Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-16051

Malicious code in bioql PyPI...

6.6CVSS6.3AI score0.00639EPSS
Exploits0References4
Veracode
Veracodeadded 2025/05/26 3:42 a.m.7 views

Command Injection

github.com/shopify/ejson2env is vulnerable to command injection. The vulnerability is due to improper output sanitization, allowing malicious variable names or values to inject unintended commands into stdout...

6.6CVSS7.2AI score0.00639EPSS
Exploits0References5Affected Software2
OSV
OSVadded 2025/05/21 6:32 p.m.2 views

GHSA-2C47-M757-32G6 Insufficient input sanitization in ejson2env

Summary The ejson2env tool has a vulnerability related to how it writes to stdout. Specifically, the tool is intended to write an export statement for environment variables and their values. However, due to inadequate output sanitization, there is a potential risk where variable names or values m...

6.6CVSS8.4AI score0.00639EPSS
Exploits0References5
NVD
NVDadded 2025/05/21 6:15 p.m.10 views

CVE-2025-48069

ejson2env allows users to decrypt EJSON secrets and export them as environment variables. Prior to version 2.0.8, the ejson2env tool has a vulnerability related to how it writes to stdout. Specifically, the tool is intended to write an export statement for environment variables and their values...

6.6CVSS0.00639EPSS
Exploits0References2
OSV
OSVadded 2025/05/21 5:43 p.m.4 views

CVE-2025-48069 ejson2env has insufficient input sanitization

ejson2env allows users to decrypt EJSON secrets and export them as environment variables. Prior to version 2.0.8, the ejson2env tool has a vulnerability related to how it writes to stdout. Specifically, the tool is intended to write an export statement for environment variables and their values...

6.6CVSS7.3AI score0.00639EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/05/21 5:43 p.m.10 views

CVE-2025-48069 ejson2env has insufficient input sanitization

ejson2env allows users to decrypt EJSON secrets and export them as environment variables. Prior to version 2.0.8, the ejson2env tool has a vulnerability related to how it writes to stdout. Specifically, the tool is intended to write an export statement for environment variables and their values...

6.6CVSS7AI score0.00639EPSS
Exploits0References2
RubySec
RubySecadded 2025/05/21 12:0 a.m.8 views

Insufficient input sanitization in ejson2env

Summary The ejson2env tool has a vulnerability related to how it writes to stdout. Specifically, the tool is intended to write an export statement for environment variables and their values. However, due to inadequate output sanitization, there is a potential risk where variable names or values m...

6.6CVSS7.8AI score0.00639EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2025/05/21 12:0 a.m.3 views

PT-2025-22412 · Ejson2Env · Ejson2Env

Name of the Vulnerable Software and Affected Versions: ejson2env versions prior to 2.0.8 Description: The issue is related to inadequate output sanitization in the ejson2env tool, which can lead to command injection. This occurs when variable names or values contain malicious content, resulting i...

6.6CVSS7.2AI score0.00639EPSS
Exploits0References11
Rows per page
Query Builder