284 matches found
PT-2025-33201 · WordPress · Wpfactory Product Xml Feed Manager For Woocommerce
Name of the Vulnerable Software and Affected Versions: WPFactory Product XML Feed Manager for WooCommerce versions through 2.9.3 Description: An improper control of generation of code 'Code Injection' issue exists in WPFactory Product XML Feed Manager for WooCommerce, allowing for remote code...
CVE-2025-3621
Vulnerabilities in ActADUR local server product, developed and maintained by ProTNS, allows Remote Code Inclusion on host systems. vulnerabilities: Improper Neutralization of Special Elements used in a Command 'Command Injection' Use of Hard-coded Credentials Improper Authentication Binding to an...
CVE-2025-3621
Vulnerabilities in ActADUR local server product, developed and maintained by ProTNS, allows Remote Code Inclusion on host systems. vulnerabilities: Improper Neutralization of Special Elements used in a Command 'Command Injection' Use of Hard-coded Credentials Improper Authentication Binding to an...
ProTNS ActADUR 安全漏洞
ProTNS ActADUR is a local server product from ProTNS Korea. A security vulnerability exists in ProTNS ActADUR versions prior to 2.0.1.9 through 2.0.2.0 that stems from command injection, hard-coded credentials, improper authentication, and binding to an unrestricted IP address, which could lead t...
PT-2025-29540 · Protns · Actadur
Name of the Vulnerable Software and Affected Versions: ActADUR versions 2.0.1.9 through 2.0.1.9 Description: The ActADUR local server product, developed and maintained by ProTNS, allows for Remote Code Inclusion on host systems. The vulnerability has been rated as critical and includes issues suc...
CVE-2024-7650
Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Directory Services allows Remote Code Inclusion. The vulnerability could allow access to the system via script injection.This issue affects Directory Services: 23.4...
CVE-2024-7650
Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Directory Services allows Remote Code Inclusion. The vulnerability could allow access to the system via script injection.This issue affects Directory Services: 23.4...
PT-2025-29078 · Opentext · Opentext Directory Services
Name of the Vulnerable Software and Affected Versions: OpenText™ Directory Services version 23.4 Description: An improper control of generation of code 'Code Injection' vulnerability exists in OpenText™ Directory Services, potentially allowing remote code inclusion through script injection...
OpenText Directory Services 代码注入漏洞
OpenText Directory Services OTDS is an information management solution from OpenText Canada Inc. integrating OpenText products and solutions with the company's enterprise directory infrastructure. A code injection vulnerability exists in OpenText Directory Services version 23.4 that stems from...
CVE-2025-52718
Improper Control of Generation of Code 'Code Injection' vulnerability in Beplusthemes Alone alone allows Remote Code Inclusion.This issue affects Alone: from n/a through = 7.8.2...
CVE-2025-49302
Improper Control of Generation of Code 'Code Injection' vulnerability in Scott Paterson Easy Stripe easy-stripe allows Remote Code Inclusion.This issue affects Easy Stripe: from n/a through = 1.1...
CVE-2025-52718
Improper Control of Generation of Code 'Code Injection' vulnerability in Beplusthemes Alone alone allows Remote Code Inclusion.This issue affects Alone: from n/a through = 7.8.2...
CVE-2025-49302
Improper Control of Generation of Code 'Code Injection' vulnerability in Scott Paterson Easy Stripe easy-stripe allows Remote Code Inclusion.This issue affects Easy Stripe: from n/a through = 1.1...
CVE-2025-52718 WordPress Alone theme <= 7.8.2 - Arbitrary Code Execution Vulnerability
Improper Control of Generation of Code 'Code Injection' vulnerability in Beplusthemes Alone alone allows Remote Code Inclusion.This issue affects Alone: from n/a through = 7.8.2...
CVE-2025-52718 WordPress Alone <= 7.8.2 - Arbitrary Code Execution Vulnerability
Improper Control of Generation of Code 'Code Injection' vulnerability in Bearsthemes Alone allows Remote Code Inclusion. This issue affects Alone: from n/a through 7.8.2...
PT-2025-27921 · Unknown · Easy Stripe
Name of the Vulnerable Software and Affected Versions: Easy Stripe versions 1.1 and earlier Description: The issue is related to an Improper Control of Generation of Code 'Code Injection' vulnerability, which allows Remote Code Inclusion. This vulnerability enables remote code inclusion due to a...
PT-2025-27932 · Unknown · Bearsthemes Alone
Name of the Vulnerable Software and Affected Versions: Bearsthemes Alone versions n/a through 7.8.2 Description: The issue is related to an Improper Control of Generation of Code, also known as 'Code Injection', which allows Remote Code Inclusion. This enables potential attackers to execute...
CVE-2025-0634
Use After Free vulnerability in Samsung Open Source rLottie allows Remote Code Inclusion.This issue affects rLottie: V0.2...
CVE-2025-0634
Use After Free vulnerability in Samsung Open Source rLottie allows Remote Code Inclusion.This issue affects rLottie: V0.2...
CVE-2025-0634
Use After Free vulnerability in Samsung Open Source rLottie allows Remote Code Inclusion.This issue affects rLottie: V0.2...