Vulnerabilities > Improper Control of Generation of Code ('Code Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-17 | CVE-2023-24078 | Code Injection vulnerability in Realtimelogic Fuguhub 8.1 Real Time Logic FuguHub v8.1 and earlier was discovered to contain a remote code execution (RCE) vulnerability via the component /FuguHub/cmsdocs/. | 8.8 |
| 2023-02-17 | CVE-2023-0877 | Code Injection vulnerability in Froxlor Code Injection in GitHub repository froxlor/froxlor prior to 2.0.11. | 8.8 |
| 2023-02-15 | CVE-2023-22855 | Code Injection vulnerability in Kardex Control Center 5.7.12+0A203C2A213Master Kardex Mlog MCC 5.7.12+0-a203c2a213-master allows remote code execution. | 9.8 |
| 2023-02-13 | CVE-2023-25717 | Code Injection vulnerability in Ruckuswireless Ruckus Wireless Admin, Smartzone and Smartzone AP Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin&password=password$(curl substring. | 9.8 |
| 2023-02-13 | CVE-2023-23551 | Code Injection vulnerability in Controlbyweb X-600M Firmware Control By Web X-600M devices run Lua scripts and are vulnerable to code injection, which could allow an attacker to remotely execute arbitrary code. | 9.8 |
| 2023-02-12 | CVE-2023-0788 | Code Injection vulnerability in PHPmyfaq Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. | 9.8 |
| 2023-02-12 | CVE-2023-0792 | Code Injection vulnerability in PHPmyfaq Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. | 5.4 |
| 2023-02-09 | CVE-2023-23912 | Code Injection vulnerability in UI products A vulnerability, found in EdgeRouters Version 2.0.9-hotfix.5 and earlier and UniFi Security Gateways (USG) Version 4.4.56 and earlier with their DHCPv6 prefix delegation set to dhcpv6-stateless or dhcpv6-stateful, allows a malicious actor directly connected to the WAN interface of an affected device to create a remote code execution vulnerability. | 8.8 |
| 2023-02-04 | CVE-2023-0671 | Code Injection vulnerability in Froxlor Code Injection in GitHub repository froxlor/froxlor prior to 2.0.10. | 8.8 |
| 2023-02-03 | CVE-2023-23477 | Code Injection vulnerability in IBM Websphere Application Server 8.5/9.0 IBM WebSphere Application Server 8.5 and 9.0 traditional could allow a remote attacker to execute arbitrary code on the system with a specially crafted sequence of serialized objects. | 9.8 |