CWE-94

Medium likelihood

Improper Control of Generation of Code ('Code Injection')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

6,457 vulnerabilities with CWE-94
CVE-2026-41258 CRITICAL
OpenMRS: Stored Velocity SSTI to RCE via ConceptReferenceRange
CVSS 9.1
CVE-2026-35194 HIGH
Apache Flink: Remote code execution via SQL injection in code generation
CVSS 8.1
CVE-2026-39052 MEDIUM
Oinone Pamirs 7.0.0 - Code Injection
CVSS 6.5
CVE-2026-8634 CRITICAL
Crabbox < v0.12.0 Environment Variable Information Disclosure
CVSS 9.1
CVE-2026-8539 MEDIUM
Google Chrome < 148.0.7778.168 - Script Injection in SanitizerAPI
CVSS 5.4
CVE-2026-44670 CRITICAL
SiYuan: Stored XSS via Attribute View name to Electron renderer RCE in SiYuan
CVE-2026-44586 HIGH
SiYuan: Bazaar marketplace renders unescaped package author metadata, allowing XSS and Electron code execution
CVSS 8.3
CVE-2026-44827 HIGH
Diffusers: None.py Trust Remote Code Bypass
CVSS 8.8
CVE-2026-44513 HIGH
Diffusers: `trust_remote_code` bypass via `custom_pipeline` and local custom components
CVSS 8.8
CVE-2026-42555 CRITICAL
Valtimo: SpEL injection via StandardEvaluationContext allows Remote Code Execution by admin users
CVSS 9.1
CVE-2026-44482 CRITICAL
soundcloud-rpc: Remote Code Execution via XSS in Track Title
CVSS 9.6
CVE-2026-45714 CRITICAL
CubeCart: Server-Side Template Injection (SSTI) in Smarty Templates leading to RCE
CVSS 9.1
CVE-2026-45708 HIGH
CubeCart: Authenticated RCE via Invoice Template → Order Print
CVSS 7.2
CVE-2026-44377 CRITICAL
CubeCart: Server-Side Template Injection (SSTI) in Smarty Templates leading to RCE
CVSS 9.1
CVE-2026-0236 HIGH
Prisma Browser: Code Injection Enables Security Controls Bypass
CVE-2026-44006 CRITICAL
vm2: Sandbox Escape
CVSS 10.0
CVE-2026-44005 CRITICAL
vm2: Sandbox escape
CVSS 10.0
CVE-2026-43997 CRITICAL
vm2: Sandbox Escape
CVSS 10.0
CVE-2026-44295 HIGH
protobufjs-cli: Code injection in pbjs static output from crafted schema names
CVSS 8.7
CVE-2026-44293 HIGH
protobufjs: Code injection through bytes field defaults in generated toObject code
CVSS 8.8
CVE-2026-44291 HIGH
protobufjs: Code generation gadget after prototype pollution
CVSS 8.1
CVE-2026-43680 HIGH
Claris FileMaker Cloud < 2.22.0.5 - Authenticated Remote Code Execution via OS Script Schedule Bypass
CVSS 7.2
CVE-2026-42288 CRITICAL
ChurchCRM: Incomplete fix for CVE-2026-39337: Unauthenticated RCE in Setup Wizard via unsanitized DB_PASSWORD
CVSS 10.0
CVE-2026-44262 CRITICAL
Scramble: Remote code execution via evaluation of user-controlled input in validation rules
CVSS 9.4
CVE-2026-44403 HIGH
Wing FTP Server 8.1.2 Authenticated Remote Code Execution via Session Serialization
CVSS 7.2
Details
Vulnerabilities 6,457
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits