Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-03 | CVE-2019-6739 | Command Injection vulnerability in Malwarebytes Antimalware 3.6.1.2711 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Malwarebytes Antimalware 3.6.1.2711. | 8.8 |
| 2019-06-03 | CVE-2019-12591 | Command Injection vulnerability in Netgear Insight NETGEAR Insight Cloud with firmware before Insight 5.6 allows remote authenticated users to achieve command injection. | 7.6 |
| 2019-05-23 | CVE-2019-10854 | Command Injection vulnerability in Computrols Building Automation Software Computrols CBAS 18.0.0 allows Authenticated Command Injection. | 8.8 |
| 2019-05-22 | CVE-2018-7826 | Command Injection vulnerability in Schneider-Electric products A Command Injection vulnerability exists in the web-based GUI of the 1st Gen Pelco Sarix Enhanced Camera that could allow a remote attacker to execute arbitrary commands. | 8.8 |
| 2019-05-22 | CVE-2018-7825 | Command Injection vulnerability in Schneider-Electric products A Command Injection vulnerability exists in the web-based GUI of the 1st Gen PelcoSarix Enhanced Camera that could allow a remote attacker to execute arbitrary commands. | 8.8 |
| 2019-05-15 | CVE-2019-10640 | Command Injection vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.7.10, 11.8.x before 11.8.6, and 11.9.x before 11.9.4. | 7.5 |
| 2019-04-26 | CVE-2019-6689 | Command Injection vulnerability in Dillonkane Tidal Workload Automation 3.2.0.5 An issue was discovered in Dillon Kane Tidal Workload Automation Agent 3.2.0.5 (formerly known as Cisco Workload Automation or CWA). | 7.8 |
| 2019-04-24 | CVE-2019-11217 | Command Injection vulnerability in Bonobogitserver Bonobo GIT Server The GitController in Jakub Chodounsky Bonobo Git Server before 6.5.0 allows execution of arbitrary commands in the context of the web server via a crafted http request. | 9.8 |
| 2019-04-23 | CVE-2019-11076 | Command Injection vulnerability in Cribl 1.5.0 Cribl UI 1.5.0 allows remote attackers to run arbitrary commands via an unauthenticated web request. | 9.8 |
| 2019-03-26 | CVE-2019-9743 | Command Injection vulnerability in Phoenixcontact products An issue was discovered on PHOENIX CONTACT RAD-80211-XD and RAD-80211-XD/HP-BUS devices. | 8.8 |