SourceCodester Modern Image Gallery App 代码注入漏洞

SourceCodester Modern Image Gallery App is an open-source modern image gallery application developed by SourceCodester. Version 1.0 of the SourceCodester Modern Image Gallery App contains a code injection vulnerability, which stems from incorrect handling of the parameter filename in the upload.p...

PT-2026-21583

Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Carbonite Safe Server Backup allows Code Injection. The vulnerability could be exploited through an open port, potentially allowing unauthorized access. This issue affects Carbonite Safe Server Backup: through 6.8....

itsourcecode Event Management System 代码注入漏洞

itsourcecode Event Management System is an open-source event management system developed by itsourcecode. Version 1.0 of the itsourcecode Event Management System contains a code injection vulnerability. This vulnerability arises from incorrect handling of the parameter “page” in the file...

OpenText Carbonite Safe Server Backup 代码注入漏洞

OpenText Carbonite Safe Server Backup is a hybrid cloud backup software developed by OpenText Corporation in Canada. Versions of OpenText Carbonite Safe Server Backup 6.8.3 and earlier contained a code injection vulnerability. This vulnerability stemmed from improper code generation controls, whi...

ImageMagick 代码注入漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained a code injection vulnerability. This vulnerability stemmed from the ps...

JeeWMS 代码注入漏洞

JeeWMS is a JAVA-based warehouse management system developed by JeeWMS Corporation in China. JeeWMS versions 3.7 and earlier contained a code injection vulnerability. This vulnerability stemmed from improper handling of parameters in the file...

JeeWMS 代码注入漏洞

JeeWMS is a JAVA-based warehouse management system developed by JeeWMS Corporation in China. Versions of JeeWMS 3.7 and earlier contained a code injection vulnerability. This vulnerability stemmed from improper handling of the parameter ‘myEditor’ in the file...

BaykeShop 代码注入漏洞

BaykeShop is an e-commerce system developed by xingfuggz’s individual developers. Versions of BaykeShop prior to 1.3.20 have a code injection vulnerability. This vulnerability stems from improper handling of the parameter sidebar.content in the file...

07FLYCMS和07FlyCRM 代码注入漏洞

07FLYCMS is a free and open-source content management system developed by 07FLY Company in China. 07Fly and 07FLYCRM are customer relationship management systems created by 07FLY Company. 07FLYCMS and 07FlyCRM versions 1.2.9 and earlier have a code injection vulnerability. This vulnerability stem...

Smart-SSO 代码注入漏洞

Smart-SSO is an authorization and authentication tool developed by Joe as a personal project. Versions of Smart-SSO 2.1.1 and earlier contained a code injection vulnerability. This vulnerability stemmed from incorrect handling of the redirectUri parameter in the...

Smart-SSO 代码注入漏洞

Smart-SSO is an authorization and authentication tool developed by Joe as a personal project. Versions of Smart-SSO 2.1.1 and earlier contained a code injection vulnerability. This vulnerability stemmed from incorrect operations on the function “Save” in the file...

forest 代码注入漏洞

Forest is a modern knowledge community backend project developed by RYMCU. It is implemented using SpringBoot, Shiro, MyBatis, JWT, and Redis. Versions of Forest 0.0.5 and earlier have a code injection vulnerability. This vulnerability stems from incorrect operations in the updateUserInfo functio...

Student Management System 代码注入漏洞

Student Management System is a simple web-based student management software developed by Sk.Amir Hamza in Bangladesh. The Student Management System has a code injection vulnerability, which stems from incorrect handling of the parameter “Error” in the file index.php, potentially leading to...

forest 代码注入漏洞

Forest is a modern knowledge community backend project developed by RYMCU. It is implemented using SpringBoot, Shiro, MyBatis, JWT, and Redis. Versions of Forest 0.0.5 and earlier have a code injection vulnerability. This vulnerability stems from incorrect operations on the XssUtils.replaceHtmlCo...

Yifang CMS 代码注入漏洞

Yifang CMS is a PHP enterprise website development and management system provided by Yifang Corporation. Versions of Yifang CMS 2.0.5 and earlier contained a code injection vulnerability. This vulnerability stemmed from incorrect handling of the parameter “Name” in the file...

FunAdmin 代码注入漏洞

FunAdmin is an open-source backend development system developed using ThinkPHP6 and Layui. Versions of FunAdmin 7.1.0-rc4 and earlier have a code injection vulnerability. This vulnerability stems from incorrect handling of parameters in the app/backend/view/index/index.html file of the component'...

Yifang CMS 代码注入漏洞

Yifang CMS is a PHP enterprise website development and management system provided by Yifang Corporation. Versions of Yifang CMS 2.0.5 and earlier contained a code injection vulnerability. This vulnerability stemmed from incorrect handling of the parameter “Name” in the file...

Yifang CMS 代码注入漏洞

Yifang CMS is a PHP enterprise website development and management system provided by Yifang Corporation. Versions of Yifang CMS 2.0.5 and earlier contained a code injection vulnerability. This vulnerability stemmed from incorrect handling of the parameter ‘name/index’ in the file...

itsourcecode Student Management System 代码注入漏洞

itsourcecode Student Management System is an open-source student management system developed by itsourcecode. Version 1.0 of itsourcecode Student Management System has a code injection vulnerability, which may lead to cross-site scripting attacks...

CVE-2025-52744

Improper Control of Generation of Code 'Code Injection' vulnerability in inpersttion Inpersttion For Theme err-our-team allows Code Injection.This issue affects Inpersttion For Theme: from n/a through = 1.0...