Vulnerabilities > Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-01 | CVE-2024-38366 | Injection vulnerability in Cocoapods Trunk.Cocoapods.Org trunk.cocoapods.org is the authentication server for the CoacoaPods dependency manager. | 10.0 |
| 2024-07-01 | CVE-2024-36420 | Injection vulnerability in Flowiseai Flowise 1.4.3 Flowise is a drag & drop user interface to build a customized large language model flow. | 7.5 |
| 2024-06-28 | CVE-2024-39704 | Injection vulnerability in Unknown-Corp Melty Blood Actress Again Current Code Soft Circle French-Bread Melty Blood: Actress Again: Current Code through 1.07 Rev. | 9.8 |
| 2024-06-10 | CVE-2024-35728 | Injection vulnerability in Themeisle Product Addons & Fields for Woocommerce Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in Themeisle PPOM for WooCommerce allows Code Inclusion.This issue affects PPOM for WooCommerce: from n/a through 32.0.20. | 5.3 |
| 2024-06-10 | CVE-2024-35680 | Injection vulnerability in Yithemes Yith Woocommerce Product Add-Ons Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Code Injection.This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.9.2. | 5.3 |
| 2024-06-05 | CVE-2024-5184 | Injection vulnerability in Emailgpt The EmailGPT service contains a prompt injection vulnerability. The service uses an API service that allows a malicious user to inject a direct prompt and take over the service logic. | 9.1 |
| 2024-03-08 | CVE-2024-21900 | Injection vulnerability in Qnap QTS and Quts Hero An injection vulnerability has been reported to affect several QNAP operating system versions. | 6.5 |
| 2024-03-08 | CVE-2024-23268 | Injection vulnerability in Apple Macos An injection issue was addressed with improved input validation. | 7.8 |
| 2024-03-08 | CVE-2024-23274 | Injection vulnerability in Apple Macos An injection issue was addressed with improved input validation. | 7.8 |
| 2024-02-02 | CVE-2024-22319 | Injection vulnerability in IBM Operational Decision Manager IBM Operational Decision Manager 8.10.3, 8.10.4, 8.10.5.1, 8.11, 8.11.0.1, 8.11.1 and 8.12.0.1 is susceptible to remote code execution attack via JNDI injection when passing an unchecked argument to a certain API. | 9.8 |