CWE-94
Medium likelihoodImproper Control of Generation of Code ('Code Injection')
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.
6,552 vulnerabilities with CWE-94
CVE-2006-6962
RS Gallery2 1.11.2 - Remote Code Execution via mosConfig_absolute_path Parameter
CVE-2006-4695
Microsoft Office Web Components 2000 - RCE
CVE-2006-6887
logahead UNU 1.0 - Remote Code Execution via WidgEd Plugin File Upload
CVE-2006-6760
phpmymanga <= 0.8.1 - Remote Code Execution via template.php Parameter Injection
CVE-2006-6748
Newxooper < 0.9 - Remote Code Execution via i-accueil.php chemin Parameter
CVE-2006-6732
cwmVote 1.0 - Remote Code Execution via Archive.php abs Parameter
CVE-2006-6738
cwmcounter < 5.1.1 - Remote Code Execution via Path Parameter
CVE-2006-6739
Paristemi 0.8.3 - Remote Code Execution via HTTP_DOCUMENT_ROOT Parameter
CVE-2006-6740
phpProfiles < 3.1.2b - Remote Code Execution via Menu or Incpath Parameter
CVE-2006-6726
inertianews 0.02 beta - Remote Code Execution via inews_path Parameter
CVE-2006-6727
inertianews < 0.02 - Remote Code Execution via DOCUMENT_ROOT Parameter
CVE-2006-6720
Azucar CMS 1.3 - Remote Code Execution via _VIEW Parameter
CVE-2006-6710
PgmReloaded < 0.8.5 - Remote Code Execution via PHP File Inclusion
CVE-2006-6689
Paristemi < 0.8.3 - Remote Code Execution via SERVER_DIRECTORY Parameter
CVE-2006-6504
Mozilla Firefox <2.0.0.1 & SeaMonkey <1.0.7 - RCE
CVE-2006-6462
CM68 News 12.02.06 - Remote Code Execution via addpath Parameter
CVE-2006-6212
Site News 2.00 - Remote Code Execution via centre.php page Parameter
CVE-2006-6086
e-ark 1.0 - Remote Code Execution via cfg_pear_path Parameter
CVE-2006-6041
WORK system e-commerce < 3.0.2 - Remote Code Execution via g_include Parameter
CVE-2006-5865
MyAlbum < 3.02 - Remote Code Execution via Language File Inclusion
CVE-2006-5788
iprimal_forums - Remote Code Execution via p Parameter File Inclusion
CVE-2006-5762
Free File Hosting < 1.1 - Remote Code Execution via AD_BODY_TEMP Parameter
CVE-2006-5764
Free File Hosting < 1.1 - Remote Code Execution via AD_BODY_TEMP Parameter
CVE-2006-5767
Drake CMS < 0.2.2_alpha_r846 - Remote Code Execution via d_root Parameter
CVE-2006-5634
phpProfiles < 2.1_beta - Remote Code Execution via reqpath or usrinc Parameter
Details
Vulnerabilities
6,552
Exploit Likelihood
Medium