Lucene search
K

70978 matches found

OSV
OSV
added 2026/04/17 9:24 p.m.4 views

GHSA-W5J3-8FCR-H87W Dolibarr: OS Command Injection (RCE) via MAIN_ODT_AS_PDF configuration

Summary An authenticated administrator can execute arbitrary operating system commands by injecting a malicious payload into the MAINODTASPDF configuration constant. This vulnerability exists because the application fails to properly validate or escape the command path before passing it to the ex...

9.4CVSS6.1AI score0.00922EPSS
Exploits3References4
NVD
NVD
added 2026/04/17 9:16 p.m.9 views

CVE-2026-40527

radare2 prior to commit bc5a890 contains a command injection vulnerability in the afsv/afsvj command path where crafted ELF binaries can embed malicious r2 command sequences as DWARF DWTAGformalparameter names. Attackers can craft a binary with shell commands in DWARF parameter names that execute...

8.5CVSS0.00915EPSS
Exploits1References3
OSV
OSV
added 2026/04/17 9:16 p.m.3 views

UBUNTU-CVE-2026-40527

radare2 prior to commit bc5a890 contains a command injection vulnerability in the afsv/afsvj command path where crafted ELF binaries can embed malicious r2 command sequences as DWARF DWTAGformalparameter names. Attackers can craft a binary with shell commands in DWARF parameter names that execute...

8.5CVSS6.1AI score0.00915EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2026/04/17 9:16 p.m.6 views

CVE-2026-40527

radare2 prior to commit bc5a890 contains a command injection vulnerability in the afsv/afsvj command path where crafted ELF binaries can embed malicious r2 command sequences as DWARF DWTAGformalparameter names. Attackers can craft a binary with shell commands in DWARF parameter names that execute...

8.5CVSS6.1AI score0.00915EPSS
Exploits1References3
CVE
CVE
added 2026/04/17 8:25 p.m.10 views

CVE-2026-23500

Dolibarr Dolibarr ERP/CRM prior to 23.0.0 is vulnerable to OS Command Injection via MAIN_ODT_AS_PDF in odf.php. An authenticated administrator can inject arbitrary commands by injecting into the MAIN_ODT_AS_PDF configuration constant, using command separators to execute as the web server user whe...

9.4CVSS6.5AI score0.00922EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2026/04/17 8:25 p.m.18 views

CVE-2026-23500 Dolibarr: OS Command Injection (RCE) via MAIN_ODT_AS_PDF configuration

Dolibarr is an enterprise resource planning ERP and customer relationship management CRM software package. In versions prior to 23.0.0 , the ODT to PDF conversion process in odf.php concatenates the MAINODTASPDF configuration constant directly into a shell command passed to exec without...

9.4CVSS0.00922EPSS
Exploits3References2
Vulnrichment
Vulnrichment
added 2026/04/17 8:25 p.m.5 views

CVE-2026-23500 Dolibarr: OS Command Injection (RCE) via MAIN_ODT_AS_PDF configuration

Dolibarr is an enterprise resource planning ERP and customer relationship management CRM software package. In versions prior to 23.0.0 , the ODT to PDF conversion process in odf.php concatenates the MAINODTASPDF configuration constant directly into a shell command passed to exec without...

9.4CVSS6.5AI score0.00922EPSS
Exploits3References2
AlpineLinux
AlpineLinux
added 2026/04/17 8:25 p.m.6 views

CVE-2026-40527

radare2 prior to commit bc5a890 contains a command injection vulnerability in the afsv/afsvj command path where crafted ELF binaries can embed malicious r2 command sequences as DWARF DWTAGformalparameter names. Attackers can craft a binary with shell commands in DWARF parameter names that execute...

8.5CVSS6AI score0.00915EPSS
Exploits1References3
CVE
CVE
added 2026/04/17 8:25 p.m.12 views

CVE-2026-40527

radare2 prior to commit bc5a890 contains a local command-injection in the afsv/afsvj path. crafted ELF binaries can embed shell commands in DWARF DW_TAG_formal_parameter names; when radare2 analyzes the binary with aaa and subsequently runs afsvj, the unsanitized parameter interpolation in the pf...

8.5CVSS6.2AI score0.00915EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/17 8:25 p.m.5 views

CVE-2026-40527

radare2 prior to commit bc5a890 contains a command injection vulnerability in the afsv/afsvj command path where crafted ELF binaries can embed malicious r2 command sequences as DWARF DWTAGformalparameter names. Attackers can craft a binary with shell commands in DWARF parameter names that execute...

8.5CVSS6.2AI score0.00915EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/04/17 8:25 p.m.4 views

CVE-2026-40527 radare2 Command Injection via DWARF Parameter Names

radare2 prior to commit bc5a890 contains a command injection vulnerability in the afsv/afsvj command path where crafted ELF binaries can embed malicious r2 command sequences as DWARF DWTAGformalparameter names. Attackers can craft a binary with shell commands in DWARF parameter names that execute...

8.5CVSS6.2AI score0.00915EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/04/17 8:25 p.m.6 views

CVE-2026-40527

radare2 prior to commit bc5a890 contains a command injection vulnerability in the afsv/afsvj command path where crafted ELF binaries can embed malicious r2 command sequences as DWARF DWTAGformalparameter names. Attackers can craft a binary with shell commands in DWARF parameter names that execute...

8.5CVSS5.9AI score0.00915EPSS
Exploits1
NVD
NVD
added 2026/04/17 8:16 p.m.9 views

CVE-2026-35682

Anviz CX2 Lite is vulnerable to an authenticated command injection via a filename parameter that enables arbitrary command execution e.g., starting telnetd, resulting in root‑level access...

8.8CVSS0.01787EPSS
Exploits0References3
CVE
CVE
added 2026/04/17 7:46 p.m.16 views

CVE-2026-35682

The CVE-2026-35682 vulnerability affects Anviz CX2 Lite. An authenticated attacker can inject commands via a filename parameter, enabling arbitrary command execution and root-level access (example: starting telnetd). The available connected sources confirm the affected product and the root-level ...

8.8CVSS6AI score0.01787EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/17 7:46 p.m.3 views

CVE-2026-35682 Anviz CX2 Lite Command Injection

Anviz CX2 Lite is vulnerable to an authenticated command injection via a filename parameter that enables arbitrary command execution e.g., starting telnetd, resulting in root‑level access...

8.8CVSS6AI score0.01787EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/17 7:46 p.m.18 views

CVE-2026-35682 Anviz CX2 Lite Command Injection

Anviz CX2 Lite is vulnerable to an authenticated command injection via a filename parameter that enables arbitrary command execution e.g., starting telnetd, resulting in root‑level access...

8.8CVSS0.01787EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/17 7:46 p.m.3 views

CVE-2026-35682

Anviz CX2 Lite is vulnerable to an authenticated command injection via a filename parameter that enables arbitrary command execution e.g., starting telnetd, resulting in root‑level access...

8.8CVSS6AI score0.01787EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/17 12:31 p.m.4 views

EUVD-2026-23403

A vulnerability was found in Wavlink WL-WN530H4 20220721. This vulnerability affects the function strcat/snprintf of the file /cgi-bin/internet.cgi. The manipulation results in os command injection. It is possible to launch the attack remotely. The exploit has been made public and could be used...

8.6CVSS5.5AI score0.14131EPSS
Exploits0References6
EUVD
EUVD
added 2026/04/17 12:31 p.m.3 views

EUVD-2026-23406

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7.0.0, LTS2025 release versions 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.60 contain an improper neutralization of special elements used in an OS command injection vulnerability. A high privileged attacker...

6.7CVSS6AI score0.00571EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/17 12:31 p.m.5 views

EUVD-2026-23405

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7.0.0, LTS2025 release versions 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.60 contain an improper neutralization of special elements used in an OS command 'OS command injection' vulnerability. A high...

6.7CVSS6AI score0.00571EPSS
Exploits0References2
Rows per page
Query Builder