Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 2:2 a.m.15 views

CVE-2022-25890

All versions of the package wifey are vulnerable to Command Injection via the connect function due to improper input sanitization...

9.8CVSS7.1AI score0.01329EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2023/01/09 6:30 a.m.35 views

wifey vulnerable to Command Injection due to improper input sanitization

All versions of the package wifey are vulnerable to Command Injection via the connect function due to improper input sanitization...

9.8CVSS5.2AI score0.01329EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2023/01/09 5:15 a.m.17 views

Command injection

All versions of the package wifey are vulnerable to Command Injection via the connect function due to improper input sanitization...

7.5CVSS9.7AI score0.01329EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/01/09 5:0 a.m.4 views

CVE-2022-25890

All versions of the package wifey are vulnerable to Command Injection via the connect function due to improper input sanitization...

7.4CVSS7.2AI score0.01329EPSS
Exploits1References1
CVE
CVE
added 2023/01/09 5:0 a.m.53 views

CVE-2022-25890

The CVE-2022-25890 entry affects the Node.js package wifey , with a vulnerability in the connect() function that allows Command Injection due to improper input sanitization. Public references (e.g., Snyk, GitHub advisory) show a PoC exploit and indicate a lack of a fixed version, underscoring rea...

9.8CVSS9.7AI score0.01329EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2023/01/09 12:0 a.m.4 views

npm wifey 安全漏洞

npm wifey is a NodeJS tool for managing wifi from the US company npm. A security vulnerability exists in wifey, which stems from improper cleaning of user input. An attacker can exploit this vulnerability to perform command injection via the connect function...

9.8CVSS8.4AI score0.01329EPSS
Exploits1References2
Rows per page
Query Builder