EUVD-2018-21787

Textpad 8.1.2 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long buffer string through the Run command interface. Attackers can paste a 5000-byte payload into the Command field via Tools Run to trigger a buffer overflow...

EUVD-2024-55353

Typora 1.7.4 contains a command injection vulnerability in the PDF export preferences that allows attackers to execute arbitrary system commands. Attackers can inject malicious commands into the 'run command' input field during PDF export to achieve remote code execution...

CVE-2025-65231

Barix Instreamer v04.06 and earlier is vulnerable to Cross Site Scripting XSS in the Web UI I/O & Serial configuration page, specifically the CTS close command user-input field which is stored and later rendered on the Status page...

EUVD-2011-2743

Malware in sbrugna...

SUSE CVE-2023-53510

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix handling of lrbp-cmd ufshcdqueuecommand may be called two times in a row for a SCSI command before it is completed. Hence make the following changes: - In the functions that submit a command, do not check the...

CVE-2025-50404

Intelbras RX1500 Router (versions ≤ 2.2.17) is affected by an integer overflow in the websReadEvent() function during processing of the HTTP header’s command field, causing an out-of-bounds write that overwrites adjacent data. Documents describe the vulnerability as allowing potentially arbitrary...

CVE-2025-50404

Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent function incorrectly uses the int type when processing the "command" field of the http header, causing the array to cross the boundary and overwrite other fields in the array...

CVE-2022-50075

The CVE-2022-50075 entry concerns Linux kernel tracing/eprobes. A NULL pointer dereference can occur when a symbol "@" is used with an event probe, because eprobes previously did not handle data sources beyond main registers (e.g., immediate addresses, symbols, current task name). The issue is mi...

CVE-2022-50075 tracing/eprobes: Have event probes be consistent with kprobes and uprobes

In the Linux kernel, the following vulnerability has been resolved: tracing/eprobes: Have event probes be consistent with kprobes and uprobes Currently, if a symbol "@" is attempted to be used with an event probe eprobes, it will cause a NULL pointer dereference crash. Both kprobes and uprobes ca...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from a security flaw in WARNON lrbp-cmd...

CVE-2024-28640

Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0u.6115-B20201022 allows a remote attacker to cause a denial of service D0S via the command field...

TOTOLINK X5000R、 A7000R 安全漏洞

TOTOLINK X5000R is a router.TOTOLINK A7000R is a wireless router. A buffer overflow vulnerability exists in TOTOLINK X5000R and A7000R. An attacker can exploit this vulnerability to cause a denial of service D0S via a command field...

PT-2023-12762 · Audiocodes · Audiocodes Device Manager Express

Name of the Vulnerable Software and Affected Versions: AudioCodes Device Manager Express versions through 7.8.20002.47752 Description: An issue was discovered that allows execution of commands. The "/BrowseFiles.php" API endpoint is vulnerable to a POST request with a cmd parameter set to "ssh" a...

Sam Spade 1.14 - S-Lang Command Field Overflow (SEH)

!/usr/bin/env python Exploit Title : Sam Spade 1.14 S-Lang Command Field SEH Overflow Crash PoC Discovery by : Nipun Jaswal Email : [email protected] Discovery Date : 12/11/2015 Vendor Homepage : http://samspade.org Software Link : http://www.majorgeeks.com/files/details/samspade.html Tested...

Cisco VPN Client Elevation of Privilege Vulnerability

Cisco VPN Client is a cross-platform client software suite. Cisco VPN Client fails to properly assign permissions to the vpnclient.ini file, which can be elevated by a local attacker by entering an arbitrary process name into the 'Command' field of the ApplicationLauncher...

Design/Logic Flaw

Cisco VPN Client 5.x through 5.0.07.0440 uses weak permissions for vpnclient.ini, which allows local users to gain privileges by entering an arbitrary program name in the Command field of the ApplicationLauncher section...

PYSEC-2014-98

Cross-site scripting XSS vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via the command field in the Cron functionality...