CWE-94
Medium likelihoodImproper Control of Generation of Code ('Code Injection')
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.
6,548 vulnerabilities with CWE-94
CVE-2009-0517
phpslash <= 0.8.1.1 - Remote Code Execution via Fields Parameter
CVE-2009-0513
WebFrame 0.76 - Remote Code Execution via classFiles Parameter
CVE-2009-0464
Groone GBook 2.0 - Remote Code Execution via abspath Parameter
CVE-2009-0463
Groone GLinks 2.1 - Remote Code Execution via abspath Parameter
CVE-2009-0456
Sourdough 0.3.5 patForms - Remote File Inclusion Code Execution
CVE-2009-0444
GRBoard 1.8 - Remote Code Execution via Theme Path or GRBoard Parameter
CVE-2009-0441
TECHNOTE 7.2 - Remote Code Execution via shop_this_skin_path Parameter
CVE-2009-0495
REALTOR 747 4.11 - Remote Code Execution via INC_DIR Parameter
CVE-2009-0375
RealNetworks RealPlayer <6.0.12.1741 - RCE
CVE-2009-0422
phplist < 2.10.8 - Remote Code Execution via _SERVER[ConfigFile] Parameter
CVE-2009-0390
Enomaly Elastic Computing Platform <2.1.1 - Command Injection
CVE-2009-0294
WB News 2.0.1 - Remote Code Execution
CVE-2009-0275
Ryneezy phoSheezy 0.2 - Code Injection
CVE-2009-0251
Ryneezy phoSheezy 0.2 - Code Injection
CVE-2009-0103
playSMS 0.9.3 - Remote Code Execution via PHP File Inclusion
CVE-2009-0068
xdg-utils xdg-open - MIME Type Confusion Code Execution
CVE-2008-7240
Linux Web Shop (LWS) php User Base 1.3beta - Path Traversal
CVE-2008-7183
EVA CMS 2.3.1 - Remote Code Execution via eva[caminho] Parameter
CVE-2008-7152
Specimen Image Database - RCE
CVE-2008-7123
zkup CMS 2.0-2.3 - Remote Code Execution via Null Byte Injection in Login Parameter
CVE-2008-7087
OpenPro 1.3.1 - Remote Code Execution via LIBPATH Parameter
CVE-2008-7073
RSS module 0.1 - Remote Code Execution via lib Parameter
CVE-2008-7070
KVIrc 3.4.2 - Remote Code Execution via URI Handler Argument Injection
CVE-2008-7067
PageTree CMS 0.0.2 BETA 00001 - Remote Code Execution via GLOBALS[PT_Config][dir][data] Parameter
CVE-2008-7042
FreshScripts Fresh Email Script 1.0-1.11 - Remote Code Execution via tmp_sid Parameter
Details
Vulnerabilities
6,548
Exploit Likelihood
Medium