Lucene search
K

70963 matches found

SUSE CVE
SUSE CVE
added 2026/04/20 11:25 p.m.8 views

SUSE CVE-2026-40527

radare2 prior to commit bc5a890 contains a command injection vulnerability in the afsv/afsvj command path where crafted ELF binaries can embed malicious r2 command sequences as DWARF DWTAGformalparameter names. Attackers can craft a binary with shell commands in DWARF parameter names that execute...

8.5CVSS6.2AI score0.00915EPSS
Exploits1References3
Snyk
Snyk
added 2026/04/20 10:0 p.m.6 views

Command Injection

Overview litellm is a Library to easily interface with LLM API providers Affected versions of this package are vulnerable to Command Injection via preview MCP server endpoints POST /mcp-rest/test/connection and POST /mcp-rest/test/tools/list. An attacker can execute arbitrary commands by accessin...

8.8CVSS6.2AI score0.75873EPSS
Exploits1References2
Snyk
Snyk
added 2026/04/20 9:11 p.m.7 views

Command Injection

Overview flowsint is an Add your description here Affected versions of this package are vulnerable to Command Injection via the orgtoasn transform process. An attacker can execute arbitrary operating system commands as root on the host machine by supplying shell metacharacters and escaping the...

10CVSS6.1AI score0.00506EPSS
Exploits1References2
GithubExploit
GithubExploit
added 2026/04/20 8:38 p.m.102 views

DarkHole-2-Penetration-Testing-Writeup.

DarkHole-2-Penetration-Testing-Writeup. DarkHole 2 is a vulner...

6.2AI score
Exploits0
CVE
CVE
added 2026/04/20 7:56 p.m.17 views

CVE-2026-32311

Flowsint is affected by a high-severity vulnerability in which an attacker can create a sketch and trigger the org_to_asn transformer on an organization node to execute arbitrary OS commands as root on the host via shell metacharacters and a Docker container escape. The issue pertains to the tran...

10CVSS6.2AI score0.00506EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/20 7:56 p.m.4 views

CVE-2026-32311 Command Injection and Docker container escape allows root on host machine

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Flowsint allows a user to create investigations, which are used to manage sketches and analyses. Sketches have controllable graphs, which are comprised of nodes and...

10CVSS6.2AI score0.00506EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/04/20 7:23 p.m.5 views

CVE-2026-6576

A vulnerability was determined in liangliangyy DjangoBlog up to 2.1.0.0. The affected element is the function CommandHandler of the file servermanager/api/commonapi.py of the component WeChat Bot Interface. Executing a manipulation of the argument Source can lead to command injection. It is...

6.5CVSS6.3AI score0.01456EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/20 7:22 p.m.5 views

CVE-2026-35582

Emissary is a P2P based data-driven workflow engine. In versions 8.42.0 and below, Executrix.getCommand is vulnerable to OS command injection because it interpolates temporary file paths into a /bin/sh -c shell command string without any escaping or input validation. The INFILEENDING and...

8.8CVSS5.9AI score0.00861EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/20 6:31 p.m.4 views

EUVD-2026-23886

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.60 contain an OS command injection vulnerability. A high privileged attacker with remote access could potentially exploit this...

7.2CVSS6.1AI score0.01191EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/20 6:31 p.m.7 views

EUVD-2026-23895

Dell PowerProtect Data Domain, versions 8.5 through 8.6 contains an Improper Neutralization of Special Elements used in an OS Command 'OS command injection vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command...

6.7CVSS6.1AI score0.00882EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/20 6:31 p.m.7 views

EUVD-2026-23898

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.60 contain an OS command injection vulnerability. A high privileged attacker with remote access could potentially exploit this...

7.2CVSS6.1AI score0.01191EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/20 6:31 p.m.7 views

EUVD-2026-23906

Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain a command injection vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges...

6.7CVSS6.1AI score0.01159EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/20 6:31 p.m.5 views

EUVD-2026-23879

Dell PowerProtect Data Domain with Data Domain Operating System DD OS of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.10, LTS2024 release versions 7.13.1.0 through 7.13.1.40, contain an OS command injection vulnerability. A high privileged attacker...

7.2CVSS5.9AI score0.0147EPSS
Exploits0References2
NVD
NVD
added 2026/04/20 5:16 p.m.7 views

CVE-2026-26942

Dell PowerProtect Data Domain, versions 8.5 through 8.6 contains an Improper Neutralization of Special Elements used in an OS Command 'OS command injection vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command...

7.2CVSS0.00882EPSS
Exploits0References1
NVD
NVD
added 2026/04/20 5:16 p.m.6 views

CVE-2026-24506

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.60 contain an OS command injection vulnerability. A high privileged attacker with remote access could potentially exploit this...

7.2CVSS0.01191EPSS
Exploits0References1
NVD
NVD
added 2026/04/20 5:16 p.m.9 views

CVE-2026-26943

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.60 contain an OS command injection vulnerability. A high privileged attacker with remote access could potentially exploit this...

7.2CVSS0.01191EPSS
Exploits0References1
NVD
NVD
added 2026/04/20 5:16 p.m.4 views

CVE-2026-22761

Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain a command injection vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges...

7.2CVSS0.01159EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/20 4:39 p.m.31 views

CVE-2026-22761

Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain a command injection vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges...

6.7CVSS0.01159EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/20 4:39 p.m.1 views

CVE-2026-22761

Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain a command injection vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges...

6.7CVSS6.1AI score0.01159EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/20 4:39 p.m.3 views

CVE-2026-22761

Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain a command injection vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges...

6.7CVSS6.1AI score0.01159EPSS
Exploits0References1
Rows per page
Query Builder