Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2021-04-18 CVE-2021-23380 OS Command Injection vulnerability in Roar-Pidusage Project Roar-Pidusage
This affects all versions of package roar-pidusage.
network
low complexity
roar-pidusage-project CWE-78
7.3
7.3
2021-04-18 CVE-2021-23379 OS Command Injection vulnerability in Portkiller Project Portkiller
This affects all versions of package portkiller.
network
low complexity
portkiller-project CWE-78
critical
 9.8
9.8
2021-04-18 CVE-2021-23378 OS Command Injection vulnerability in Picotts Project Picotts
This affects all versions of package picotts.
network
low complexity
picotts-project CWE-78
critical
 9.8
9.8
2021-04-18 CVE-2021-23377 OS Command Injection vulnerability in Onion-Oled-Js Project Onion-Oled-Js
This affects all versions of package onion-oled-js.
network
low complexity
onion-oled-js-project CWE-78
critical
 9.8
9.8
2021-04-18 CVE-2021-23376 OS Command Injection vulnerability in Ffmpegdotjs Project Ffmpegdotjs
This affects all versions of package ffmpegdotjs.
network
low complexity
ffmpegdotjs-project CWE-78
critical
 9.8
9.8
2021-04-18 CVE-2021-23375 OS Command Injection vulnerability in Psnode Project Psnode
This affects all versions of package psnode.
network
low complexity
psnode-project CWE-78
critical
 9.8
9.8
2021-04-18 CVE-2021-23374 OS Command Injection vulnerability in Ps-Visitor Project Ps-Visitor
This affects all versions of package ps-visitor.
network
low complexity
ps-visitor-project CWE-78
critical
 9.8
9.8
2021-04-16 CVE-2021-27692 OS Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Command Injection in Tenda G1 and G3 routers with firmware versions v15.11.0.17(9502)_CN or v15.11.0.16(9024)_CN allows remote attackers to execute arbitrary OS commands via a crafted "action/umountUSBPartition" request.
network
low complexity
tendacn CWE-78
critical
 9.8
9.8
2021-04-16 CVE-2021-27691 OS Command Injection vulnerability in Tendacn G0 Firmware, G1 Firmware and G3 Firmware
Command Injection in Tenda G0 routers with firmware versions v15.11.0.6(9039)_CN and v15.11.0.5(5876)_CN , and Tenda G1 and G3 routers with firmware versions v15.11.0.17(9502)_CN or v15.11.0.16(9024)_CN allows remote attackers to execute arbitrary OS commands via a crafted action/setDebugCfg request.
network
low complexity
tendacn CWE-78
critical
 9.8
9.8
2021-04-14 CVE-2021-29449 OS Command Injection vulnerability in Pi-Hole
Pi-hole is a Linux network-level advertisement and Internet tracker blocking application.
local
low complexity
pi-hole CWE-78
7.8
7.8