The vulnerability of the application software interface of the backup and recovery software for Veeam Service Provider Console (VSPC) for remote and cloud customers allows a perpetrator to execute arbitrary code.

The vulnerability of the application software interface for data backup and restoration solutions for Veeam Service Provider Console VSPC remote and cloud customers is related to improper code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the backup and data recovery software for Veeam Service Provider Console (VSPC) clients that are located remotely or in the cloud lies in improper code generation. This allows an attacker to execute arbitrary code.

The vulnerability of the backup and data recovery software for Veeam Service Provider Console VSPC for remote and cloud-based customers is related to improper code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the microprogrammed software of the wireless access point D-Link DAP-2310, related to improper code generation, allows a intruder to execute arbitrary code.

The vulnerability of the microprogrammed software in the wireless access point D-Link DAP-2310 is related to improper code generation. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

CVE-2024-43922

Improper Control of Generation of Code 'Code Injection' vulnerability in NitroPack Inc. NitroPack allows Code Injection.This issue affects NitroPack: from n/a through 1.16.7...

WordPress plugin NitroPack 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

The vulnerability of the library used for creating graphical user interfaces in GTK (GIMP Toolkit) arises from improper code generation. This allows attackers to escalate their privileges.

The vulnerability of the library used for creating graphical user interfaces in GTK GIMP Toolkit is related to improper code generation. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to improper code generation management, allows a hacker to execute arbitrary code.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to incorrect representation of the web application and command-line interface due to improper code generation management. Exploiting this vulnerability allows a malicious actor to execute...

The vulnerability of the getCustomLoginUrlTemplate method of the OpenAM access and rights management software allows a perpetrator to execute arbitrary code.

The vulnerability of the getCustomLoginUrlTemplate method in the OpenAM access and rights management software is related to improper code generation. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the Gogs self-managed Git repository creation software lies in improper code generation management, allowing attackers to execute arbitrary commands.

The vulnerability of the Gogs self-managed Git repository creation software is related to improper code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

The vulnerability of the run_search_api function in the software for monitoring and registering machine learning experiments, Aim, allows a violator to execute arbitrary code.

The vulnerability of the runsearchapi function in the software for monitoring and registering machine learning experiments of the Aim system is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through the query parameter...

The vulnerability of the js2py.disable_pyimport() function in the js2py library allows a hacker to bypass the sandbox protection and execute arbitrary code.

The vulnerability of the js2py.disablepyimport function in the js2py library is related to improper code generation management. Exploiting this vulnerability could allow a remote attacker to bypass the sandbox’s security mechanisms and execute arbitrary code by sending specially crafted API calls...

Vulnerability of the McAfee Security software: The Android operating system’s antivirus VPN, which is vulnerable due to improper code generation, allowing attackers to perform spear-phishing attacks.

The vulnerability of the McAfee Security software: The Android operating system’s antivirus and VPN services are vulnerable due to improper code generation. Exploiting this vulnerability allows a remote attacker to perform spear-phishing attacks...

The vulnerability of the software for managing VMware vCenter Server’s virtual infrastructure arises from improper code generation, allowing an attacker to execute arbitrary code.

The vulnerability of VMware vCenter Server’s software management software is related to improper code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

CVE-2024-5683

Improper Control of Generation of Code 'Code Injection' vulnerability in Next4Biz CRM & BPM Software Business Process Manangement BPM allows Remote Code Inclusion. This issue affects Business Process Manangement BPM: from 6.6.4.4 before 6.6.4.5...

PT-2024-27397 · Unknown · Instawp Connect

Name of the Vulnerable Software and Affected Versions: InstaWP Connect versions 0.1.0.38 and earlier Description: The issue is related to an Improper Control of Generation of Code 'Code Injection' vulnerability, which allows Code Injection. Recommendations: For InstaWP Connect versions 0.1.0.38 a...

WordPress plugin InstaWP Connect code injection vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code injection...

The vulnerability of the `updateAuditSource` method in the Manager component of the Apache InLong data integration platform allows a perpetrator to execute arbitrary code.

The vulnerability of the updateAuditSource method in the Manager component of the Apache InLong integration platform is related to improper code generation management. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...

WordPress plugin Anti-Malware Security and Brute-Force Firewall 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code injection vulnerability exists in...

The vulnerability of the readCodeFor function in the mysql2 library allows a hacker to execute arbitrary code.

The vulnerability of the readCodeFor function in the mysql2 database library is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the NetWorker Client (nsrexecd) component of the Dell EMC NetWorker backup and recovery system allows a attacker to execute arbitrary code.

The vulnerability of the NetWorker Client nsrexecd component of the Dell EMC NetWorker backup and recovery system is related to improper code generation. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...