CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 4 days ago•7 views

PT-2026-50965

Name of the Vulnerable Software and Affected Versions PhpWeasyPrint versions prior to 2.5.1 Description PhpWeasyPrint is a PHP library used for generating PDFs from HTML pages or URLs. The software contains a shell command injection flaw occurring when the binary path for WeasyPrint is processed...

8.2CVSS5.9AI score

Exploits0References8

OSV•added 5 days ago•4 views

OSEC-2026-05 Windows command execution via filename quotes.

The quoting of stdin/stdout/stderror using Filename.quotecommand on Windows is not sufficient, and allows the & character to be passed through. This allows an attacker to inject a shell command if they can specify the stdin/stdout/stderr of a program to be executed. Exploit bash $ opam exec --...

6.1CVSS5.3AI score

Exploits0

NVD•added 2026/06/16 3:16 p.m.•7 views

CVE-2026-12398

A command injection vulnerability was found in galaxyng. The dogitcheckout function in the legacy role import API v1 interpolates unsanitized git ref names branch/tag names into shell commands executed via subprocess.run with shell=True. An authenticated user who controls a git repository can...

7.5CVSS0.00889EPSS

Cvelist•added 2026/06/16 2:52 p.m.•27 views

CVE-2026-12398 Galaxy_ng: shell injection in legacy role import via unsanitized git ref names

7.5CVSS0.00889EPSS

CVE•added 2026/06/16 2:52 p.m.•14 views

CVE-2026-12398

The CVE-2026-12398 entry describes a command-injection in galaxy_ng via the legacy role import API (v1) do_git_checkout(), where unsanitized git ref names are interpolated into shell commands executed with subprocess.run(shell=True). An authenticated user controlling a git repo can craft branch/t...

7.5CVSS6.3AI score0.00889EPSS

Nuclei•added 2026/06/16 7:13 a.m.•29 views

SaltStack <=3002 - Shell Injection

SaltStack Salt through 3002 allows an unauthenticated user with network access to the Salt API to use shell injections to run code on the Salt-API using the SSH client. id: CVE-2020-16846 info: name: SaltStack =3003 to mitigate this vulnerability. reference: -...

9.8CVSS8.1AI score0.99585EPSS

Exploits5References5

Tenable Nessus•added 2026/06/14 12:0 a.m.•6 views

SUSE SLED15 / SLES15 Security Update : wicked (SUSE-SU-2026:2349-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:2349-1 advisory. This update for wicked fixes the following issue - CVE-2026-44932: indirect remote shell command injection via...

Tenable Nessus•added 2026/06/14 12:0 a.m.•5 views

SUSE SLES15 Security Update : wicked (SUSE-SU-2026:2353-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:2353-1 advisory. - CVE-2026-44932: Fixed indirect remote shell command injection via unsanitized DHCP options bsc1265221. Tenable has extracted the preceding...

8.8CVSS5.3AI score0.0049EPSS

NVD•added 2026/06/10 3:16 p.m.•10 views

CVE-2026-45564

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, POST /config/versions////save interpolates the URL-path configver parameter directly into a config-version path that ends up at os.systemf"dos2unix -q cfg". configver is not run...

8.8CVSS0.00304EPSS

Exploits0References1

SUSE Linux•added 2026/06/10 2:56 p.m.•6 views

Security update for wicked

This update for wicked fixes the following issues: CVE-2026-44932: Fixed indirect remote shell command injection via unsanitized DHCP options bsc1265221. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

OSV•added 2026/06/10 2:55 p.m.•5 views

Exploits0References6

SUSE-SU-2026:2354-1 Security update for wicked

This update for wicked fixes the following issues: - CVE-2026-44932: Fixed indirect remote shell command injection via unsanitized DHCP options bsc1265221...

SUSE Linux•added 2026/06/10 2:55 p.m.•11 views

Exploits0References3

Security update for wicked

OSV•added 2026/06/10 2:55 p.m.•5 views

Exploits0References6

SUSE-SU-2026:2353-1 Security update for wicked

This update for wicked fixes the following issues: - CVE-2026-44932: Fixed indirect remote shell command injection via unsanitized DHCP options bsc1265221...

SUSE Linux•added 2026/06/10 2:53 p.m.•7 views

Exploits0References3

Security update for wicked

This update for wicked fixes the following issue CVE-2026-44932: indirect remote shell command injection via unsanitized DHCP options bsc1265221. Changes for wicked: Update to version 0.6.79 Fix to escape single-quotes in leaseinfo dump output used by the wicked test dhcp4 and wicked test dhcp6 a...

Positive Technologies•added 2026/06/10 12:0 a.m.•6 views

PT-2026-48679

Name of the Vulnerable Software and Affected Versions wicked versions prior to 0.6.79 Description An indirect remote shell command injection exists due to unsanitized DHCP options. The issue involves improper processing of posix-tz-dbname and tz-string options, as well as a failure to escape...

Cvelist•added 2026/06/09 1:23 p.m.•25 views

Exploits0References22

CVE-2026-9279 Shell command injection in Logseq

Logseq exposes an IPC handler that allows the renderer process to execute shell commands. While an allowlist restricts the command name e.g. git, pandoc, grep, the argument string is concatenated with the command and passed to childprocess.spawn with the shell: true option, allowing shell...

8.7CVSS0.0027EPSS