15 matches found
EUVD-2022-3527
Malicious code in bioql PyPI...
CVE-2019-10774
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...
php-shellcommand command injection vulnerability
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...
GHSA-C7FV-WV9F-CGJW php-shellcommand command injection vulnerability
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...
php-shellcommand command injection vulnerability
php-shellcommand is a package for executing shell commands in PHP. An operating system command injection vulnerability exists in versions of php-shellcommand prior to 1.6.1. The vulnerability stems from a network system or product not properly filtering special characters, commands, etc. from...
OS Command Injection
mikehaertl/php-shellcommand is vulnerable to OS command injection. The addArg function in src/Command.php does not escape all arguments, allowing an attacker to inject arbitrary OS commands...
DEBIAN-CVE-2019-10774
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2019-10774
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2019-10774
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...
Command injection
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2019-10774
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2019-10774
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2019-10774
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2019-10774
CVE-2019-10774 affects the PHP package php-shellcommand prior to version 1.6.1. The vulnerability is a command-injection flaw that can lead to arbitrary code execution when user-controlled input is improperly handled during shell command construction. The NVD entry assigns a MAXIMAL CVSS score (3...
Command Injection
Overview mikehaertl/php-shellcommand is an object oriented interface to shell commands Affected versions of this package are vulnerable to Command Injection. User input is concatenated with a command within addArg that will be executed without any check. Remediation Upgrade...