• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-77

CVE-2022-22308

February 23, 2023 by

IBM Planning Analytics 2.0 is vulnerable to a Remote File Include (RFI) attack. User input could be passed into file include commands and the web application could be tricked into including remote files with malicious code. IBM X-Force ID: 216891.

CVE-2022-21941

February 23, 2023 by

All versions of iSTAR Ultra prior to version 6.8.9.CU01 are vulnerable to a command injection that could allow an unauthenticated user root access to the system.

CVE-2022-21810

February 23, 2023 by

All versions of the package smartctl are vulnerable to Command Injection via the info method due to improper input sanitization.

CVE-2022-2143

February 23, 2023 by

The affected product is vulnerable to two instances of command injection, which may allow an attacker to remotely execute arbitrary code.

CVE-2022-21165

February 23, 2023 by

All versions of package font-converter are vulnerable to Arbitrary Command Injection due to missing sanitization of input that potentially flows into the child_process.exec() function.

CVE-2022-21186

February 23, 2023 by

The package @acrontum/filesystem-template before 0.0.2 are vulnerable to Arbitrary Command Injection due to the fetchRepo API missing sanitization of the href field of external input.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 161
  • Go to page 162
  • Go to page 163
  • Go to page 164
  • Go to page 165
  • Interim pages omitted …
  • Go to page 172
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE