Vulnerabilities > Improper Control of Generation of Code ('Code Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-22 | CVE-2019-6816 | Code Injection vulnerability in Schneider-Electric Modicon Quantum Firmware In Modicon Quantum all firmware versions, a CWE-94: Code Injection vulnerability could cause an unauthorized firmware modification with possible Denial of Service when using Modbus protocol. | 9.1 |
| 2019-05-17 | CVE-2019-0091 | Code Injection vulnerability in Intel products Code injection vulnerability in installer for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access. | 7.8 |
| 2019-05-08 | CVE-2019-11642 | Code Injection vulnerability in Oneshield Policy A log poisoning vulnerability has been discovered in the OneShield Policy (Dragon Core) framework before 5.1.10. | 8.8 |
| 2019-04-29 | CVE-2019-11594 | Code Injection vulnerability in Getadblock Adblock In AdBlock before 3.45.0, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect. | 8.1 |
| 2019-04-29 | CVE-2019-11593 | Code Injection vulnerability in Adblockplus Adblock Plus In Adblock Plus before 3.5.2, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect. | 8.1 |
| 2019-04-22 | CVE-2011-1830 | Code Injection vulnerability in Ekiga Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekiga_test.so. | 8.8 |
| 2019-04-20 | CVE-2019-11376 | Code Injection vulnerability in Brassica SOY CMS 3.0.2 SOY CMS v3.0.2 allows remote attackers to execute arbitrary PHP code via a <?php substring in the second text box. | 7.2 |
| 2019-04-09 | CVE-2019-10633 | Code Injection vulnerability in Zyxel Nas326 Firmware 5.21 An eval injection vulnerability in the Python web server routing on the Zyxel NAS 326 version 5.21 and below allows a remote authenticated attacker to execute arbitrary code via the tjp6jp6y4, simZysh, and ck6fup6 APIs. | 8.8 |
| 2019-04-04 | CVE-2019-10863 | Code Injection vulnerability in Combodo Teemip A command injection vulnerability exists in TeemIp versions before 2.4.0. | 7.2 |
| 2019-04-04 | CVE-2019-10842 | Code Injection vulnerability in Getbootstrap Bootstrap-Sass 3.2.0.3 Arbitrary code execution (via backdoor code) was discovered in bootstrap-sass 3.2.0.3, when downloaded from rubygems.org. | 9.8 |