CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2021-27007

Malware in sbrugna...

9.8CVSS9.2AI score0.0136EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 6:40 p.m.•5 views

CVE-2021-3727

Vulnerability in rand-quote and hitokoto plugins Description: the rand-quote and hitokoto fetch quotes from quotationspage.com and hitokoto.cn respectively, do some process on them and then use print -P to print them. If these quotes contained the proper symbols, they could trigger command...

9.8CVSS7.3AI score0.0136EPSS

Exploits0References1

OSV•added 2021/11/30 10:15 a.m.•8 views

CVE-2021-3727

9.8CVSS7.3AI score

Exploits0References1

NVD•added 2021/11/30 10:15 a.m.•8 views

CVE-2021-3727

9.8CVSS0.0136EPSS

Exploits0References1

Prion•added 2021/11/30 10:15 a.m.•14 views

Command injection

7.5CVSS9.6AI score0.0136EPSS

Exploits0References1Affected Software1

CVE•added 2021/11/30 9:30 a.m.•112 views

CVE-2021-3727

CVE-2021-3727 concerns the ohmyzsh rand-quote and hitokoto plugins. The description states that quotes fetched from external APIs (quotationspage.com and hitokoto.cn) could, if containing certain symbols, trigger a command injection when processed and printed via print -P. The root cause is not d...

9.8CVSS9AI score0.0136EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/11/30 9:30 a.m.•12 views

CVE-2021-3727 OS Command Injection in ohmyzsh/ohmyzsh

7.5CVSS9.9AI score0.0136EPSS

Exploits0References1

CNNVD•added 2021/11/30 12:0 a.m.•2 views

ohmyzsh 操作系统命令注入漏洞

ohmyzsh is an open source, community-driven framework for managing your zsh configuration. ohmyzsh suffers from an operating system command injection vulnerability that can be exploited by an attacker to trigger command injection via the rand-quote and hitokoto plugins...

9.8CVSS8.4AI score0.0136EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by