Vulnerabilities > Improper Control of Generation of Code ('Code Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-13 | CVE-2015-9298 | Code Injection vulnerability in Pixelite Events Manager The events-manager plugin before 5.6 for WordPress has code injection. | 9.8 |
| 2019-08-12 | CVE-2019-14965 | Code Injection vulnerability in Frappe An issue was discovered in Frappe Framework 10 through 12 before 12.0.4. | 9.8 |
| 2019-08-07 | CVE-2019-14746 | Code Injection vulnerability in Kuaifan Kuaifancms 5.0 A issue was discovered in KuaiFanCMS 5.0. | 9.8 |
| 2019-08-05 | CVE-2017-18468 | Code Injection vulnerability in Cpanel cPanel before 62.0.17 allows demo accounts to execute code via the Htaccess::setphppreference API (SEC-232). | 6.3 |
| 2019-08-02 | CVE-2019-7871 | Code Injection vulnerability in Magento A security bypass exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 that could be abused to execute arbitrary PHP code. | 8.8 |
| 2019-08-01 | CVE-2018-20931 | Code Injection vulnerability in Cpanel cPanel before 70.0.23 allows demo accounts to execute code via the Landing Page (SEC-405). | 6.3 |
| 2019-08-01 | CVE-2019-0193 | Code Injection vulnerability in multiple products In Apache Solr, the DataImportHandler, an optional but popular module to pull in data from databases and other sources, has a feature in which the whole DIH configuration can come from a request's "dataConfig" parameter. | 7.2 |
| 2019-08-01 | CVE-2018-20896 | Code Injection vulnerability in Cpanel cPanel before 71.9980.37 allows code injection in the WHM cPAddons interface (SEC-394). | 3.9 |
| 2019-07-31 | CVE-2019-10182 | Code Injection vulnerability in multiple products It was found that icedtea-web though 1.7.2 and 1.8.2 did not properly sanitize paths from <jar/> elements in JNLP files. | 6.5 |
| 2019-07-29 | CVE-2019-11201 | Code Injection vulnerability in Dolibarr Erp/Crm 9.0.1 Dolibarr ERP/CRM 9.0.1 provides a module named website that provides for creation of public websites with a WYSIWYG editor. | 8.0 |