Lucene search
Veracode Vulnerability DatabaseVERACODE:31024HistoryJun 22, 2021 - 9:15 p.m.
OS Command Injection
2021-06-2221:15:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
0.042 Low
EPSS
Percentile
92.3%
CSV is vulnerable to OS command injection. The vulnerability allows an attacker to inject arbitrary OS commands via the Server field in an HTTP response header, which is directly injected into a CSV report.
Related
cve
cve
CVE-2018-11652
2018-06-01 15:29:00
prion
prion
Input validation
2018-06-01 15:29:00
fedora
fedora
[SECURITY] Fedora 27 Update: nikto-2.1.6-1.fc27
2018-06-19 15:11:26
[SECURITY] Fedora 28 Update: nikto-2.1.6-1.fc28
2018-06-20 01:55:40
openvas
openvas
Fedora Update for nikto FEDORA-2018-15bf411a32
2018-06-20 00:00:00
Fedora Update for nikto FEDORA-2018-5f30937bed
2018-06-20 00:00:00
Mageia: Security Advisory (MGASA-2018-0310)
2022-01-28 00:00:00
zdt
zdt
Nikto 2.1.6 - CSV Injection Vulnerability
2018-06-18 00:00:00
packetstorm
packetstorm
Nikto 2.1.6 CSV Injection
2018-06-18 00:00:00
checkpoint_advisories
checkpoint_advisories
Nikto CSV Injection Remote Code Execution (CVE-2018-11652)
2018-06-20 00:00:00
osv
osv
CVE-2018-11652
2018-06-01 15:29:00
nvd
nvd
CVE-2018-11652
2018-06-01 15:29:00
debiancve
debiancve
CVE-2018-11652
2018-06-01 15:29:00
cvelist
cvelist
CVE-2018-11652
2018-06-01 15:00:00
nessus
nessus
Fedora 28 : 1:nikto (2018-5f30937bed)
2019-01-03 00:00:00
Fedora 27 : 1:nikto (2018-15bf411a32)
2018-06-20 00:00:00
ubuntucve
ubuntucve
CVE-2018-11652
2018-06-01 00:00:00
mageia
mageia
Updated nikto packages fix security vulnerability
2018-07-12 00:07:50
exploitpack
exploitpack
Nikto 2.1.6 - CSV Injection
2018-06-18 00:00:00
alpinelinux
alpinelinux
CVE-2018-11652
2018-06-01 15:29:00
exploitdb
exploitdb
Nikto 2.1.6 - CSV Injection
2018-06-18 00:00:00