GitPython has Command Injection via Git options bypass

Summary GitPython blocks dangerous Git options such as --upload-pack and --receive-pack by default, but the equivalent Python kwargs uploadpack and receivepack bypass that check. If an application passes attacker-controlled kwargs into Repo.clonefrom, Remote.fetch, Remote.pull, or Remote.push, th...

PT-2026-23520

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.2 Description The software does not properly validate Windows cmd.exe metacharacters in allowlist-gated exec requests, potentially allowing attackers to bypass command approval restrictions. Attackers can craf...

CVE-2022-25369

An issue was discovered in Dynamicweb before 9.12.8. An attacker can add a new administrator user without authentication. This flaw exists due to a logic issue when determining if the setup phases of the product can be run again. Once an attacker is authenticated as the new admin user they have...

CVE-2025-65882

An issue was discovered in openmptcprouter thru 0.64 in file common/package/utils/sys-upgrade-helper/src/tools/sysupgrade.c in function createxoripadopad allowing attackers to potentially write arbitrary files or execute arbitrary commands...

The vulnerability in the bsw_fix.cgi script of Netgear R8500 router software allows a hacker to execute arbitrary commands.

The vulnerability of the bswfix.cgi script of the Netgear R8500 router software relates to the failure to eliminate special elements used in the operating system’s commands when processing the wangateway parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary comman...

CVE-2024-40519

SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is caused by adminsmtp.php directly splicing and writing the user input data into weixin.php without processing it, which allows authenticated attackers to exploit the vulnerability to execute arbitrary commands and obtain...

DEBIAN-CVE-2020-1946

In Apache SpamAssassin before 3.4.5, malicious rule configuration .cf files can be configured to run system commands without any output or errors. With this, exploits can be injected in a number of scenarios. In addition to upgrading to SA version 3.4.5, users should only use update channels or 3...

PYSEC-2020-61

In lookatme python/pypi package versions prior to 2.3.0, the package automatically loaded the built-in "terminal" and "fileloader" extensions. Users that use lookatme to render untrusted markdown may have malicious shell commands automatically run on their system. This is fixed in version 2.3.0. ...

CVE-2018-18857

Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. An attacker can communicate with an unprotected XPC service and directly execute arbitrary OS commands as root or load a potentially malicious kernel extension because...

SUSE SLED12 / SLES12 Security Update : cups (SUSE-SU-2018:0604-1)

This update for cups fixes the following issues : - CVE-2017-18190: Removed localhost.localdomain from list of trustworthy hosts in scheduler/client.c to avoid arbitrary IPP command execution in conjunction with DNS rebinding. bsc1081557 Note that Tenable Network Security has extracted the...

The vulnerability in the cgi-bin/mft/wireless_mft.cgi script of the AirLive IP camera software allows a intruder to obtain user credentials.

The vulnerability in the cgi-bin/mft/wirelessmft.cgi script of the AirLive IP camera software is related to the failure to implement measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands ...

AIX 7.1 TL 4 : bellmail (IV91008) (deprecated)

https://vulners.com/cve/CVE-2016-8972 https://vulners.com/cve/CVE-2016-8972 IBM AIX could allow a local user to gain root privileges using a specially crafted command within the bellmail client. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin...

CVE-2010-4367

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located on a 1 WebDAV server or 2 NFS server...

mIRC PRIVMSG hostname buffer overflow

Added: 03/13/2008 CVE: CVE-2008-4449 BID: 31552 OSVDB: 48752 Background mIRC is an Internet Relay Chat IRC client. Problem A buffer overflow in mIRC allows command execution when a user connects to a malicious IRC server which sends a PRIVMSG message with a long, specially crafted hostname...

PHP Perl Extension Safe_mode Bypass Exploit

No description provided by source. ?php ---------------------------------------------------- ----PHP Perl Extension Safemode Bypass Exploit----- ---------------------------------------------------- -Author:--NetJackal--------------------------------- -Email:---nima501atyahoodotcom----------------...

webcart.cgi

webcart.cgi is installed and does not properly filter user input. A cracker may use this flaw to execute any command on your system. OpenVAS Vulnerability Test $Id: webcartcmdexec.nasl 6046 2017-04-28 09:02:54Z teissa $ Description: webcart.cgi Authors: Michel Arboi Script audit and contributions...