Vulnerabilities > Improper Control of Generation of Code ('Code Injection')

DATE	CVE	VULNERABILITY TITLE	RISK
2025-04-04	CVE-2025-3251	A vulnerability, which was classified as problematic, was found in xujiangfei admintwo 1.0. network low complexity CWE-94	3.5
2025-04-04	CVE-2025-3219	A vulnerability was found in CodeCanyon Perfex CRM 3.2.1. network low complexity CWE-94	3.5
2025-04-04	CVE-2024-13645	The tagDiv Composer plugin for WordPress is vulnerable to PHP Object Instantiation in all versions up to, and including, 5.3 via module parameter. network low complexity CWE-94 critical	9.8
2025-04-03	CVE-2025-3163	Code Injection vulnerability in Internlm Lmdeploy A vulnerability was found in InternLM LMDeploy up to 0.7.1. local low complexity internlm CWE-94	7.8
2025-04-03	CVE-2025-3164	Code Injection vulnerability in Tencentmusic Supersonic A vulnerability was found in Tencent Music Entertainment SuperSonic up to 0.9.8. network low complexity tencentmusic CWE-94 critical	9.8
2025-04-03	CVE-2025-3157	A vulnerability was found in Intelbras WRN 150 1.0.15_pt_ITB01. network low complexity CWE-94	2.4
2025-04-03	CVE-2025-3149	A vulnerability was found in itning Student Homework Management System up to 1.2.7. network low complexity CWE-94	2.4
2025-04-03	CVE-2025-3152	A vulnerability classified as problematic has been found in caipeichao ThinkOX 1.0. network low complexity CWE-94	3.5
2025-03-31	CVE-2025-3005	A vulnerability was found in Sayski ForestBlog up to 20250321 and classified as problematic. network low complexity CWE-94	3.5
2025-03-31	CVE-2025-2981	A vulnerability, which was classified as problematic, has been found in Legrand SMS PowerView 1.x. network low complexity CWE-94	3.5