Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-17 | CVE-2024-7897 | Command Injection vulnerability in Tosei-Corporation Online Store Management System 4.0.2/4.0.3/4.0.4 A vulnerability classified as critical has been found in Tosei Online Store Management System ??????????? 4.02/4.03/4.04. | 8.8 |
| 2024-08-17 | CVE-2024-7896 | Command Injection vulnerability in Tosei-Corporation Online Store Management System 4.0.2/4.0.3/4.0.4 A vulnerability was found in Tosei Online Store Management System ??????????? 4.02/4.03/4.04. | 8.8 |
| 2024-08-15 | CVE-2024-7833 | Command Injection vulnerability in Dlink Di-8100 Firmware 16.07 A vulnerability was found in D-Link DI-8100 16.07. | 9.8 |
| 2024-08-14 | CVE-2024-42360 | Command Injection vulnerability in Wurmlab Sequenceserver SequenceServer lets you rapidly set up a BLAST+ server with an intuitive user interface for personal or group use. | 9.8 |
| 2024-08-14 | CVE-2024-5914 | Command Injection vulnerability in Paloaltonetworks Cortex Xsoar Commonscripts A command injection issue in Palo Alto Networks Cortex XSOAR CommonScripts Pack allows an unauthenticated attacker to execute arbitrary commands within the context of an integration container. | 9.8 |
| 2024-08-12 | CVE-2024-7700 | Command Injection vulnerability in Theforeman Foreman A command injection flaw was found in the "Host Init Config" template in the Foreman application via the "Install Packages" field on the "Register Host" page. | 6.5 |
| 2024-08-12 | CVE-2024-37023 | Command Injection vulnerability in Vonets products Multiple OS command injection vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an authenticated remote attacker to execute arbitrary OS commands via various endpoint parameters. | 9.9 |
| 2024-08-12 | CVE-2024-7616 | Command Injection vulnerability in Edimax Ic-5150W Firmware and Ic-6220Dc Firmware A vulnerability was found in Edimax IC-6220DC and IC-5150W up to 3.06. | 9.8 |
| 2024-08-08 | CVE-2024-3659 | Command Injection vulnerability in Kaongroup Ar2140 Firmware Firmware in KAON AR2140 routers prior to version 4.2.16 is vulnerable to a shell command injection via sending a crafted request to one of the endpoints. In order to exploit this vulnerability, one has to have access to the administrative portal of the router. | 7.2 |
| 2024-08-06 | CVE-2024-28739 | Command Injection vulnerability in Koha An issue in Koha ILS 23.05 and before allows a remote attacker to execute arbitrary code via a crafted script to the format parameter. | 7.2 |