Exploit for Code Injection in Xwiki

CVE-2025-24893 Bash POC script for RCE vulnerability in XWiki...

PT-2025-13416 · Dell · Dell Unity

Name of the Vulnerable Software and Affected Versions: Dell Unity versions 5.4 and prior Description: The issue is related to an Improper Neutralization of Special Elements used in an OS Command, also known as 'OS Command Injection'. This could allow a low-privileged attacker with local access to...

Fortinet FortiOS Information Disclosure Vulnerability (CNVD-2017-37067)

Fortinet FortiOS is a set of security operating system developed by the U.S. Fiat Fortinet company dedicated to FortiGate network security platform. The system provides users with firewall, antivirus, IPSec/SSL VPN, Web content filtering and anti-spam and other security features. An information...

Command injection

EMC Data Domain OS DD OS 5.4 all versions, EMC Data Domain OS DD OS 5.5 family all versions prior to 5.5.5.0, EMC Data Domain OS DD OS 5.6 family all versions prior to 5.6.2.0, EMC Data Domain OS DD OS 5.7 family all versions prior to 5.7.2.10 has a command injection vulnerability that could...

AWStats 5.x/6.x - 'Logfile' Remote Command Execution

source: https://www.securityfocus.com/bid/12572/info AWStats is reported prone to a remote arbitrary command-execution vulnerability. This issue occurs because the application fails to properly sanitize user-supplied data. Specifically, the user-specified 'logfile' URI parameter is supplied to th...