Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-428

CWE-428

Unquoted Search Path or Element

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

427 vulnerabilities with CWE-428

CVE-2020-36991 HIGH

ShareMouse 5.0.43 - Privilege Escalation

CVE-2020-36990 HIGH

Input Director 1.4.3 - Privilege Escalation

CVE-2020-36989 HIGH

ForensiT AppX Management Service 2.2.0.4 - Privilege Escalation

CVE-2020-36987 HIGH

Program Access Controller 1.2.0.0 - Privilege Escalation

CVE-2020-36986 HIGH

Prey 1.9.6 - Unquoted Service Path Privilege Escalation via CronService

CVE-2020-36985 HIGH

IP Watcher 3.0.0.30 - Code Injection

CVE-2020-36984 HIGH

EPSON 1.124 - Unquoted Service Path Privilege Escalation in SENADB Service

CVE-2020-36983 HIGH

Quick 'n Easy FTP Service 3.2 - RCE

CVE-2020-36982 HIGH

Motorola Device Manager 2.5.4 - Code Injection

CVE-2020-36981 HIGH

Motorola Device Manager 2.4.5 - Code Injection

CVE-2020-36980 HIGH

SAntivirus IC <10.0.21.61 - Code Injection

CVE-2020-36979 HIGH

Atheros Coex Service App 8.0.0.255 - Privilege Escalation

CVE-2020-36977 HIGH

Wondershare Driver Install Service - Privilege Escalation

CVE-2020-36976 HIGH

Acer Global Registration Service 1.0.0.3 - Code Injection

CVE-2020-36975 HIGH

EPSON Status Monitor 3 8.0 - Unquoted Service Path Privilege Escalation via E_S60RPB.EXE

CVE-2020-36974 HIGH

Realtek Andrea RT Filters 1.0.64.7 - Code Injection

CVE-2020-36959 HIGH

IDT PC Audio 1.0.6499.0 - Privilege Escalation

CVE-2020-36958 HIGH

Kite 1.2020.1119.0 - Code Injection

CVE-2020-36957 HIGH

PDF Complete <3.5.310.2002 - Code Injection

CVE-2020-36953 HIGH

MiniTool ShadowMaker 3.2 - Local Privilege Escalation

CVE-2020-36952 HIGH

IObit Uninstaller 10 Pro - Privilege Escalation

CVE-2020-36937 HIGH

Microvirt MEMU Play 3.7.0 - Code Injection

CVE-2020-36936 HIGH

Magic Mouse 2 Utilities <2.20 - Privilege Escalation

CVE-2020-36935 HIGH

KMSpico 17.1.0.0 - Unquoted Service Path Privilege Escalation via Service KMSELDI Configuration

CVE-2020-36934 HIGH

Deep Instinct Windows Agent 1.2.24.0 - Privilege Escalation

Previous Page 12 of 18 Next

Details

Vulnerabilities 427

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy