Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-428

CWE-428

Unquoted Search Path or Element

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

427 vulnerabilities with CWE-428

CVE-2017-14019 MEDIUM

Progea Movicon <11.5.1181 - Privilege Escalation

CVE-2017-15383 HIGH

Nero 7.10.1.0 - Unquoted Search Path Privilege Escalation via Trojan Horse Nero.exe

CVE-2017-12730 HIGH

mySCADA myPRO <7.0.26 - Code Injection

CVE-2017-13993 HIGH

i-SENS SmartLog Diabetes Management Software <2.4.0 - Code Injection

CVE-2017-3757 HIGH

ElanTech Touchpad Driver - Unquoted Service Path Privilege Escalation

CVE-2017-9644 HIGH

ALC WebCTRL <6.5 - Code Injection

CVE-2017-3751 HIGH

ThinkPad Compact USB Keyboard with TrackPoint <1.5.5.0 - Code Injec...

CVE-2017-9247 HIGH

Sierra Wireless Windows Mobile Broadband Driver Package - Privilege...

CVE-2017-7180 HIGH

Net Monitor for Employees Pro <5.3.4 - Auth Bypass

CVE-2017-3005 HIGH

Adobe Photoshop <CC 2017 - Buffer Overflow

CVE-2017-5873 MEDIUM

Unisys s-Par <4.4.20 - Privilege Escalation

CVE-2016-20061 HIGH

sheed AntiVirus 2.3 Unquoted Service Path Privilege Escalation

CVE-2016-20060 HIGH

Hotspot Shield 6.0.3 Unquoted Service Path Privilege Escalation

CVE-2016-20059 HIGH

IObit Malware Fighter 4.3.1 Unquoted Service Path Privilege Escalation

CVE-2016-20058 HIGH

Netgate AMITI Antivirus build 23.0.305 Unquoted Service Path Privilege Escalation

CVE-2016-20057 HIGH

NETGATE Registry Cleaner build 16.0.205 Unquoted Service Path Privilege Escalation

CVE-2016-20056 HIGH

Spy Emergency build 23.0.205 Unquoted Service Path Privilege Escalation

CVE-2016-20055 HIGH

IObit Advanced SystemCare 10.0.2 Unquoted Service Path Privilege Escalation

CVE-2016-15003 MEDIUM

FileZilla Client 3.17.0.0 - Unquoted Search Path

CVE-2016-8225 HIGH

Lenovo Edge & Lenovo Slim USB Keyboard Driver <1.21 - Privilege Esc...

CVE-2016-6935 HIGH

Adobe Creative Cloud Desktop <3.8.0.310 - Privilege Escalation

CVE-2016-5793 HIGH

Moxa Active OPC Server <2.4.19 - Privilege Escalation

Dell SonicWall NetExtender <8.0.238 - Privilege Escalation

CVE-2014-5455 MEDIUM

ptservice <3.0 - Privilege Escalation

CVE-2014-0759 MEDIUM

Schneider Electric Floating License Manager <1.4.0 - Privilege Esca...

Previous Page 17 of 18 Next

Details

Vulnerabilities 427

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy