284 matches found
PT-2025-33201 · WordPress · Wpfactory Product Xml Feed Manager For Woocommerce
Name of the Vulnerable Software and Affected Versions: WPFactory Product XML Feed Manager for WooCommerce versions through 2.9.3 Description: An improper control of generation of code 'Code Injection' issue exists in WPFactory Product XML Feed Manager for WooCommerce, allowing for remote code...
CVE-2025-3621
Vulnerabilities in ActADUR local server product, developed and maintained by ProTNS, allows Remote Code Inclusion on host systems. vulnerabilities: Improper Neutralization of Special Elements used in a Command 'Command Injection' Use of Hard-coded Credentials Improper Authentication Binding to an...
CVE-2025-3621
Vulnerabilities in ActADUR local server product, developed and maintained by ProTNS, allows Remote Code Inclusion on host systems. vulnerabilities: Improper Neutralization of Special Elements used in a Command 'Command Injection' Use of Hard-coded Credentials Improper Authentication Binding to an...
ProTNS ActADUR 安全漏洞
ProTNS ActADUR is a local server product from ProTNS Korea. A security vulnerability exists in ProTNS ActADUR versions prior to 2.0.1.9 through 2.0.2.0 that stems from command injection, hard-coded credentials, improper authentication, and binding to an unrestricted IP address, which could lead t...
PT-2025-29540 · Protns · Actadur
Name of the Vulnerable Software and Affected Versions: ActADUR versions 2.0.1.9 through 2.0.1.9 Description: The ActADUR local server product, developed and maintained by ProTNS, allows for Remote Code Inclusion on host systems. The vulnerability has been rated as critical and includes issues suc...
CVE-2024-7650
Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Directory Services allows Remote Code Inclusion. The vulnerability could allow access to the system via script injection.This issue affects Directory Services: 23.4...
CVE-2024-7650
Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Directory Services allows Remote Code Inclusion. The vulnerability could allow access to the system via script injection.This issue affects Directory Services: 23.4...
OpenText Directory Services 代码注入漏洞
OpenText Directory Services OTDS is an information management solution from OpenText Canada Inc. integrating OpenText products and solutions with the company's enterprise directory infrastructure. A code injection vulnerability exists in OpenText Directory Services version 23.4 that stems from...
PT-2025-29078 · Opentext · Opentext Directory Services
Name of the Vulnerable Software and Affected Versions: OpenText™ Directory Services version 23.4 Description: An improper control of generation of code 'Code Injection' vulnerability exists in OpenText™ Directory Services, potentially allowing remote code inclusion through script injection...
CVE-2025-52718
Improper Control of Generation of Code 'Code Injection' vulnerability in Beplusthemes Alone alone allows Remote Code Inclusion.This issue affects Alone: from n/a through = 7.8.2...
CVE-2025-49302
Improper Control of Generation of Code 'Code Injection' vulnerability in Scott Paterson Easy Stripe easy-stripe allows Remote Code Inclusion.This issue affects Easy Stripe: from n/a through = 1.1...
CVE-2025-52718
Improper Control of Generation of Code 'Code Injection' vulnerability in Beplusthemes Alone alone allows Remote Code Inclusion.This issue affects Alone: from n/a through = 7.8.2...
CVE-2025-49302
Improper Control of Generation of Code 'Code Injection' vulnerability in Scott Paterson Easy Stripe easy-stripe allows Remote Code Inclusion.This issue affects Easy Stripe: from n/a through = 1.1...
CVE-2025-52718 WordPress Alone theme <= 7.8.2 - Arbitrary Code Execution Vulnerability
Improper Control of Generation of Code 'Code Injection' vulnerability in Beplusthemes Alone alone allows Remote Code Inclusion.This issue affects Alone: from n/a through = 7.8.2...
CVE-2025-52718 WordPress Alone <= 7.8.2 - Arbitrary Code Execution Vulnerability
Improper Control of Generation of Code 'Code Injection' vulnerability in Bearsthemes Alone allows Remote Code Inclusion. This issue affects Alone: from n/a through 7.8.2...
PT-2025-27932 · Unknown · Bearsthemes Alone
Name of the Vulnerable Software and Affected Versions: Bearsthemes Alone versions n/a through 7.8.2 Description: The issue is related to an Improper Control of Generation of Code, also known as 'Code Injection', which allows Remote Code Inclusion. This enables potential attackers to execute...
PT-2025-27921 · Unknown · Easy Stripe
Name of the Vulnerable Software and Affected Versions: Easy Stripe versions 1.1 and earlier Description: The issue is related to an Improper Control of Generation of Code 'Code Injection' vulnerability, which allows Remote Code Inclusion. This vulnerability enables remote code inclusion due to a...
CVE-2025-0634
Use After Free vulnerability in Samsung Open Source rLottie allows Remote Code Inclusion.This issue affects rLottie: V0.2...
CVE-2025-0634
Use After Free vulnerability in Samsung Open Source rLottie allows Remote Code Inclusion.This issue affects rLottie: V0.2...
CVE-2025-0634
Use After Free vulnerability in Samsung Open Source rLottie allows Remote Code Inclusion.This issue affects rLottie: V0.2...