Lucene search
K

120 matches found

NVD
NVD
added 2026/03/23 3:16 p.m.2 views

CVE-2026-33482

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the sanitizeFFmpegCommand function in plugin/API/standAlone/functions.php is designed to prevent OS command injection in ffmpeg commands by stripping dangerous shell metacharacters &&, ;, |, , . However, it fails ...

8.1CVSS0.02061EPSS
Exploits1References2
OSV
OSV
added 2026/03/23 2:10 p.m.3 views

CVE-2026-33482 AVideo has an OS Command Injection via $() Shell Substitution Bypass in sanitizeFFmpegCommand()

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the sanitizeFFmpegCommand function in plugin/API/standAlone/functions.php is designed to prevent OS command injection in ffmpeg commands by stripping dangerous shell metacharacters &&, ;, |, , . However, it fails ...

8.1CVSS6.1AI score0.02061EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/23 2:10 p.m.3 views

CVE-2026-33482 AVideo has an OS Command Injection via $() Shell Substitution Bypass in sanitizeFFmpegCommand()

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the sanitizeFFmpegCommand function in plugin/API/standAlone/functions.php is designed to prevent OS command injection in ffmpeg commands by stripping dangerous shell metacharacters &&, ;, |, , . However, it fails ...

8.1CVSS6.1AI score0.02061EPSS
Exploits1References2
OSV
OSV
added 2026/03/20 8:46 p.m.5 views

GHSA-PMJ8-R2J7-XG6C AVideo has an OS Command Injection via $() Shell Substitution Bypass in sanitizeFFmpegCommand()

Summary The sanitizeFFmpegCommand function in plugin/API/standAlone/functions.php is designed to prevent OS command injection in ffmpeg commands by stripping dangerous shell metacharacters &&, ;, |, , . However, it fails to strip $ bash command substitution syntax. Since the sanitized command is...

8.1CVSS6.1AI score0.02061EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2026/03/20 8:46 p.m.7 views

AVideo has an OS Command Injection via $() Shell Substitution Bypass in sanitizeFFmpegCommand()

Summary The sanitizeFFmpegCommand function in plugin/API/standAlone/functions.php is designed to prevent OS command injection in ffmpeg commands by stripping dangerous shell metacharacters &&, ;, |, , . However, it fails to strip $ bash command substitution syntax. Since the sanitized command is...

8.1CVSS6.1AI score0.02061EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.7 views

PT-2026-26769

Name of the Vulnerable Software and Affected Versions WWBN AVideo versions up to and including 26.0 Description The sanitizeFFmpegCommand function in plugin/API/standAlone/functions.php inadequately filters shell metacharacters, specifically failing to remove $ bash command substitution syntax...

8.1CVSS6.1AI score0.02061EPSS
Exploits1References10
OSV
OSV
added 2026/03/19 3:30 a.m.4 views

GHSA-XRGV-34CC-Q765 Duplicate Advisory: OpenClaw's system.run allowlist bypass via shell line-continuation command substitution

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-9868-vxmx-w862. This link is maintained to preserve external references. Original Description OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in system.run that allows attackers to...

6CVSS5.9AI score0.00439EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/19 1:0 a.m.25 views

CVE-2026-28460 OpenClaw < 2026.2.22 - Allowlist Bypass via Shell Line-Continuation Command Substitution in system.run

OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in system.run that allows attackers to execute non-allowlisted commands by splitting command substitution using shell line-continuation characters. Attackers can bypass security analysis by injecting $\ followed by a...

7.1CVSS0.00439EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/19 1:0 a.m.3 views

CVE-2026-28460 OpenClaw < 2026.2.22 - Allowlist Bypass via Shell Line-Continuation Command Substitution in system.run

OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in system.run that allows attackers to execute non-allowlisted commands by splitting command substitution using shell line-continuation characters. Attackers can bypass security analysis by injecting $\ followed by a...

7.1CVSS6AI score0.00439EPSS
Exploits0References3
CVE
CVE
added 2026/03/19 1:0 a.m.8 views

CVE-2026-28460

OpenClaw Open-Source: OpenClaw versions prior to 2026.2.22 are affected by an allowlist bypass in system.run. The issue lets an attacker bypass the approval boundary by splitting command substitution with shell line-continuation characters, specifically injecting "$\" followed by a newline and an...

8.8CVSS6AI score0.00439EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2026/03/18 2:16 a.m.4 views

CVE-2026-22179

OpenClaw versions prior to 2026.2.22 in macOS node-host system.run contain an allowlist bypass vulnerability that allows remote attackers to execute non-allowlisted commands by exploiting improper parsing of command substitution tokens. Attackers can craft shell payloads with command substitution...

7.5CVSS0.0063EPSS
Exploits1References3
OSV
OSV
added 2026/03/18 2:16 a.m.3 views

CVE-2026-22179

OpenClaw versions prior to 2026.2.22 in macOS node-host system.run contain an allowlist bypass vulnerability that allows remote attackers to execute non-allowlisted commands by exploiting improper parsing of command substitution tokens. Attackers can craft shell payloads with command substitution...

6.6CVSS6.2AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/18 1:34 a.m.2 views

CVE-2026-22179

OpenClaw versions prior to 2026.2.22 in macOS node-host system.run contain an allowlist bypass vulnerability that allows remote attackers to execute non-allowlisted commands by exploiting improper parsing of command substitution tokens. Attackers can craft shell payloads with command substitution...

7.5CVSS6.2AI score0.0063EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/18 1:34 a.m.2 views

CVE-2026-22179 OpenClaw < 2026.2.22 - Allowlist Bypass via Command Substitution in system.run

OpenClaw versions prior to 2026.2.22 in macOS node-host system.run contain an allowlist bypass vulnerability that allows remote attackers to execute non-allowlisted commands by exploiting improper parsing of command substitution tokens. Attackers can craft shell payloads with command substitution...

7.5CVSS6.2AI score0.0063EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/18 1:34 a.m.28 views

CVE-2026-22179 OpenClaw < 2026.2.22 - Allowlist Bypass via Command Substitution in system.run

OpenClaw versions prior to 2026.2.22 in macOS node-host system.run contain an allowlist bypass vulnerability that allows remote attackers to execute non-allowlisted commands by exploiting improper parsing of command substitution tokens. Attackers can craft shell payloads with command substitution...

7.5CVSS0.0063EPSS
Exploits1References3
CVE
CVE
added 2026/03/18 1:34 a.m.10 views

CVE-2026-22179

OpenClaw affected: macOS node-host system.run, versions prior to 2026.2.22. The root cause is an improper parsing of command substitution tokens that enables an allowlist bypass. Remote attackers could craft shell payloads using command substitution inside double-quoted text to execute non-allowl...

7.5CVSS6.2AI score0.0063EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2026/03/18 1:34 a.m.4 views

EUVD-2026-12724

OpenClaw versions prior to 2026.2.22 in macOS node-host system.run contain an allowlist bypass vulnerability that allows remote attackers to execute non-allowlisted commands by exploiting improper parsing of command substitution tokens. Attackers can craft shell payloads with command substitution...

7.5CVSS6.2AI score0.0063EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/11 9:31 p.m.4 views

EUVD-2019-19761

Comtrend AR-5310 GE31-412SSG-C01R10.A2pG039u.d24k contains a restricted shell escape vulnerability that allows local users to bypass command restrictions by using the command substitution operator $ . Attackers can inject arbitrary commands through the $ syntax when passed as arguments to allowed...

8.6CVSS6AI score0.00128EPSS
Exploits0References3
NVD
NVD
added 2026/03/11 7:16 p.m.8 views

CVE-2019-25483

Comtrend AR-5310 GE31-412SSG-C01R10.A2pG039u.d24k contains a restricted shell escape vulnerability that allows local users to bypass command restrictions by using the command substitution operator $ . Attackers can inject arbitrary commands through the $ syntax when passed as arguments to allowed...

8.6CVSS0.00128EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/11 6:23 p.m.4 views

CVE-2019-25483

Comtrend AR-5310 GE31-412SSG-C01R10.A2pG039u.d24k contains a restricted shell escape vulnerability that allows local users to bypass command restrictions by using the command substitution operator $ . Attackers can inject arbitrary commands through the $ syntax when passed as arguments to allowed...

8.6CVSS6AI score0.00128EPSS
Exploits0References2
Rows per page
Query Builder