Vulnerabilities > Improper Control of Generation of Code ('Code Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-06 | CVE-2022-29171 | Code Injection vulnerability in Sourcegraph Sourcegraph is a fast and featureful code search and navigation engine. | 7.2 |
| 2022-04-28 | CVE-2022-29813 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 local code execution via custom Pandoc path was possible | 6.7 |
| 2022-04-28 | CVE-2022-29814 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possible | 7.7 |
| 2022-04-28 | CVE-2022-29815 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 local code execution via workspace settings was possible | 6.7 |
| 2022-04-28 | CVE-2022-29819 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 local code execution via links in Quick Documentation was possible | 7.7 |
| 2022-04-28 | CVE-2022-29821 | Code Injection vulnerability in Jetbrains Pycharm In JetBrains Rider before 2022.1 local code execution via links in ReSharper Quick Documentation was possible | 7.7 |
| 2022-04-25 | CVE-2022-29078 | Code Injection vulnerability in EJS 3.1.6 The ejs (aka Embedded JavaScript templates) package 3.1.6 for Node.js allows server-side template injection in settings[view options][outputFunctionName]. | 9.8 |
| 2022-04-13 | CVE-2022-24816 | Code Injection vulnerability in Geosolutionsgroup Jai-Ext JAI-EXT is an open-source project which aims to extend the Java Advanced Imaging (JAI) API. | 10.0 |
| 2022-04-11 | CVE-2022-22954 | Code Injection vulnerability in VMWare products VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-side template injection. | 9.8 |
| 2022-04-11 | CVE-2021-40219 | Code Injection vulnerability in Bolt CMS Bolt CMS <= 4.2 is vulnerable to Remote Code Execution. | 8.8 |