Vulnerabilities > Argument Injection or Modification

DATE CVE VULNERABILITY TITLE RISK
2022-08-17 CVE-2022-1399 Argument Injection or Modification vulnerability in Device42 Cmdb
An Argument Injection or Modification vulnerability in the "Change Secret" username field as used in the Discovery component of Device42 CMDB allows a local attacker to run arbitrary code on the appliance with root privileges.
network
low complexity
device42 CWE-88
critical
9.1
2022-08-10 CVE-2022-37005 Argument Injection or Modification vulnerability in Huawei Emui, Harmonyos and Magic UI
The Settings application has an argument injection vulnerability.
network
low complexity
huawei CWE-88
7.5
2022-08-10 CVE-2022-25973 Argument Injection or Modification vulnerability in Mc-Kill-Port Project Mc-Kill-Port
All versions of package mc-kill-port are vulnerable to Arbitrary Command Execution via the kill function, due to missing sanitization of the port argument.
local
low complexity
mc-kill-port-project CWE-88
7.8
2022-07-20 CVE-2022-36322 Argument Injection or Modification vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible
network
low complexity
jetbrains CWE-88
8.8
2022-07-13 CVE-2019-10800 Argument Injection or Modification vulnerability in Codecov Codecov-Python
This affects the package codecov before 2.0.16.
network
low complexity
codecov CWE-88
6.5
2022-07-01 CVE-2022-25900 Argument Injection or Modification vulnerability in Git-Clone Project Git-Clone
All versions of package git-clone are vulnerable to Command Injection due to insecure usage of the --upload-pack feature of git.
network
low complexity
git-clone-project CWE-88
critical
9.8
2022-06-17 CVE-2022-31246 Argument Injection or Modification vulnerability in Electrum
paymentrequest.py in Electrum before 4.2.2 allows a file:// URL in the r parameter of a payment request (e.g., within QR code data).
local
low complexity
electrum CWE-88
5.5
2022-06-10 CVE-2022-24376 Argument Injection or Modification vulnerability in Git-Promise Project Git-Promise
All versions of package git-promise are vulnerable to Command Injection due to an inappropriate fix of a prior [vulnerability](https://security.snyk.io/vuln/SNYK-JS-GITPROMISE-567476) in this package.
network
low complexity
git-promise-project CWE-88
critical
9.8
2022-06-02 CVE-2021-33473 Argument Injection or Modification vulnerability in Dragonfly Project Dragonfly 1.3.0
An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verify_url option is disabled.
network
low complexity
dragonfly-project CWE-88
critical
9.1
2022-05-21 CVE-2022-29215 Argument Injection or Modification vulnerability in Regionprotect Project Regionprotect
RegionProtect is a plugin that allows users to manage certain events in certain regions of the world.
network
low complexity
regionprotect-project CWE-88
7.5