VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Improper Control of Generation of Code ('Code Injection')
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2025-01-03
CVE-2024-11733
The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.1.0.
network
low complexity
CWE-94
7.3
7.3
2024-12-29
CVE-2024-12238
The The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.8.22.
network
low complexity
CWE-94
6.3
6.3
2024-12-21
CVE-2024-11977
The The kk Star Ratings – Rate Post & Collect User Feedbacks plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.4.10.
network
low complexity
CWE-94
7.3
7.3
2024-12-19
CVE-2024-12789
Code Injection vulnerability in Pbootcms
A vulnerability was found in PbootCMS up to 3.2.3.
network
low complexity
pbootcms
CWE-94
critical
9.8
9.8
2024-12-19
CVE-2024-11740
Code Injection vulnerability in Wpdownloadmanager Download Manager
The The Download Manager plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.3.03.
network
low complexity
wpdownloadmanager
CWE-94
7.3
7.3
2024-12-13
CVE-2024-11012
The The Notibar – Notification Bar for WordPress plugin for WordPress is vulnerable to arbitrary shortcode execution via njt_nofi_text AJAX action in all versions up to, and including, 2.1.4.
network
low complexity
CWE-94
6.3
6.3
2024-12-13
CVE-2024-12417
The The Simple Link Directory plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 8.4.0.
network
low complexity
CWE-94
6.5
6.5
2024-12-13
CVE-2024-12420
The The WPMobile.App — Android and iOS Mobile Application plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 11.52.
network
low complexity
CWE-94
6.5
6.5
2024-12-13
CVE-2024-12421
The The Coupon Affiliates – Affiliate Plugin for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.16.7.1.
network
low complexity
CWE-94
6.5
6.5
2024-12-12
CVE-2024-12333
The Woodmart theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 8.0.3.
network
low complexity
CWE-94
6.5
6.5
«
Previous
1
2
...
6
7
8
(current)
9
10
...
110
111
»
Next