The vulnerability of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD), web server software-based network devices, allows attackers to execute arbitrary code.

The vulnerability in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD VPN microprogramming device controllers is related to improper code generation. Exploitation of this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the Dell OpenManage Enterprise system management console, related to improper code generation, allows a malicious actor to execute arbitrary code.

The vulnerability of the Dell OpenManage Enterprise system management console is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

WordPress plugin ScottCart 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code injection...

The vulnerability of the Expressions function on the Grafana monitoring and observation platform allows a hacker to execute arbitrary code.

The vulnerability of the Expressions function on the Grafana monitoring and observation platform is related to improper code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by injecting specially crafted SQL queries...

WordPress plugin ajax-extend 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code injection...

The vulnerability of the eval function in software platforms for automating data exchange between MindsDB queues allows a hacker to execute arbitrary code.

The vulnerability of the eval function in software platforms for automating data exchange between MindsDB queues is related to improper code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by introducing a specially crafted INSERT query...

The vulnerability of the eval function in software platforms for automating data exchange between MindsDB queues allows a hacker to execute arbitrary code.

The vulnerability of the eval function in software platforms for automating data exchange between MindsDB queues is related to improper code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by introducing a specially crafted INSERT query...

The vulnerability of the application software interface of the backup and recovery software for Veeam Service Provider Console (VSPC) for remote and cloud customers allows a perpetrator to execute arbitrary code.

The vulnerability of the application software interface for data backup and restoration solutions for Veeam Service Provider Console VSPC remote and cloud customers is related to improper code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the backup and data recovery software for Veeam Service Provider Console (VSPC) clients that are located remotely or in the cloud lies in improper code generation. This allows an attacker to execute arbitrary code.

The vulnerability of the backup and data recovery software for Veeam Service Provider Console VSPC for remote and cloud-based customers is related to improper code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the microprogrammed software of the wireless access point D-Link DAP-2310, related to improper code generation, allows a intruder to execute arbitrary code.

The vulnerability of the microprogrammed software in the wireless access point D-Link DAP-2310 is related to improper code generation. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

CVE-2024-43922

Improper Control of Generation of Code 'Code Injection' vulnerability in NitroPack Inc. NitroPack allows Code Injection.This issue affects NitroPack: from n/a through 1.16.7...

WordPress plugin NitroPack 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

The vulnerability of the library used for creating graphical user interfaces in GTK (GIMP Toolkit) arises from improper code generation. This allows attackers to escalate their privileges.

The vulnerability of the library used for creating graphical user interfaces in GTK GIMP Toolkit is related to improper code generation. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to improper code generation management, allows a hacker to execute arbitrary code.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to incorrect representation of the web application and command-line interface due to improper code generation management. Exploiting this vulnerability allows a malicious actor to execute...

The vulnerability of the getCustomLoginUrlTemplate method of the OpenAM access and rights management software allows a perpetrator to execute arbitrary code.

The vulnerability of the getCustomLoginUrlTemplate method in the OpenAM access and rights management software is related to improper code generation. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the Gogs self-managed Git repository creation software lies in improper code generation management, allowing attackers to execute arbitrary commands.

The vulnerability of the Gogs self-managed Git repository creation software is related to improper code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

The vulnerability of the run_search_api function in the software for monitoring and registering machine learning experiments, Aim, allows a violator to execute arbitrary code.

The vulnerability of the runsearchapi function in the software for monitoring and registering machine learning experiments of the Aim system is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through the query parameter...

The vulnerability of the js2py.disable_pyimport() function in the js2py library allows a hacker to bypass the sandbox protection and execute arbitrary code.

The vulnerability of the js2py.disablepyimport function in the js2py library is related to improper code generation management. Exploiting this vulnerability could allow a remote attacker to bypass the sandbox’s security mechanisms and execute arbitrary code by sending specially crafted API calls...

Vulnerability of the McAfee Security software: The Android operating system’s antivirus VPN, which is vulnerable due to improper code generation, allowing attackers to perform spear-phishing attacks.

The vulnerability of the McAfee Security software: The Android operating system’s antivirus and VPN services are vulnerable due to improper code generation. Exploiting this vulnerability allows a remote attacker to perform spear-phishing attacks...

The vulnerability of the software for managing VMware vCenter Server’s virtual infrastructure arises from improper code generation, allowing an attacker to execute arbitrary code.

The vulnerability of VMware vCenter Server’s software management software is related to improper code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...