Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
command injection vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-20220
An issue exists on Teracue ENC-400 devices with firmware 2.56 and below. While the web interface requires authentication before it can be interacted with, a large portion of the HTTP endpoints are missing authentication. An attacker is able to view these pages before being authen...
Teracue Enc-400 Hdmi Firmware
Teracue Enc-400 Hdmi2 Firmware
Teracue Enc-400 Hdsdi Firmware
1 EDB exploit
7.2
CVSSv2
CVE-2018-1185
An issue exists in EMC RecoverPoint for Virtual Machines versions before 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions before 5.0.1.3. Command injection vulnerability in Admin CLI may allow a malicious user with admin privileges to escape from the restric...
Dell Emc Recoverpoint
Dell Emc Recoverpoint For Virtual Machines
Dell Emc Recoverpoint 5.1.0.0
1 EDB exploit
1 Github repository
4.3
CVSSv2
CVE-2019-10963
Moxa EDR 810, all versions 5.1 and prior, allows an unauthenticated malicious user to be able to retrieve some log files from the device, which may allow sensitive information disclosure. Log files must have previously been exported by a legitimate user.
Moxa Edr-810 Firmware
1 EDB exploit
9
CVSSv2
CVE-2017-6884
A command injection vulnerability exists on the Zyxel EMG2926 home router with firmware V1.00(AAQT.4)b8. The vulnerability is located in the diagnostic tools, specifically the nslookup function. A malicious user may exploit numerous vectors to execute arbitrary commands on the ro...
Zyxel Emg2926 Firmware V1.00\\(aaqt.4\\)b8
1 EDB exploit
10
CVSSv2
CVE-2018-20218
An issue exists on Teracue ENC-400 devices with firmware 2.56 and below. The login form passes user input directly to a shell command without any kind of escaping or validation in /usr/share/www/check.lp file. An attacker is able to perform command injection using the "passw...
Teracue Enc-400 Hdmi Firmware
Teracue Enc-400 Hdmi2 Firmware
Teracue Enc-400 Hdsdi Firmware
1 EDB exploit
9.3
CVSSv2
CVE-2018-20219
An issue exists on Teracue ENC-400 devices with firmware 2.56 and below. After successful authentication, the device sends an authentication cookie to the end user such that they can access the devices web administration panel. This token is hard-coded to a string in the source c...
Teracue Enc-400 Hdmi Firmware
Teracue Enc-400 Hdmi2 Firmware
Teracue Enc-400 Hdsdi Firmware
1 EDB exploit
9
CVSSv2
CVE-2011-0018
The email function in manage_sql.c in OpenVAS Manager 1.0.x up to and including 1.0.3 and 2.0.x up to and including 2.0rc2 allows remote authenticated users to execute arbitrary commands via the (1) To or (2) From e-mail address in an OMP request to the Greenbone Security Assista...
Openvas Openvas Manager 1.0.0
Openvas Openvas Manager 2.0
Openvas Openvas Manager 1.0.1
Openvas Openvas Manager 1.0.3
Openvas Openvas Manager 1.0.2
1 EDB exploit
NA
CVE-2020-138021
Rebar3 versions 3.0.0-beta.3 through 3.13.2 suffer from a command injection vulnerability.
NA
CVE-2023-0830
A vulnerability classified as critical has been found in EasyNAS 1.1.0. Affected is the function system of the file /backup.pl. The manipulation leads to os command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be us...
Easynas Easynas 1.1.0
1 Github repository
9
CVSSv2
CVE-2019-16663
An issue exists in rConfig 3.9.2. An attacker can directly execute system commands by sending a GET request to search.crud.php because the catCommand parameter is passed to the exec function without filtering, which can lead to command execution.
Rconfig Rconfig 3.9.2
3 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »