Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/03/09 12:0 a.m.6 views

PT-2026-24106

Budibase is a low code platform for creating internal tools, workflows, and admin panels. In 3.23.22 and earlier, the PostgreSQL integration constructs shell commands using user-controlled configuration values database name, host, password, etc. without proper sanitization. The password and other...

8.6CVSS5.8AI score0.0048EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/12/18 10:37 p.m.4 views

CVE-2025-68144

In mcp-server-git versions prior to 2025.12.17, the gitdiff and gitcheckout functions passed user-controlled arguments directly to git CLI commands without sanitization. Flag-like values e.g., --output=/path/to/file for gitdiff would be interpreted as command-line options rather than git refs,...

6.3CVSS7.3AI score0.0728EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-7246

Malware in sbrugna...

7.2CVSS6.6AI score0.0039EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:57 a.m.5 views

CVE-2019-9467

In the Bootloader, there is a possible kernel command injection due to missing command sanitization. This could lead to a local elevation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

7.2CVSS7.9AI score0.00286EPSS
Exploits0References1
OSV
OSV
added 2024/05/06 12:56 p.m.5 views

SUSE-SU-2024:1536-1 Security update for flatpak

This update for flatpak fixes the following issues: - CVE-2024-32462: Fixed arbitrary code execution outside sandbox via malicious app due to insufficient 'command' argument sanitization bsc1223110...

8.4CVSS8.8AI score0.00512EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2023/07/13 12:0 a.m.5 views

The vulnerability of the operating system for managing Synology Router Manager allows a hacker to execute arbitrary commands.

The vulnerability of the Synology Router Manager operating system exists because measures to neutralize special elements used in the operating system commands are not taken. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

10CVSS7.5AI score0.01252EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2020/02/28 9:15 p.m.13 views

Design/Logic Flaw

enpeem through 2.2.0 allows execution of arbitrary commands. The "options.dir" argument is provided to the "exec" function without any sanitization...

7.5CVSS9.5AI score0.02767EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder