Vulnerabilities > Argument Injection or Modification
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-08-17 | CVE-2022-1399 | Argument Injection or Modification vulnerability in Device42 Cmdb An Argument Injection or Modification vulnerability in the "Change Secret" username field as used in the Discovery component of Device42 CMDB allows a local attacker to run arbitrary code on the appliance with root privileges. | 9.1 |
2022-08-10 | CVE-2022-37005 | Argument Injection or Modification vulnerability in Huawei Emui, Harmonyos and Magic UI The Settings application has an argument injection vulnerability. | 7.5 |
2022-08-10 | CVE-2022-25973 | Argument Injection or Modification vulnerability in Mc-Kill-Port Project Mc-Kill-Port All versions of package mc-kill-port are vulnerable to Arbitrary Command Execution via the kill function, due to missing sanitization of the port argument. | 7.8 |
2022-07-20 | CVE-2022-36322 | Argument Injection or Modification vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.04.2 build parameter injection was possible | 8.8 |
2022-07-13 | CVE-2019-10800 | Argument Injection or Modification vulnerability in Codecov Codecov-Python This affects the package codecov before 2.0.16. | 6.5 |
2022-07-01 | CVE-2022-25900 | Argument Injection or Modification vulnerability in Git-Clone Project Git-Clone All versions of package git-clone are vulnerable to Command Injection due to insecure usage of the --upload-pack feature of git. | 9.8 |
2022-06-17 | CVE-2022-31246 | Argument Injection or Modification vulnerability in Electrum paymentrequest.py in Electrum before 4.2.2 allows a file:// URL in the r parameter of a payment request (e.g., within QR code data). | 5.5 |
2022-06-10 | CVE-2022-24376 | Argument Injection or Modification vulnerability in Git-Promise Project Git-Promise All versions of package git-promise are vulnerable to Command Injection due to an inappropriate fix of a prior [vulnerability](https://security.snyk.io/vuln/SNYK-JS-GITPROMISE-567476) in this package. | 9.8 |
2022-06-02 | CVE-2021-33473 | Argument Injection or Modification vulnerability in Dragonfly Project Dragonfly 1.3.0 An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verify_url option is disabled. | 9.1 |
2022-05-21 | CVE-2022-29215 | Argument Injection or Modification vulnerability in Regionprotect Project Regionprotect RegionProtect is a plugin that allows users to manage certain events in certain regions of the world. | 7.5 |