Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2022-07-25 CVE-2020-28436 Command Injection vulnerability in Google-Cloudstorage-Commands Project Google-Cloudstorage-Commands
This affects all versions of package google-cloudstorage-commands.
network
low complexity
google-cloudstorage-commands-project CWE-77
critical
 9.8
9.8
2022-07-25 CVE-2020-28438 Command Injection vulnerability in Deferred-Exec Project Deferred-Exec
This affects all versions of package deferred-exec.
network
low complexity
deferred-exec-project CWE-77
critical
 9.8
9.8
2022-07-25 CVE-2020-28443 Command Injection vulnerability in Sonar-Wrapper Project Sonar-Wrapper
This affects all versions of package sonar-wrapper.
network
low complexity
sonar-wrapper-project CWE-77
critical
 9.8
9.8
2022-07-25 CVE-2020-28445 Command Injection vulnerability in Npm-Help Project Npm-Help
This affects all versions of package npm-help.
network
low complexity
npm-help-project CWE-77
critical
 9.8
9.8
2022-07-25 CVE-2020-28446 Command Injection vulnerability in Ntesseract Project Ntesseract
The package ntesseract before 0.2.9 are vulnerable to Command Injection via lib/tesseract.js.
network
low complexity
ntesseract-project CWE-77
critical
 9.8
9.8
2022-07-25 CVE-2020-28447 Command Injection vulnerability in Xopen Project Xopen
This affects all versions of package xopen.
network
low complexity
xopen-project CWE-77
critical
 9.8
9.8
2022-07-15 CVE-2022-31161 Command Injection vulnerability in Roxy-Wi
Roxy-WI is a Web interface for managing HAProxy, Nginx and Keepalived servers.
network
low complexity
roxy-wi CWE-77
critical
 9.8
9.8
2022-07-12 CVE-2022-29560 Command Injection vulnerability in Siemens products
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < 2.15.1), RUGGEDCOM ROX MX5000RE (All versions < 2.15.1), RUGGEDCOM ROX RX1400 (All versions < 2.15.1), RUGGEDCOM ROX RX1500 (All versions < 2.15.1), RUGGEDCOM ROX RX1501 (All versions < 2.15.1), RUGGEDCOM ROX RX1510 (All versions < 2.15.1), RUGGEDCOM ROX RX1511 (All versions < 2.15.1), RUGGEDCOM ROX RX1512 (All versions < 2.15.1), RUGGEDCOM ROX RX1524 (All versions < 2.15.1), RUGGEDCOM ROX RX1536 (All versions < 2.15.1), RUGGEDCOM ROX RX5000 (All versions < 2.15.1).
network
low complexity
siemens CWE-77
7.2
7.2
2022-07-07 CVE-2022-32449 Command Injection vulnerability in Totolink Ex300 V2 Firmware 4.0.3C.7484
TOTOLINK EX300_V2 V4.0.3c.7484 was discovered to contain a command injection vulnerability via the langType parameter in the setLanguageCfg function.
network
low complexity
totolink CWE-77
critical
 9.8
9.8
2022-07-07 CVE-2022-34592 Command Injection vulnerability in Wavlink Wl-Wn575A3 Firmware Rpt75A3.V4300.201217
Wavlink WL-WN575A3 RPT75A3.V4300.201217 was discovered to contain a command injection vulnerability via the function obtw.
network
low complexity
wavlink CWE-77
critical
 9.8
9.8