CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

RedhatCVE•added 2026/03/26 3:18 p.m.•4 views

CVE-2026-32367

Improper Control of Generation of Code 'Code Injection' vulnerability in Yannick Lefebvre Modal Dialog modal-dialog allows Remote Code Inclusion.This issue affects Modal Dialog: from n/a through = 3.5.16...

9.1CVSS5.8AI score0.00397EPSS

Exploits0References1

NVD•added 2026/03/25 5:17 p.m.•6 views

CVE-2026-32573

Improper Control of Generation of Code 'Code Injection' vulnerability in Nelio Software Nelio AB Testing nelio-ab-testing allows Code Injection.This issue affects Nelio AB Testing: from n/a through = 8.2.7...

9.1CVSS0.00297EPSS

Exploits0References1

NVD•added 2026/03/25 5:17 p.m.•5 views

CVE-2026-32525

Improper Control of Generation of Code 'Code Injection' vulnerability in jetmonsters JetFormBuilder jetformbuilder allows Code Injection.This issue affects JetFormBuilder: from n/a through = 3.5.6.1...

9.9CVSS0.00294EPSS

Exploits0References1

Positive Technologies•added 2026/01/22 12:0 a.m.•4 views

PT-2026-4058

Name of the Vulnerable Software and Affected Versions Vollstart Event Tickets with Ticket Scanner versions through 2.8.3 Description A code injection issue exists in Vollstart Event Tickets with Ticket Scanner. The issue involves improper control of code generation, potentially allowing for code...

5.5AI score0.00319EPSS

Exploits0References3

RedhatCVE•added 2025/12/19 7:32 a.m.•7 views

CVE-2025-66078

Improper Control of Generation of Code 'Code Injection' vulnerability in jetmonsters Hotel Booking Lite motopress-hotel-booking-lite allows Remote Code Inclusion.This issue affects Hotel Booking Lite: from n/a through = 5.2.3...

9.1CVSS7.2AI score0.00314EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-11405

Malware in sbrugna...

7.5CVSS7.6AI score0.0094EPSS

Exploits0References2

Positive Technologies•added 2025/08/20 12:0 a.m.•6 views

PT-2025-33925 · Unknown · Jordy Meow Code Engine

Name of the Vulnerable Software and Affected Versions: Jordy Meow Code Engine versions n/a through 0.3.3 Description: An improper control of generation of code 'Code Injection' vulnerability exists in Jordy Meow Code Engine, allowing for Remote Code Inclusion. Recommendations: Update Jordy Meow...

9.9CVSS7AI score0.00425EPSS

Exploits0References4

CNNVD•added 2025/08/11 12:0 a.m.•2 views

ABB ASPECT 代码注入漏洞

ABB ASPECT is a scalable building energy management and control solution from ABB Switzerland. A code injection vulnerability exists in ABB ASPECT versions prior to 3.08.04-s01, which stems from improper code generation controls and could lead to code injection...

9.8CVSS7.2AI score0.00558EPSS

Exploits0References3

CNNVD•added 2025/06/06 12:0 a.m.•3 views

WordPress plugin Team Showcase 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A code injection vulnerability exists in WordPress...

4.3CVSS5.5AI score0.00273EPSS

Exploits0References1

BDU FSTEC•added 2025/03/25 12:0 a.m.•4 views

Microsoft Edge browser vulnerability, related to improper code generation management, allows attackers to execute arbitrary code.

The vulnerability of Microsoft Edge is related to incorrect code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.8CVSS6AI score0.0084EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2024/05/28 12:0 a.m.•7 views

PT-2025-10595

Name of the Vulnerable Software and Affected Versions Fresh Framework versions 1.70.0 and earlier Description The issue is related to an Improper Control of Generation of Code 'Code Injection' vulnerability, which allows Code Injection. Recommendations For versions 1.70.0 and earlier, update to a...

10CVSS7.3AI score0.00453EPSS

Exploits0References17

OSV•added 2023/12/29 10:15 a.m.•5 views

CVE-2023-51420

Improper Control of Generation of Code 'Code Injection' vulnerability in Soft8Soft LLC Verge3D Publishing and E-Commerce.This issue affects Verge3D Publishing and E-Commerce: from n/a through 4.5.2...

8.8CVSS5.8AI score0.00579EPSS

Exploits0References1

BDU FSTEC•added 2022/10/04 12:0 a.m.•8 views

The vulnerability of the OGNL expression transformation class implementation in the Apache Struts software platform allows a hacker to execute arbitrary code.

The vulnerability of the OGNL expression transformation class implementation in the Apache Struts software framework is related to improper code generation management. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted request...

9.6CVSS8.2AI score0.70211EPSS

Exploits1References6Affected Software5

BDU FSTEC•added 2022/06/06 12:0 a.m.•4 views

The vulnerability of the DNS Server component of the Windows operating system, which allows a hacker to execute arbitrary code.

The vulnerability of the DNS Server component of the Windows operating system is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS7.7AI score0.03561EPSS

Exploits0References3

BDU FSTEC•added 2022/01/17 12:0 a.m.•3 views

The vulnerability of the Java Velocity template mechanism, related to improper code generation control, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Java Velocity template mechanism is related to improper code generation management. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

9CVSS6.8AI score0.22709EPSS

Exploits0References24Affected Software4