VYPR

CWE-95

Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')

VariantIncompleteLikelihood: Medium

Description

The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes code syntax before using the input in a dynamic evaluation call (e.g. "eval").

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-35

CVEs mapped to this weakness (115)

page 2 of 6
  • CVE-2026-42603HigMay 11, 2026
    risk 0.57cvss 8.8epss 0.00

    OWASP BLT is a QA testing and vulnerability disclosure platform that encompasses websites, apps, git repositories, and more. Prior to 2.1.2, .github/workflows/pre-commit-fix.yaml uses pull_request_target (privileged trigger) but checks out and executes code directly from the…

  • CVE-2026-35002CriApr 2, 2026
    risk 0.57cvss 9.8epss 0.01

    Agno versions prior to 2.3.24 contain an arbitrary code execution vulnerability in the model execution component that allows attackers to execute arbitrary Python code by manipulating the field_type parameter passed to eval(). Attackers can influence the field_type value in a…

  • CVE-2024-3562HigJun 20, 2024
    risk 0.57cvss 8.8epss 0.01

    The Custom Field Suite plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 2.6.7 via the Loop custom field. This is due to insufficient sanitization of input prior to being used in a call to the eval() function. This makes it possible…

  • CVE-2026-8914HigJun 5, 2026
    risk 0.55cvss epss 0.01

    In Teltonika Networks RUTOS devices, running versions 7.22 through 7.23.2 and TSWOS devices running versions 1.09 through 1.09.1, due to unsafe calls to an eval function in rpc-profile, a vulnerability exists where a lower privileged user could perform command injection as the…

  • CVE-2025-4318CriMay 5, 2025
    risk 0.55cvss epss 0.01

    The AWS Amplify Studio UI component property expressions in the aws-amplify/amplify-codegen-ui package lack input validation. This could potentially allow an authenticated user who has access to create or modify components to run arbitrary JavaScript code during the component…

  • CVE-2024-8512CriOct 30, 2024
    risk 0.54cvss 9.1epss 0.01

    The W3SPEEDSTER plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 7.26 via the 'script' parameter of the hookBeforeStartOptimization() function. This is due to the plugin passing user supplied input to eval(). This makes it…

  • CVE-2026-47391criMay 29, 2026
    risk 0.52cvss epss 0.00

    ## Summary The first-party PraisonAI A2A server example combines three behaviors into a remotely exploitable Critical chain: 1. The example exposes an A2A server without configuring `auth_token`. 2. The same example binds the server to `0.0.0.0`. 3. The example registers a…

  • CVE-2025-27603CriMar 7, 2025
    risk 0.52cvss 9.1epss 0.01

    XWiki Confluence Migrator Pro helps admins to import confluence packages into their XWiki instance. A user that doesn't have programming rights can execute arbitrary code due to an unescaped translation when creating a page using the Migration Page template. This vulnerability…

  • CVE-2026-40316HigApr 15, 2026
    risk 0.50cvss 8.8epss 0.00

    OWASP BLT is a QA testing and vulnerability disclosure platform that encompasses websites, apps, git repositories, and more. Versions prior to 2.1.1 contain an RCE vulnerability in the .github/workflows/regenerate-migrations.yml workflow. The workflow uses the…

  • CVE-2026-33618HigApr 10, 2026
    risk 0.50cvss 8.8epss 0.00

    Chamilo LMS is a learning management system. Prior to .0.0-RC.3, the PlatformConfigurationController::decodeSettingArray() method uses PHP's eval() to parse platform settings from the database. An attacker with admin access (obtainable via Advisory 1) can inject arbitrary PHP…

  • CVE-2025-58365HigSep 8, 2025
    risk 0.50cvss epss 0.01

    The XWiki blog application allows users of the XWiki platform to create and manage blog posts. Prior to version 9.14, the blog application in XWiki allowed remote code execution for any user who has edit right on any page. Normally, these are all logged-in users as they can edit…

  • CVE-2026-42079HigMay 4, 2026
    risk 0.49cvss 8.6epss 0.00

    PPTAgent is an agentic framework for reflective PowerPoint generation. Prior to commit 418491a, PPTAgent is vulnerable to arbitrary code execution via Python eval() of LLM-generated code with builtins in scope. This issue has been patched via commit 418491a.

  • CVE-2023-47105HigSep 18, 2024
    risk 0.49cvss 8.6epss 0.02

    exec.CommandContext in Chaosblade 0.3 through 1.7.3, when server mode is used, allows OS command execution via the cmd parameter without authentication.

  • CVE-2026-31254HigMay 11, 2026
    risk 0.47cvss 7.3epss 0.00

    The flash-attention project thru commit e724e2588cbe754beb97cf7c011b5e7e34119e62 (2025-13-04) contains a code injection vulnerability (CWE-94) in its training script. The script registers the Python eval() function as a Hydra configuration resolver under the name eval. This…

  • CVE-2026-5971HigApr 9, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in FoundationAgents MetaGPT up to 0.8.1. This vulnerability affects the function ActionNode.xml_fill of the file metagpt/actions/action_node.py of the component XML Handler. Executing a manipulation can lead to improper neutralization of directives in…

  • CVE-2026-4965HigMar 27, 2026
    risk 0.47cvss 7.3epss 0.01

    A vulnerability was detected in letta-ai letta 0.16.4. This issue affects the function resolve_type of the file letta/functions/ast_parsers.py of the component Incomplete Fix CVE-2025-6101. Performing a manipulation results in improper neutralization of directives in dynamically…

  • CVE-2024-10633HigJan 26, 2025
    risk 0.47cvss 7.3epss 0.01

    The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 8.8.0 (Business), up to, and including, 21.8.0 (Developer), and up to, and including, 31.8.0 (Agency). This is due to the…

  • CVE-2025-8420HigAug 6, 2025
    risk 0.46cvss 8.1epss 0.01

    Multiple plugins for WordPress by emarket-design with the 'emd-form-builder-lite' package are vulnerable to Remote Code Execution in various versions via the emd_form_builder_lite_pagenum function. This is due to the plugin not properly validating user input before using it as a…

  • CVE-2026-52858HigJun 11, 2026
    risk 0.44cvss 7.8epss 0.00

    Vim is an open source, command line text editor. Prior to version 9.2.0561, the Python omni-completion script in python3complete.vim for Vim with the +python3 interpreter enabled (and the legacy pythoncomplete.vim for builds with the +python interpreter) executes the import and…

  • CVE-2024-45858HigSep 18, 2024
    risk 0.44cvss 7.8epss 0.00

    An arbitrary code execution vulnerability exists in versions 0.2.9 up to 0.5.10 of the Guardrails AI Guardrails framework because of the way it validates XML files. If a victim user loads a maliciously crafted XML file containing Python code, the code will be passed to an eval…