CVEbaza.plSłownik CWECWE-75
Common Weakness Enumeration

CWE-75

Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)

Kategoria: ClassCVE: 34
Opis

Produkt nie filtruje adekwatnie danych wejściowych kontrolowanych przez użytkownika zawierających specjalne elementy mogące wpłynąć na przebieg działania. Luka ta może prowadzić do nieautoryzowanego wykonania kodu lub manipulacji logiką aplikacji.

Description (EN)

The product does not adequately filter user-controlled input for special elements with control implications.

Podatności CVE z CWE-75 (34)
9.8
CVSS
CRITICAL
CVE-2025-50213

Podatność typu SQL injection w komponencie Apache Airflow Providers Snowflake pozwala nieuwierzytelnionemu atakującemu na wstrzyknięcie złośliwych poleceń SQL poprzez niesanityzowane parametry operatora. Ze względu na krytyczny wynik CVSS 9.8 oraz brak wymagań dotyczących uwierzytelnienia, stanowi poważne zagrożenie dla integralności danych i systemu.

pub. 2025-06-24
9.8
CVSS
CRITICAL
CVE-2024-39227

Wiele modeli routerów GL-iNet zawiera podatność w endpointcie /cgi-bin/glc, która pozwala nieuwierzytelnionemu atakującemu na zdalne wykonanie kodu lub path traversal. Podatność jest krytyczna, ponieważ nie wymaga żadnych uprawnień ani interakcji użytkownika i jest dostępna zdalnie przez sieć.

pub. 2024-08-06
9.8
CVSS
CRITICAL
CVE-2024-39243

Podatność w aplikacji Skycaiji 2.8 umożliwia nieuwierzytelnionemu atakującemu zdalne wykonanie dowolnego kodu (RCE) poprzez spreparowane żądanie POST. Ze względu na brak wymagań co do uprawnień i interakcji użytkownika, podatność stanowi krytyczne zagrożenie dla każdego publicznie dostępnego systemu.

pub. 2024-06-26
9.8
CVSS
CRITICAL
CVE-2024-35373

Mocodo Online w wersji 4.2.6 i wcześniejszych zawiera krytyczną podatność umożliwiającą zdalne wykonanie kodu (RCE) poprzez endpoint /web/rewrite.php. Atakujący bez uwierzytelnienia i bez interakcji użytkownika może przejąć kontrolę nad serwerem.

pub. 2024-05-24
9.8
CVSS
CRITICAL
CVE-2023-40743

** UNSUPPORTED WHEN ASSIGNED ** When integrating Apache Axis 1.x in an application, it may not have been obvious that looking up a service through "ServiceFactory.getService" allows potentially dangerous lookup mechanisms such as LDAP. When passing untrusted input to this API method, this could expose the application to DoS, SSRF and even attacks leading to RCE. As Axis 1 has been EOL we recommend you migrate to a different SOAP engine, such as Apache Axis 2/Java. As a workaround, you may review your code to verify no untrusted or unsanitized input is passed to "ServiceFactory.getService", or by applying the patch from https://github.com/apache/axis-axis1-java/commit/7e66753427466590d6def0125e448d2791723210 . The Apache Axis project does not expect to create an Axis 1.x release fixing this problem, though contributors that would like to work towards this are welcome.

pub. 2023-09-05
9.8
CVSS
CRITICAL
CVE-2021-22910

A sanitization vulnerability exists in Rocket.Chat server versions <3.13.2, <3.12.4, <3.11.4 that allowed queries to an endpoint which could result in a NoSQL injection, potentially leading to RCE.

pub. 2021-08-09
9.8
CVSS
CRITICAL
CVE-2021-22911

A improper input sanitization vulnerability exists in Rocket.Chat server 3.11, 3.12 & 3.13 that could lead to unauthenticated NoSQL injection, resulting potentially in RCE.

pub. 2021-05-27
9.6
CVSS
CRITICAL
CVE-2024-27708

Podatność typu iframe injection w aplikacji MyNET firmy Airc (wersja 26.06 i wcześniejsze) umożliwia zdalnemu atakującemu wykonanie dowolnego kodu. Wysoki wynik CVSS 9.6 oraz wpływ na poufność, integralność i dostępność czynią ją podatnością krytyczną.

pub. 2025-12-22
9.1
CVSS
CRITICAL
CVE-2026-31908

Podatność typu header injection w Apache APISIX pozwala nieuwierzytelnionemu atakującemu na wstrzykiwanie złośliwych nagłówków HTTP poprzez odpowiednią konfigurację pluginu forward-auth. Uzyskanie kontroli nad nagłówkami żądań może prowadzić do naruszenia poufności i integralności przetwarzanych danych.

pub. 2026-04-14
9.0
CVSS
CRITICAL
CVE-2022-24039

A vulnerability has been identified in Desigo PXC4 (All versions < V02.20.142.10-10884), Desigo PXC5 (All versions < V02.20.142.10-10884). The “addCell” JavaScript function fails to properly sanitize user-controllable input before including it into the generated XML body of the XLS report document, such that it is possible to inject arbitrary content (e.g., XML tags) into the generated file. An attacker with restricted privileges, by poisoning any of the content used to generate XLS reports, could be able to leverage the application to deliver malicious files against higher-privileged users and obtain Remote Code Execution (RCE) against the administrator’s workstation.

pub. 2022-05-10
8.9
CVSS
HIGH
CVE-2026-29042

Nuclio is a "Serverless" framework for Real-Time Events and Data Processing. Prior to version 1.15.20, the Nuclio Shell Runtime component contains a command injection vulnerability in how it processes user-supplied arguments. When a function is invoked via HTTP, the runtime reads the X-Nuclio-Arguments header and directly incorporates its value into shell commands without any validation or sanitization. This issue has been patched in version 1.15.20.

pub. 2026-03-06
8.8
CVSS
HIGH
CVE-2024-37779

WoodWing Elvis DAM v6.98.1 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the Apache Ant script functionality.

pub. 2024-09-23
8.8
CVSS
HIGH
CVE-2024-31809

TOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a remote code execution (RCE) vulnerability via the FileName parameter in the setUpgradeFW function.

pub. 2024-04-08
8.8
CVSS
HIGH
CVE-2023-27533

A vulnerability in input validation exists in curl <8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and "telnet options" during server negotiation. The lack of proper input scrubbing allows an attacker to send content or perform option negotiation without the application's intent. This vulnerability could be exploited if an application allows user input, thereby enabling attackers to execute arbitrary code on the system.

pub. 2023-03-30
8.8
CVSS
HIGH
CVE-2023-23912

A vulnerability, found in EdgeRouters Version 2.0.9-hotfix.5 and earlier and UniFi Security Gateways (USG) Version 4.4.56 and earlier with their DHCPv6 prefix delegation set to dhcpv6-stateless or dhcpv6-stateful, allows a malicious actor directly connected to the WAN interface of an affected device to create a remote code execution vulnerability.

pub. 2023-02-09
8.8
CVSS
HIGH
CVE-2021-39174

Cachet is an open source status page system. Prior to version 2.5.1, authenticated users, regardless of their privileges (User or Admin), can leak the value of any configuration entry of the dotenv file, e.g. the application secret (`APP_KEY`) and various passwords (email, database, etc). This issue was addressed in version 2.5.1 by improving `UpdateConfigCommandHandler` and preventing the use of nested variables in the resulting dotenv configuration file. As a workaround, only allow trusted source IP addresses to access to the administration dashboard.

pub. 2021-08-28
8.1
CVSS
HIGH
CVE-2022-48217

The tf_remapper_node component 1.1.1 for Robot Operating System (ROS) allows attackers, who control the source code of a different node in the same ROS application, to change a robot's behavior. This occurs because a topic name depends on the attacker-controlled old_tf_topic_name and/or new_tf_topic_name parameter. NOTE: the vendor's position is "it is the responsibility of the programmer to make sure that only known and required parameters are set and unexpected parameters are not."

pub. 2023-01-04
7.8
CVSS
HIGH
CVE-2024-23268

An injection issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to elevate privileges.

pub. 2024-03-08
7.8
CVSS
HIGH
CVE-2024-23274

An injection issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to elevate privileges.

pub. 2024-03-08
7.8
CVSS
HIGH
CVE-2023-0302

Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 prior to 5.8.2.

pub. 2023-01-15
Pokazano 20 z 34 podatności
Informacje
ID: CWE-75
Typ: Class
Podatności: 34
MITRE CWE ↗
← Słownik CWE