CVE-2024-10073 – flairNLP flair Mode File Loader clustering.py ClusteringModel code injection
https://notcve.org/view.php?id=CVE-2024-10073
The manipulation leads to code injection. ... Mit der Manipulation mit unbekannten Daten kann eine code injection-Schwachstelle ausgenutzt werden. • https://vuldb.com/?id.280722 https://vuldb.com/?ctiid.280722 https://vuldb.com/?submit.420055 https://github.com/bayuncao/vul-cve-20 https://github.com/bayuncao/vul-cve-20/blob/main/PoC.py • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2024-45766
https://notcve.org/view.php?id=CVE-2024-45766
Dell OpenManage Enterprise, version(s) OME 4.1 and prior, contain(s) an Improper Control of Generation of Code ('Code Injection') vulnerability. • https://www.dell.com/support/kbdoc/en-us/000237300/dsa-2024-426-security-update-for-dell-openmanage-enterprise-vulnerabilities • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2023-26785
https://notcve.org/view.php?id=CVE-2023-26785
MariaDB v10.5 was discovered to contain a remote code execution (RCE) vulnerability. • https://github.com/Ant1sec-ops/CVE-2023-26785 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2023-39593
https://notcve.org/view.php?id=CVE-2023-39593
Insecure permissions in the sys_exec function of Oracle MYSQL MariaDB v10.5 allows authenticated attackers to execute arbitrary commands with elevated privileges. • https://github.com/Ant1sec-ops/CVE-2023-39593 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2024-27766
https://notcve.org/view.php?id=CVE-2024-27766
An issue in MYSQL MariaDB v.11.1 allows a remote attacker to execute arbitrary code via the lib_mysqludf_sys.so function. • https://github.com/Ant1sec-ops/CVE-2024-27766 • CWE-94: Improper Control of Generation of Code ('Code Injection') •