CVE-2023-6691 – Code Injection vulnerability in Cambium ePMP Force 300-25
https://notcve.org/view.php?id=CVE-2023-6691
Cambium ePMP Force 300-25 version 4.7.0.1 is vulnerable to a code injection vulnerability that could allow an attacker to perform remote code execution and gain root privileges. • https://www.cisa.gov/news-events/ics-advisories/icsa-23-348-01 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2023-32728 – Code injection in zabbix_agent2 smart.disk.get caused by smartctl plugin
https://notcve.org/view.php?id=CVE-2023-32728
The Zabbix Agent 2 item key smart.disk.get does not sanitize its parameters before passing them to a shell command resulting possible vulnerability for remote code execution. La clave del elemento Zabbix Agent 2 smart.disk.get no sanitiza sus parámetros antes de pasarlos a un comando de shell, lo que resulta en una posible vulnerabilidad de ejecución remota de código. • https://support.zabbix.com/browse/ZBX-23858 • CWE-20: Improper Input Validation CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2023-6899 – rmountjoy92 DashMachine Config save_config code injection
https://notcve.org/view.php?id=CVE-2023-6899
The manipulation of the argument value_template leads to code injection. ... Durch das Beeinflussen des Arguments value_template mit unbekannten Daten kann eine code injection-Schwachstelle ausgenutzt werden. • https://treasure-blarney-085.notion.site/DashMachine-Unauthorized-RCE-931a35a81af9448ebe9fb4cd904d4a0c https://vuldb.com/?ctiid.248257 https://vuldb.com/?id.248257 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2023-6886 – xnx3 wangmarket Role Management Page code injection
https://notcve.org/view.php?id=CVE-2023-6886
The manipulation leads to code injection. ... Durch das Beeinflussen mit unbekannten Daten kann eine code injection-Schwachstelle ausgenutzt werden. • https://github.com/xnx3/wangmarket/issues/8 https://vuldb.com/?ctiid.248246 https://vuldb.com/?id.248246 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2023-6851 – kalcaddle KodExplorer ZIP Archive app.php unzipList code injection
https://notcve.org/view.php?id=CVE-2023-6851
The manipulation leads to code injection. ... Durch Manipulation mit unbekannten Daten kann eine code injection-Schwachstelle ausgenutzt werden. • https://github.com/kalcaddle/KodExplorer/commit/5cf233f7556b442100cf67b5e92d57ceabb126c6 https://github.com/kalcaddle/KodExplorer/releases/tag/4.52.01 https://note.zhaoj.in/share/D44UjzoFXYfi https://vuldb.com/?ctiid.248219 https://vuldb.com/?id.248219 • CWE-94: Improper Control of Generation of Code ('Code Injection') •