Vulnerabilities > Improper Control of Generation of Code ('Code Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-08 | CVE-2024-21650 | Code Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 9.8 |
| 2024-01-08 | CVE-2023-7224 | Code Injection vulnerability in Openvpn Connect OpenVPN Connect version 3.0 through 3.4.6 on macOS allows local users to execute code in external third party libraries using the DYLD_INSERT_LIBRARIES environment variable | 7.8 |
| 2024-01-03 | CVE-2023-51784 | Code Injection vulnerability in Apache Inlong Improper Control of Generation of Code ('Code Injection') vulnerability in Apache InLong.This issue affects Apache InLong: from 1.5.0 through 1.9.0, which could lead to Remote Code Execution. Users are advised to upgrade to Apache InLong's 1.10.0 or cherry-pick [1] to solve it. [1] https://github.com/apache/inlong/pull/9329 | 9.8 |
| 2024-01-03 | CVE-2023-41783 | Code Injection vulnerability in ZTE Zxcloud Irai Firmware There is a command injection vulnerability of ZTE's ZXCLOUD iRAI. | 7.8 |
| 2024-01-02 | CVE-2024-0196 | Code Injection vulnerability in Ssssssss Magic-Api A vulnerability has been found in Magic-Api up to 2.0.1 and classified as critical. | 8.8 |
| 2024-01-02 | CVE-2024-0195 | Code Injection vulnerability in Ssssssss Spider-Flow 0.4.3 A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. | 9.8 |
| 2023-12-31 | CVE-2023-39157 | Code Injection vulnerability in Crocoblock Jetelements Improper Control of Generation of Code ('Code Injection') vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.10. | 8.8 |
| 2023-12-30 | CVE-2023-41544 | Code Injection vulnerability in Jeecg Boot SSTI injection vulnerability in jeecg-boot version 3.5.3, allows remote attackers to execute arbitrary code via crafted HTTP request to the /jmreport/loadTableData component. | 9.8 |
| 2023-12-29 | CVE-2023-49830 | Code Injection vulnerability in Brainstormforce Astra Improper Control of Generation of Code ('Code Injection') vulnerability in Brainstorm Force Astra Pro.This issue affects Astra Pro: from n/a through 4.3.1. | 8.8 |
| 2023-12-29 | CVE-2023-51420 | Code Injection vulnerability in Soft8Soft Verge3D Improper Control of Generation of Code ('Code Injection') vulnerability in Soft8Soft LLC Verge3D Publishing and E-Commerce.This issue affects Verge3D Publishing and E-Commerce: from n/a through 4.5.2. | 8.8 |