For example, an application may have a user interface for each user with unique language variable configurations, which it suppliers inside a config file. Attackers can modify the language parameter to inject code to the configuration file, allowing for them to execute arbitrary instructions.In December 2021, numerous RCE vulnerabilities were found