Owl Cyber Defense OPDS 命令注入漏洞

Owl Cyber Defense OPDS is a network isolation device developed by Owl Cyber Defense Corporation. Version 2.2.0.4 of Owl Cyber Defense OPDS contains a command injection vulnerability. This vulnerability stems from improper handling of special elements within commands, which may lead to command...

CVE-2025-58628

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kamleshyadav Miraculous miraculous allows Blind SQL Injection.This issue affects Miraculous: from n/a through 2.0.9...

The vulnerability of HDL-T hard disk microprogramming software lies in the lack of measures taken to neutralize special elements used in the operating system’s command set, allowing a hacker to execute arbitrary code.

The vulnerability of HDL-T hard disk microprogramming software is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the setNoticeCfg function in the Totolink-A810R router’s microprogramming software allows a hacker to execute any command or cause a service failure.

The vulnerability of the setNoticeCfg function in the Totolink-A810R router microprogramming system exists due to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands...

Dell Storage Manager 命令注入漏洞

Dell Storage Manager is a centralized storage management platform from Dell USA. A command injection vulnerability exists in Dell Storage Manager that stems from improper neutralization of special elements in commands, no details of the vulnerability are available at this time...

The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity OE) lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.

The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...

The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity OE) lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.

The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...

The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity OE) lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.

The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...

The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity OE) lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.

The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...

The vulnerability of the application programming interface of the Trellix Enterprise Security Manager (ESM) system, which allows a perpetrator to execute arbitrary commands.

The vulnerability of the application programming interface of the Trellix Enterprise Security Manager ESM system for monitoring, analyzing, and managing security threats is related to the failure to take measures to neutralize special elements used in the operating system’s command set. Exploitin...

The vulnerability of TP-Link TL-IPC42C IP camera’s microprogramming software is related to the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to execute arbitrary code.

The vulnerability of TP-Link TL-IPC42C IP camera’s microprogramming software is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted...

The vulnerability of the doIPSec function in the mainfunction.cgi file of the DrayTek Vigor 3900 router’s microprogramming system allows a hacker to execute arbitrary code.

The vulnerability of the doIPSec function in the mainfunction.cgi file of the DrayTek Vigor 3900 router microprogramming system exists due to the failure to address the elimination of certain special elements used in the operating system command. Exploiting this vulnerability allows a remote...

The vulnerability of the sch_name_to_object component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.

The vulnerability of the schnametoobject component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created...

The vulnerability of the web printing function in the control systems for printing in PaperCut MF and PaperCut NG allows a violator to trigger a service failure.

The vulnerability of the web printing function in the control tools for printing in PaperCut MF and PaperCut NG is related to the failure to implement measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow an attacker to cause servic...

The vulnerability of the Ivanti EPM endpoint management software lies in its lack of measures to neutralize special elements used in the operating system’s command set. This allows a perpetrator to execute arbitrary code.

The vulnerability of the Ivanti EPM endpoint management software exists because measures to neutralize special elements used in the operating system command are not taken. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the microprogrammed software for Zyxel NAS326 and Zyxel NAS542 lies in the lack of measures taken to neutralize the special elements used in the operating system’s command set. This allows attackers to execute arbitrary commands.

The vulnerability of the microprogrammed network storage devices Zyxel NAS326 and Zyxel NAS542 is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands by...

The vulnerability of the Ivanti Cloud Services Appliance’s networking component exists due to the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows a hacker to execute arbitrary code.

The vulnerability of the Ivanti Cloud Services Appliance exists because measures to neutralize special elements used in the operating system are not taken. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the list_base_config.php file in the web interface of the Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 integrated software solution version 3.90 allows a hacker to execute arbitrary code.

The vulnerability of the listbaseconfig.php web interface of the Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 software is version 3.90. This vulnerability stems from the failure to eliminate special elements used in the OS command. Exploiting this vulnerability allows a remote attacker to...

The vulnerability of the ruby-find-library-file function in the EMACS text editor arises from improper elimination of special elements used in the command, allowing an attacker to execute arbitrary code.

The vulnerability of the ruby-find-library-file function in the EMACS text editor is related to improper elimination of special elements. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the command-line interface (CLI) of the Junos OS Evolved routers from the PTX Series, ACX Series, and QFX Series allows a attacker to elevate their privileges to the root level.

The vulnerability of the command-line interface CLI of Junos OS Evolved routers from the PTX Series, ACX Series, and QFX Series exists due to the lack of measures taken to neutralize special elements used in operating system commands. Exploiting this vulnerability can allow an attacker to elevate...