Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-02 | CVE-2017-18400 | Command Injection vulnerability in Cpanel cPanel before 68.0.15 allows local root code execution via cpdavd (SEC-333). | 7.8 |
| 2019-08-01 | CVE-2016-10849 | Command Injection vulnerability in Cpanel cPanel before 11.54.0.4 allows certain file-chmod operations in scripts/secureit (SEC-82). | 6.5 |
| 2019-08-01 | CVE-2016-10843 | Command Injection vulnerability in Cpanel cPanel before 11.54.0.4 allows code execution in the context of shared users via JSON-API (SEC-76). | 8.1 |
| 2019-07-25 | CVE-2019-1010174 | Command Injection vulnerability in multiple products CImg The CImg Library v.2.3.3 and earlier is affected by: command injection. | 9.8 |
| 2019-07-18 | CVE-2019-7850 | Command Injection vulnerability in Adobe Campaign Adobe Campaign Classic version 18.10.5-8984 and earlier versions have a Command injection vulnerability. | 9.8 |
| 2019-07-18 | CVE-2016-10762 | Command Injection vulnerability in Automattic Camptix Event Ticketing The CampTix Event Ticketing plugin before 1.5 for WordPress allows CSV injection when the export tool is used. | 7.5 |
| 2019-07-17 | CVE-2019-11535 | Command Injection vulnerability in Linksys Re6300 Firmware and Re6400 Firmware Unsanitized user input in the web interface for Linksys WiFi extender products (RE6400 and RE6300 through 1.2.04.022) allows for remote command execution. | 9.8 |
| 2019-07-10 | CVE-2019-5446 | Command Injection vulnerability in UI Edgeswitch Firmware 1.7.3 Command Injection in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to execute commands as root. | 7.2 |
| 2019-07-02 | CVE-2019-6622 | Command Injection vulnerability in F5 products On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.5, 13.0.0-13.1.1.4, 12.1.0-12.1.4.1, and 11.5.1-11.6.4, an undisclosed iControl REST worker is vulnerable to command injection by an administrator or resource administrator user. | 7.2 |
| 2019-07-02 | CVE-2017-8413 | Command Injection vulnerability in Dlink Dcs-1100 Firmware and Dcs-1130 Firmware An issue was discovered on D-Link DCS-1100 and DCS-1130 devices. | 8.8 |