malicious block or filename in Smarty — smarty 8.8 High2022-05-24
CVE-2022-29216 Code injection in `saved_model_cli` in TensorFlow — tensorflow 7.8 High2022-05-20
CVE-2021-27446 Weintek EasyWeb cMT Code Injection — cMT-SVR-1xx/2xx 10.0 Critical2022-05-16
CVE-2022-0578 Code Injection in publify/publify — publify/publify 5.3 -2022-05-16
CVE-2022-24817 Improper kubeconfig validation allows arbitrary code execution — flux2 9.9 Critical2022-05-06
CVE-2022-1575 Arbitrary Code Execution through Sanitizer Bypass in jgraph/drawio — jgraph/drawio 9.6 -2022-05-05
CVE-2022-29821 Jetbrains Rider 代码注入漏洞 — Rider 6.9 Medium2022-04-28
CVE-2022-29819 Jetbrains JetBrains IntelliJ IDEA 代码注入漏洞 — IntelliJ IDEA 6.9 Medium2022-04-28
CVE-2022-29815 Jetbrains JetBrains IntelliJ IDEA 代码注入漏洞 — IntelliJ IDEA 6.9 Medium2022-04-28
CVE-2022-29814 Jetbrains IntelliJ IDEA 代码注入漏洞 — IntelliJ IDEA 6.9 Medium2022-04-28
CVE-2022-29813 JetBrains IntelliJ IDEA 代码注入漏洞 — IntelliJ IDEA 6.9 Medium2022-04-28
CVE-2022-24735 Lua scripts can be manipulated to overcome ACL rules in Redis — redis 3.9 Low2022-04-27
CVE-2022-24881 Command Injection in Ballcat Codegen — ballcat-codegen 8.8 High2022-04-26
CVE-2022-0661 Ad Injection <= 1.2.0.19 - Admin+ Stored Cross-Site Scripting & RCE — Ad Injection 7.2 -2022-04-18
CVE-2022-24816 Improper Control of Generation of Code in jai-ext — jai-ext 10.0 Critical2022-04-13
CVE-2022-27837 Samsung Accessibility安全漏洞 — Accessibility 4.4 Medium2022-04-11
CVE-2022-24780 Code Injection in Combodo iTop — iTop 8.8 High2022-04-05
CVE-2022-1159 Rockwell Automation Studio 5000 Logix Designer Code Injection — Studio 5000 Logix Designer 7.7 High2022-04-01
CVE-2022-22965 Spring Framework 代码注入漏洞 — Spring Framework 9.8 -2022-04-01
CVE-2022-22963 Spring Framework 代码注入漏洞 — Spring Cloud Function 9.8 -2022-04-01

Vulnerabilities classified as CWE-94 (对生成代码的控制不恰当(代码注入)) represent 1295 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.