CWE-917

Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')

Parent: CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs all or part of an expression language (EL) statement in a framework such as a Java Server Page (JSP) using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended EL statement before it is executed.

196 vulnerabilities with CWE-917
CVE-2025-3322 CRITICAL
B. Braun Melsungen AG OnlineSuite 3.0 - Remote Code Execution via Expression Language Injection
CVE-2024-51466 CRITICAL
IBM Cognos Analytics <11.2.4 FP4-12.0.4 - Code Injection
CVSS 9.0
CVE-2024-12798 MEDIUM
Logback JaninoEventEvaluator - Configuration Code Execution
CVE-2024-9672 MEDIUM
PaperCut NG/MF < 24.1.1 - Reflected Cross-Site Scripting
CVSS 5.4
CVE-2024-7552 MEDIUM
DataGear <5.0.0 - Improper Neutralization
CVSS 6.3
CVE-2024-5828 HIGH
Hitachi Tuning Manager <8.8.7-00 - Code Injection
CVSS 8.6
CVE-2024-4286 MEDIUM
Mintplex-Labs' anything-llm - Info Disclosure
CVSS 4.9
CVE-2024-0715 HIGH
Hitachi Global Link Manager <8.8.7-03 - Code Injection
CVSS 7.6
CVE-2023-51593 CRITICAL
Voltronic Power ViewPower Pro - RCE
CVSS 9.8
CVE-2023-42658 HIGH
Chef InSpec <4.56.58, 5.22.29 - Command Injection
CVSS 8.8
CVE-2023-41331 CRITICAL
SOFARPC <5.11.0 - Command Injection
CVSS 9.8
CVE-2023-32200 HIGH
Apache Jena 3.7.0-4.8.0 - Remote Code Execution via SPARQL Query
CVSS 8.8
CVE-2023-22665 MEDIUM
Apache Jena < 4.8.0 - Remote Code Execution via SPARQL Query
CVSS 5.4
CVE-2023-20863 MEDIUM
Spring Framework < 5.2.24, 5.3.0-5.3.26, 6.0.0-6.0.7 - Denial of Service via SpEL Expression Injection
CVSS 6.5
CVE-2023-27821 CRITICAL
Databasir 1.0.7 - Remote Code Execution via Mock Data Script Parameter
CVSS 9.8
CVE-2023-26092 CRITICAL
Liima < 1.17.28 - Server-Side Template Injection
CVSS 9.8
CVE-2022-4146 HIGH
Hitachi Replication Manager <8.8.5-02 - Code Injection
CVSS 7.3
CVE-2022-45855 HIGH
Apache Ambari 2.7.0-2.7.6 - Authenticated Remote Code Execution via SpringEL Injection
CVSS 8.0
CVE-2022-42009 HIGH
Apache Ambari 2.7.0-2.7.6 - Authenticated Remote Code Execution via SpringEL Injection
CVSS 8.0
CVE-2022-23504 MEDIUM
TYPO3 < 9.5.38, 10.4.33, 11.5.20, 12.1.1 - Sensitive Information Disclosure via YAML Placeholder Expressions
CVSS 5.7
CVE-2022-23463 CRITICAL
Nepxion Discovery < 6.16.2 - Remote Code Execution via SpEL Injection in DiscoveryExpressionResolver
CVSS 9.4
CVE-2022-34466 MEDIUM
Mendix 9 >=V9.11<V9.15,Mendix 9 V9.12 <V9.12.3 - Info Disclosure
CVSS 6.5
CVE-2022-22980 CRITICAL
Spring Data MongoDB - Code Injection
CVSS 9.8
CVE-2022-26134 CRITICAL KEV
Confluence - Remote Code Execution
CVSS 9.8
CVE-2022-26111 HIGH
IRISNext < 9.8.28 - Remote Code Execution via BeanShell Expression Injection
CVSS 8.8
Details
Vulnerabilities 196
Links
MITRE CWE Entry Search this CWE With Exploits