• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-78

CVE-2020-13159

February 26, 2023 by

Artica Proxy before 4.30.000000 Community Edition allows OS command injection via the Netbios name, Server domain name, dhclient_mac, Hostname, or Alias field. NOTE: this may overlap CVE-2020-10818.

CVE-2020-13167

February 26, 2023 by

Netsweeper through 6.4.3 allows unauthenticated remote code execution because webadmin/tools/unixlogin.php (with certain Referer headers) launches a command line with client-supplied parameters, and allows injection of shell metacharacters.

CVE-2020-13122

February 26, 2023 by

The novish command-line interface, included in NoviFlow NoviWare before NW500.2.12 and deployed on NoviSwitch devices, is vulnerable to command injection in the “show status destination ipaddr” command. This could be used by a read-only user (monitoring group) or admin to execute commands on the operating system.

CVE-2020-13124

February 26, 2023 by

SABnzbd 2.3.9 and 3.0.0Alpha2 has a command injection vulnerability in the web configuration interface that permits an authenticated user to execute arbitrary Python commands on the underlying operating system.

CVE-2020-12774

February 26, 2023 by

D-Link DSL-7740C does not properly validate user input, which allows an authenticated LAN user to inject arbitrary command.

CVE-2020-12775

February 26, 2023 by

Hicos citizen certificate client-side component does not filter special characters for command parameters in specific web URLs. An unauthenticated remote attacker can exploit this vulnerability to perform command injection attack to execute arbitrary system command, disrupt system or terminate service.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 135
  • Go to page 136
  • Go to page 137
  • Go to page 138
  • Go to page 139
  • Interim pages omitted …
  • Go to page 342
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE