Lucene search
K

6 matches found

NVD
NVD
added yesterday4 views

CVE-2026-48322

ColdFusion is affected by an Improper Control of Generation of Code 'Code Injection' vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

9.6CVSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.8 views

PT-2025-50086

Name of the Vulnerable Software and Affected Versions Ivanti Endpoint Manager versions prior to 2024 SU4 SR1 Description A flaw exists in Ivanti Endpoint Manager due to improper control of dynamically managed code resources. A remote, unauthenticated attacker can write arbitrary files on the...

8.8CVSS8.1AI score0.01681EPSS
Exploits0References6
CVE
CVE
added 2025/08/14 10:34 a.m.22 views

CVE-2025-49887

CVE-2025-49887 is a WordPress plugin vulnerability: WPFactory Product XML Feed Manager for WooCommerce

9.9CVSS5.9AI score0.00332EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/18 12:0 a.m.3 views

WordPress plugin WPLMS 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code injection...

8.8CVSS8.7AI score0.0045EPSS
Exploits0References1
ICS
ICS
added 2024/03/26 11:32 a.m.55 views

Hitachi Energy MACH SCM (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.9 ATTENTION : Exploitable remotely Vendor : Hitachi Energy Equipment : MACH SCM Vulnerabilities : Improper Control of Generation of Code, Improper Neutralization of Directives in Dynamically Evaluated Code 2. RISK EVALUATION Successful exploitation of...

7.5CVSS7.7AI score0.00628EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2020/11/24 12:0 a.m.5 views

The vulnerability of the HEVC Video Extension codec, related to improper code generation, allows a perpetrator to execute arbitrary code.

The vulnerability of the HEVC Video Extension codec is related to improper code generation control. Exploiting this vulnerability may allow a remote attacker to execute arbitrary code...

10CVSS7.7AI score0.03735EPSS
Exploits0References3
Rows per page
Query Builder