Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/02/28 1:55 a.m.7 views

CVE-2026-21389

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the request body sent to the contacts import route...

8.8CVSS6.6AI score0.01489EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/27 3:30 a.m.9 views

EUVD-2026-8946

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the request body sent to the contacts import route...

8.8CVSS6.3AI score0.01489EPSS
Exploits0References4
NVD
NVD
added 2026/02/27 1:16 a.m.10 views

CVE-2026-21389

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the request body sent to the contacts import route...

8.8CVSS0.01489EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/27 12:38 a.m.6 views

CVE-2026-21389 Copeland XWEB and XWEB Pro OS Command Injection

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the request body sent to the contacts import route...

8CVSS6.6AI score0.01489EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/27 12:38 a.m.35 views

CVE-2026-21389 Copeland XWEB and XWEB Pro OS Command Injection

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the request body sent to the contacts import route...

8CVSS0.01489EPSS
Exploits0References3
CVE
CVE
added 2026/02/27 12:38 a.m.32 views

CVE-2026-21389

CVE-2026-21389 is an OS command injection affecting XWEB Pro

8.8CVSS6.3AI score0.01489EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/27 12:38 a.m.5 views

CVE-2026-21389

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the request body sent to the contacts import route...

8.8CVSS6.4AI score0.01489EPSS
Exploits0References4
Rows per page
Query Builder