Vulnerabilities > Improper Control of Generation of Code ('Code Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-02 | CVE-2024-41127 | Code Injection vulnerability in Monkeytype Monkeytype is a minimalistic and customizable typing test. | 9.6 |
| 2024-07-31 | CVE-2024-37900 | Code Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 4.6 |
| 2024-07-31 | CVE-2024-37901 | Code Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 8.8 |
| 2024-07-21 | CVE-2024-6940 | Code Injection vulnerability in Dedecms 5.7.112 A vulnerability was found in DedeCMS 5.7.114. | 7.2 |
| 2024-07-10 | CVE-2024-37149 | Code Injection vulnerability in Glpi-Project Glpi GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. | 8.8 |
| 2024-07-01 | CVE-2024-36401 | Code Injection vulnerability in multiple products GeoServer is an open source server that allows users to share and edit geospatial data. | 9.8 |
| 2024-07-01 | CVE-2024-6376 | Code Injection vulnerability in Mongodb Compass MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection settings with the usage of ejson shell parser in Compass' connection handling. | 9.8 |
| 2024-06-20 | CVE-2024-37899 | Code Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 8.0 |
| 2024-06-16 | CVE-2024-38458 | Code Injection vulnerability in Xenforo 2.2.7 Xenforo before 2.2.16 allows code injection. | 8.8 |
| 2024-06-14 | CVE-2024-37885 | Code Injection vulnerability in Nextcloud Desktop The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server with your computer. | 7.8 |