Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-15 | CVE-2020-7604 | OS Command Injection vulnerability in Pulverizr Project Pulverizr 0.5.0/0.5.1/0.7.0 pulverizr through 0.7.0 allows execution of arbitrary commands. | 9.8 |
| 2020-03-15 | CVE-2020-7603 | OS Command Injection vulnerability in Closure-Compiler-Stream Project Closure-Compiler-Stream closure-compiler-stream through 0.1.15 allows execution of arbitrary commands. | 9.8 |
| 2020-03-15 | CVE-2020-7602 | OS Command Injection vulnerability in Node-Prompt-Here Project Node-Prompt-Here 1.0.1 node-prompt-here through 1.0.1 allows execution of arbitrary commands. | 9.8 |
| 2020-03-15 | CVE-2020-7601 | OS Command Injection vulnerability in Gulp-Scss-Lint Project Gulp-Scss-Lint gulp-scss-lint through 1.0.0 allows execution of arbitrary commands. | 9.8 |
| 2020-03-12 | CVE-2019-11355 | OS Command Injection vulnerability in Polycom HDX System Software An issue was discovered in Poly (formerly Polycom) HDX 3.1.13. | 7.2 |
| 2020-03-12 | CVE-2020-9436 | OS Command Injection vulnerability in Phoenixcontact products PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER 2002T-3G through 2.05.3, TC ROUTER 3002T-4G VZW through 2.05.3, TC ROUTER 3002T-4G ATT through 2.05.3, TC CLOUD CLIENT 1002-4G through 2.03.17, and TC CLOUD CLIENT 1002-TXTX through 1.03.17 devices allow authenticated users to inject system commands through a modified POST request to a specific URL. | 8.8 |
| 2020-03-12 | CVE-2020-10390 | OS Command Injection vulnerability in Chadhaajay PHPkb 9.0 OS Command Injection in export.php (vulnerable function called from include/functions-article.php) in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to achieve Code Execution by saving the code to be executed as the wkhtmltopdf path via admin/save-settings.php. | 7.2 |
| 2020-03-12 | CVE-2019-5171 | OS Command Injection vulnerability in Wago Pfc200 Firmware 03.02.02(14) An exploitable command injection vulnerability exists in the iocheckd service ‘I/O-Check’ function of the WAGO PFC 200 Firmware version 03.02.02(14). | 7.8 |
| 2020-03-12 | CVE-2019-5170 | OS Command Injection vulnerability in Wago Pfc200 Firmware 03.02.02(14) An exploitable command injection vulnerability exists in the iocheckd service ‘I/O-Check’ function of the WAGO PFC 200 Firmware version 03.02.02(14). | 7.8 |
| 2020-03-12 | CVE-2019-5169 | OS Command Injection vulnerability in Wago Pfc200 Firmware 03.02.02(14) An exploitable command injection vulnerability exists in the iocheckd service ‘I/O-Check’ function of the WAGO PFC 200 Firmware version 03.02.02(14). | 7.8 |