Vulnerabilities > Improper Control of Generation of Code ('Code Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-18 | CVE-2023-32728 | Code Injection vulnerability in Zabbix Zabbix-Agent2 The Zabbix Agent 2 item key smart.disk.get does not sanitize its parameters before passing them to a shell command resulting possible vulnerability for remote code execution. | 9.8 |
| 2023-12-17 | CVE-2023-6886 | Code Injection vulnerability in Wang.Market Wangmarket 6.1 A vulnerability was found in xnx3 wangmarket 6.1. | 9.8 |
| 2023-12-15 | CVE-2023-50721 | Code Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2023-12-15 | CVE-2023-50723 | Code Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2023-12-15 | CVE-2023-5512 | Code Injection vulnerability in Gitlab An issue has been discovered in GitLab CE/EE affecting all versions from 16.3 before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. | 5.7 |
| 2023-12-15 | CVE-2023-6051 | Code Injection vulnerability in Gitlab An issue has been discovered in GitLab CE/EE affecting all versions before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. | 6.5 |
| 2023-12-06 | CVE-2023-6288 | Code Injection vulnerability in Devolutions Remote Desktop Manager Code injection in Remote Desktop Manager 2023.3.9.3 and earlier on macOS allows an attacker to execute code via the DYLIB_INSERT_LIBRARIES environment variable. | 7.8 |
| 2023-12-04 | CVE-2023-5762 | Code Injection vulnerability in Filr Project Filr The Filr WordPress plugin before 1.2.3.6 is vulnerable from an RCE (Remote Code Execution) vulnerability, which allows the operating system to execute commands and fully compromise the server on behalf of a user with Author-level privileges. | 8.8 |
| 2023-11-28 | CVE-2023-49313 | Code Injection vulnerability in Horsicq Xmachoviewer 0.04 A dylib injection vulnerability in XMachOViewer 0.04 allows attackers to compromise integrity. | 9.8 |
| 2023-11-28 | CVE-2023-49314 | Code Injection vulnerability in Asana Desktop 2.1.0 Asana Desktop 2.1.0 on macOS allows code injection because of specific Electron Fuses. | 7.8 |