• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-78

CVE-2020-7752

February 26, 2023 by

This affects the package systeminformation before 4.27.11. This package is vulnerable to Command Injection. The attacker can concatenate curl’s parameters to overwrite Javascript files and then execute any OS commands.

CVE-2020-7688

February 26, 2023 by

The issue occurs because tagName user input is formatted inside the exec function is executed without any checks.

CVE-2020-7698

February 26, 2023 by

This affects the package Gerapy from 0 and before 0.9.3. The input being passed to Popen, via the project_configure endpoint, isn’t being sanitized.

CVE-2020-7712

February 26, 2023 by

This affects the package json before 10.0.0. It is possible to inject arbritary commands using the parseLookup function.

CVE-2020-7619

February 26, 2023 by

get-git-data through 1.3.1 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the arguments provided to get-git-data.

CVE-2020-7620

February 26, 2023 by

pomelo-monitor through 0.3.7 is vulnerable to Command Injection.It allows injection of arbitrary commands as part of ‘pomelo-monitor’ params.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 74
  • Go to page 75
  • Go to page 76
  • Go to page 77
  • Go to page 78
  • Interim pages omitted …
  • Go to page 342
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE