Vulnerabilities > Improper Control of Dynamically-Managed Code Resources
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-02 | CVE-2021-23259 | Improper Control of Dynamically-Managed Code Resources vulnerability in Craftercms Crafter CMS Authenticated users with Administrator or Developer roles may execute OS commands by Groovy Script which uses Groovy lib to render a webpage. | 7.2 |
| 2021-12-02 | CVE-2021-23262 | Improper Control of Dynamically-Managed Code Resources vulnerability in Craftercms Crafter CMS Authenticated administrators may modify the main YAML configuration file and load a Java class resulting in RCE. | 7.2 |
| 2021-08-03 | CVE-2021-32813 | Improper Control of Dynamically-Managed Code Resources vulnerability in Traefik Traefik is an HTTP reverse proxy and load balancer. | 8.1 |
| 2021-08-02 | CVE-2021-22387 | Improper Control of Dynamically-Managed Code Resources vulnerability in Huawei Emui and Magic UI There is an Improper Control of Dynamically Managing Code Resources Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to remotely execute commands. | 9.8 |
| 2021-05-11 | CVE-2021-32563 | Improper Control of Dynamically-Managed Code Resources vulnerability in Xfce Thunar An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. | 9.8 |
| 2021-01-30 | CVE-2020-15568 | Improper Control of Dynamically-Managed Code Resources vulnerability in Terra-Master TOS TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. | 9.8 |
| 2021-01-27 | CVE-2021-26276 | Improper Control of Dynamically-Managed Code Resources vulnerability in Godaddy Node-Config-Shield 0.2.2 scripts/cli.js in the GoDaddy node-config-shield (aka Config Shield) package before 0.2.2 for Node.js calls eval when processing a set command. | 5.3 |
| 2020-11-18 | CVE-2020-3419 | Improper Control of Dynamically-Managed Code Resources vulnerability in Cisco Webex Meetings Server A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to join a Webex session without appearing on the participant list. | 9.1 |
| 2020-10-06 | CVE-2020-25803 | Improper Control of Dynamically-Managed Code Resources vulnerability in Craftercms Studio Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via FreeMarker template exposed objects. | 7.2 |
| 2020-10-06 | CVE-2020-25802 | Improper Control of Dynamically-Managed Code Resources vulnerability in Craftercms Studio Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy scripting. | 7.2 |