Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-0452

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01647EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/02/06 2:9 a.m.6 views

CVE-2022-25923

Versions of the package exec-local-bin before 1.2.0 are vulnerable to Command Injection via the theProcess functionality due to improper user-input sanitization...

9.8CVSS7.1AI score0.01647EPSS
Exploits1References1
Veracode
Veracodeadded 2023/01/15 9:58 p.m.12 views

Command Injection

exec-local-bin is vulnerable to Command Injection attacks. The library does not properly sanitize user-input via theProcess function, which allows an attacker to inject and execute malicious commands...

9.8CVSS9.4AI score0.01647EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blogadded 2023/01/06 6:30 a.m.19 views

exec-local-bin vulnerable to Command Injection

Versions of the package exec-local-bin before 1.2.0 are vulnerable to Command Injection via the theProcess functionality due to improper user-input sanitization...

9.8CVSS5.3AI score0.01647EPSS
Exploits1References5Affected Software1
CVE
CVEadded 2023/01/06 5:0 a.m.55 views

CVE-2022-25923

CVE-2022-25923 affects the exec-local-bin package. The vulnerability arises in theProcess() where improper user-input sanitization enables Command Injection. Affected versions are prior to 1.2.0. Impact is described as potential unauthorized code execution with high confidentiality/integrity/avai...

9.8CVSS9.7AI score0.01647EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2023/01/06 5:0 a.m.3 views

CVE-2022-25923

Versions of the package exec-local-bin before 1.2.0 are vulnerable to Command Injection via the theProcess functionality due to improper user-input sanitization...

7.4CVSS7.2AI score0.01647EPSS
Exploits1References3
CNNVD
CNNVDadded 2023/01/06 12:0 a.m.1 views

exec-local-bin 安全漏洞

exec-local-bin is a library by Saeed Seyfi Dorcheh personal developer. A simple helper for executing a local nodemodule bin in a node. A security vulnerability exists in exec-local-bin versions prior to 1.2.0, which stems from incorrect user input cleanup and is prone to command injection via...

9.8CVSS8.3AI score0.01647EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2023/01/06 12:0 a.m.2 views

PT-2023-12836 · Unknown · Exec-Local-Bin

Name of the Vulnerable Software and Affected Versions: exec-local-bin versions prior to 1.2.0 Description: The issue is related to Command Injection via the theProcess functionality due to improper user-input sanitization. This allows for potential exploitation. No information is provided about t...

9.8CVSS7.5AI score0.01647EPSS
Exploits1References9
Snyk
Snykadded 2022/12/06 4:18 p.m.2 views

Command Injection

Overview Affected versions of this package are vulnerable to Command Injection via the theProcess functionality due to improper user-input sanitization. PoC js var root = require"exec-local-bin" root"& touch JHU", Remediation Upgrade exec-local-bin to version 1.2.0 or higher. References - GitHub...

9.8CVSS7.4AI score0.01647EPSS
Exploits1References2
Rows per page
Query Builder