CWE-94
Medium likelihoodImproper Control of Generation of Code ('Code Injection')
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.
6,548 vulnerabilities with CWE-94
CVE-2010-0245
Microsoft Internet Explorer 8 - Remote Code Execution via Uninitialized Memory Corruption
CVE-2010-0244
Microsoft Internet Explorer 6, 6 SP1, 7, and 8 - Remote Code Execution via Uninitialized Memory Corruption
CVE-2010-0027
Microsoft Internet Explorer 5.01-8 - Remote Code Execution via URL Validation Flaw
CVE-2010-0367
BitScripts Bits Video Script 2.05 Gold Beta - Remote Code Execution via rowptem[template] Parameter
CVE-2009-5097
HP Palm Pre WebOS < 1.1.0 - Remote JavaScript Execution via Email Message Processing
CVE-2009-5095
ea gBook 0.1 and 0.1.4 - Remote Code Execution via inc_ordner Parameter
CVE-2009-4993
LM Starmail Paidmail 2.0 - Remote Code Execution via home.php page Parameter
CVE-2009-4977
MyBackup 1.4.0 - Authenticated Remote Code Execution via main_content Parameter
CVE-2009-3737
Oracle Siebel Option Pack IE ActiveX Control - Remote Code Execution via NewBusObj Method
CVE-2009-4928
TotalCalendar 2.4 - Remote Code Execution via inc_dir Parameter
CVE-2009-4887
CMS S.Builder < 3.7 - Remote Code Execution via binn_include_path Cookie
CVE-2009-4836
Movie PHP Script 2.0 - Remote Code Execution via Anticode Parameter
CVE-2009-4834
Zeroboard 4.1 pl7 - Remote Code Execution via Crafted Parameter Name
CVE-2009-4793
BandSite CMS 1.1.4 - Authenticated Remote Code Execution via File Upload
CVE-2009-4789
MojoBlog RC 0.15 - Remote Code Execution via mosConfig_absolute_path Parameter
CVE-2009-4779
NukeHall <= 0.3 - Remote Code Execution via spaw_root Parameter
CVE-2009-4768
Warcraft III: The Frozen Throne <1.24b - RCE
CVE-2009-4509
TANDBERG Video Communication Server <X4.3 - Auth Bypass
CVE-2009-4764
Adobe Acrobat Reader 8.x-9.x - Remote Code Execution via Embedded EXE in PDF
CVE-2009-4752
Swinger Club Portal - Remote Code Execution via Anzeiger Start PHP Go Parameter
CVE-2009-4750
Top Paidmailer - Remote Code Execution via home.php page Parameter
CVE-2009-4747
All In One Control Panel AIOCP 1.4.001 - RCE
CVE-2009-4739
SkaDate Dating - Remote Code Execution via Language ID Parameter
CVE-2009-4693
GraFX MiniCWB 2.3.0 - Remote Code Execution via LANG Parameter File Inclusion
CVE-2009-4666
Webradev Download Protect 1.0 - RCE
Details
Vulnerabilities
6,548
Exploit Likelihood
Medium