Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-14 | CVE-2019-12104 | Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16/151021/160330 The web-based configuration interface of the TP-Link M7350 V3 with firmware before 190531 is affected by several post-authentication command injection vulnerabilities. | 8.8 |
| 2019-08-09 | CVE-2019-12805 | Command Injection vulnerability in Ncsoft NC Launcher2 2.4.1.691 NCSOFT Game Launcher, NC Launcher2 2.4.1.691 and earlier versions have a vulnerability in the custom protocol handler that could allow remote attacker to execute arbitrary command. | 8.8 |
| 2019-08-07 | CVE-2019-14745 | Command Injection vulnerability in multiple products In radare2 before 3.7.0, a command injection vulnerability exists in bin_symbols() in libr/core/cbin.c. | 7.8 |
| 2019-08-02 | CVE-2017-18442 | Command Injection vulnerability in Cpanel cPanel before 64.0.21 allows demo accounts to execute Cpanel::SPFUI API commands (SEC-246). | 5.3 |
| 2019-08-02 | CVE-2017-18400 | Command Injection vulnerability in Cpanel cPanel before 68.0.15 allows local root code execution via cpdavd (SEC-333). | 7.8 |
| 2019-08-01 | CVE-2016-10849 | Command Injection vulnerability in Cpanel cPanel before 11.54.0.4 allows certain file-chmod operations in scripts/secureit (SEC-82). | 6.5 |
| 2019-08-01 | CVE-2016-10843 | Command Injection vulnerability in Cpanel cPanel before 11.54.0.4 allows code execution in the context of shared users via JSON-API (SEC-76). | 8.1 |
| 2019-07-25 | CVE-2019-1010174 | Command Injection vulnerability in multiple products CImg The CImg Library v.2.3.3 and earlier is affected by: command injection. | 9.8 |
| 2019-07-18 | CVE-2019-7850 | Command Injection vulnerability in Adobe Campaign Adobe Campaign Classic version 18.10.5-8984 and earlier versions have a Command injection vulnerability. | 9.8 |
| 2019-07-18 | CVE-2016-10762 | Command Injection vulnerability in Automattic Camptix Event Ticketing The CampTix Event Ticketing plugin before 1.5 for WordPress allows CSV injection when the export tool is used. | 7.5 |