Lucene search
+L

Command Injection

🗓️ 28 Oct 2025 16:21:19Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode
🔗 sca.analysiscenter.veracode.com👁 7 Views

FitNesse is vulnerable to command injection due to improper input validation, allowing authenticated attackers to execute OS commands.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2024-28125
18 Mar 202409:21
circl
CNNVD
FitNesse Security Breach
18 Mar 202400:00
cnnvd
CVE
CVE-2024-28125
18 Mar 202407:26
cve
Cvelist
CVE-2024-28125
18 Mar 202407:26
cvelist
EUVD
EUVD-2024-1037
3 Oct 202520:07
euvd
Github Security Blog
FitNesse allows execution of arbitrary OS commands
18 Mar 202409:30
github
Japan Vulnerability Notes
JVN#94521208: Multiple vulnerabilities in FitNesse
18 Mar 202400:00
jvn
Japan Vulnerability Notes
Multiple vulnerabilities in FitNesse
18 Mar 202405:08
jvn
NVD
CVE-2024-28125
18 Mar 202408:15
nvd
OSV
CVE-2024-28125
18 Mar 202408:15
osv
Rows per page
Vulners
Node
OR
fitnessefitnesseRange2005073120240707java
fitnessefitnesseMatch20050731java
fitnessefitnesseMatch20060719java
fitnessefitnesseMatch20070619java
fitnessefitnesseMatch20080702java
fitnessefitnesseMatch20080812java
fitnessefitnesseMatch20081201java
fitnessefitnesseMatch20111025java
fitnessefitnesseMatch20121220java
fitnessefitnesseMatch20130530java
fitnessefitnesseMatch20130531java
fitnessefitnesseMatch20131109java
fitnessefitnesseMatch20131110java
fitnessefitnesseMatch20140201java
fitnessefitnesseMatch20140418java
fitnessefitnesseMatch20140623java
fitnessefitnesseMatch20140630java
fitnessefitnesseMatch20140901java
fitnessefitnesseMatch20150114java
fitnessefitnesseMatch20150226java
fitnessefitnesseMatch20150424java
fitnessefitnesseMatch20150814java
fitnessefitnesseMatch20151230java
fitnessefitnesseMatch20160515java
fitnessefitnesseMatch20160618java
fitnessefitnesseMatch20161106java
fitnessefitnesseMatch20171210java
fitnessefitnesseMatch20171212java
fitnessefitnesseMatch20180127java
fitnessefitnesseMatch20181221java
fitnessefitnesseMatch20181223java
fitnessefitnesseMatch20181224java
fitnessefitnesseMatch20190110java
fitnessefitnesseMatch20190118java
fitnessefitnesseMatch20190119java
fitnessefitnesseMatch20190127java
fitnessefitnesseMatch20190202java
fitnessefitnesseMatch20190216java
fitnessefitnesseMatch20190224java
fitnessefitnesseMatch20190406java
fitnessefitnesseMatch20190409java
fitnessefitnesseMatch20190416java
fitnessefitnesseMatch20190417java
fitnessefitnesseMatch20190418java
fitnessefitnesseMatch20190421java
fitnessefitnesseMatch20190428java
fitnessefitnesseMatch20190508java
fitnessefitnesseMatch20190620java
fitnessefitnesseMatch20190628java
fitnessefitnesseMatch20190716java
fitnessefitnesseMatch20191110java
fitnessefitnesseMatch20191217java
fitnessefitnesseMatch20191229java
fitnessefitnesseMatch20200108java
fitnessefitnesseMatch20200128java
fitnessefitnesseMatch20200205java
fitnessefitnesseMatch20200304java
fitnessefitnesseMatch20200307java
fitnessefitnesseMatch20200308java
fitnessefitnesseMatch20200404java
fitnessefitnesseMatch20200501java
fitnessefitnesseMatch20201213java
fitnessefitnesseMatch20210410java
fitnessefitnesseMatch20210516java
fitnessefitnesseMatch20210605java
fitnessefitnesseMatch20210606java
fitnessefitnesseMatch20211006java
fitnessefitnesseMatch20211030java
fitnessefitnesseMatch20220319java
fitnessefitnesseMatch20220815java
fitnessefitnesseMatch20221102java
fitnessefitnesseMatch20221219java
fitnessefitnesseMatch20230503java
fitnessefitnesseMatch20231029java
fitnessefitnesseMatch20231203java
fitnessefitnesseMatch20240219java

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

11 Jul 2026 10:33Current
7.5High risk
Vulners AI Score7.5
CVSS 3.19.8
EPSS0.00992
SSVC
7