Vulnerabilities > Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-09 | CVE-2024-28191 | Injection vulnerability in Contao Contao is an open source content management system. | 5.4 |
| 2024-03-13 | CVE-2024-28192 | Injection vulnerability in Yooooomi Your Spotify your_spotify is an open source, self hosted Spotify tracking dashboard. | 5.3 |
| 2024-03-11 | CVE-2024-0044 | Injection vulnerability in Google Android In createSessionInternal of PackageInstallerService.java, there is a possible run-as any app due to improper input validation. | 6.7 |
| 2024-03-08 | CVE-2024-23268 | Injection vulnerability in Apple Macos An injection issue was addressed with improved input validation. | 7.8 |
| 2024-03-08 | CVE-2024-23274 | Injection vulnerability in Apple Macos An injection issue was addressed with improved input validation. | 7.8 |
| 2024-03-08 | CVE-2024-23280 | Injection vulnerability in multiple products An injection issue was addressed with improved validation. | 6.5 |
| 2024-02-27 | CVE-2024-21742 | Injection vulnerability in Apache James Mime4J Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages. | 5.3 |
| 2024-02-23 | CVE-2024-1833 | Injection vulnerability in Walterjnr1 Employee Management System 1.0 A vulnerability was found in SourceCodester Employee Management System 1.0 and classified as critical. | 9.8 |
| 2024-02-22 | CVE-2023-51388 | Injection vulnerability in Apache Hertzbeat Hertzbeat is a real-time monitoring system. | 9.8 |
| 2024-02-22 | CVE-2023-51653 | Injection vulnerability in Apache Hertzbeat Hertzbeat is a real-time monitoring system. | 9.8 |