CWE-829: CWE-829
Yearly Trend
Top Affected Vendors
All CWE-829 CVEs (58)
This vulnerability in JetBrains IntelliJ IDEA allows unexpected plugin startup due to automatic Language Server Protocol (LSP) server activation, pote...
Aug 20, 2025This vulnerability allows remote attackers to inject malicious scripts or HTML into any tenant's documentation site by manipulating the subdomain para...
Dec 19, 2025This vulnerability in Anki 24.04 allows arbitrary file read through specially crafted LaTeX flashcards that bypass sanitization by using the verbatim ...
Jul 22, 2024This CVE allows CSS injection in Roundcube Webmail due to improper handling of comments. Attackers can inject malicious CSS styles that could lead to ...
Feb 11, 2026The Mattermost Desktop App vulnerability allows malicious Mattermost servers to expose preload script functionality to untrusted external sites when u...
Mar 2, 2026This vulnerability allows local attackers with the ability to modify osqueryd configurations to execute arbitrary code via parameter injection in Elas...
May 1, 2025OpenAI Codex CLI versions before 0.9.0 automatically approve ripgrep (rg) command execution even when potentially dangerous flags like --pre, --hostna...
Jul 25, 2025This vulnerability in JetBrains TeamCity allows attackers to load malicious extensions via Maven embedder through project configuration. It affects Te...
Dec 16, 2025About CWE-829 (CWE-829)
Our database tracks 58 CVEs classified as CWE-829, with 14 rated critical and 35 rated high severity. The average CVSS score for CWE-829 vulnerabilities is 7.9.
External reference: View CWE-829 on MITRE CWE →
Monitor CWE-829 Vulnerabilities
Get alerted when new CWE-829 CVEs affect your infrastructure.
Start Monitoring Free