Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-428

CWE-428

Unquoted Search Path or Element

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

418 vulnerabilities with CWE-428

CVE-2022-50915 HIGH

PTPublisher 2.3.4 - Code Injection

CVE-2022-50914 HIGH

EaseUS Data Recovery <15.1.0.0 - Code Injection

CVE-2022-50913 HIGH

ITEC ITeCProteccioAppServer - Code Injection

CVE-2022-50904 HIGH

Wondershare UBackit 2.0.5 - Code Injection

CVE-2022-50903 HIGH

Wondershare MobileTrans 3.5.9 - Privilege Escalation

CVE-2022-50901 HIGH

Wondershare Dr.Fone 11.4.9 - Code Injection

CVE-2022-50900 HIGH

Wondershare Dr.Fone 12.0.18 - Code Injection

CVE-2022-50693 HIGH

Splashtop 8.71.12001.0 - Code Injection

CVE-2022-50688 HIGH

Cobian Backup Gravity 11.2.0.582 - Code Injection

CVE-2022-27592 MEDIUM

QVR Smart Client <2.4.0.0570 - RCE

CVE-2022-0357 MEDIUM

Bitdefender <26.0.10.45 - Privilege Escalation

CVE-2022-43474 MEDIUM

Intel(R) FPGAs Pro Edition <22.4 - Privilege Escalation

CVE-2022-41693 MEDIUM

Intel(R) Quartus(R) Prime Pro <22.3 - Privilege Escalation

CVE-2022-38101 MEDIUM

Intel(R) NUC Chaco Canyon BIOS <iFlashV Windows 5.13.00.2105 - Priv...

CVE-2022-34848 MEDIUM

Intel Nuc Pro Software Suite < 2.0.0.3 - Uncontrolled Search Path

CVE-2022-44264 HIGH

Dentsply Sirona Sidexis <= 4.3 - Path Traversal

CVE-2022-4258 HIGH

HIMA PC based Software - Privilege Escalation

CVE-2022-4429 MEDIUM

Avira Security < 1.1.78 - Denial of Service

CVE-2022-46662 MEDIUM

Roxio Creator LJB <12.2 - Privilege Escalation

CVE-2022-37197 HIGH

IOBit IOTransfer V4 - Unquoted Service Path

CVE-2022-36384 MEDIUM

Intel NUC Kit Wireless Adapter <22.40 - Privilege Escalation

CVE-2022-33920 HIGH

Dell GeoDrive <2.2 - Code Injection

CVE-2022-39959 HIGH

Panini Everest Engine - Privilege Escalation

CVE-2022-35292 HIGH

SAP Business One - Privilege Escalation

CVE-2022-1697 LOW

Okta Active Directory Agent <3.12.0 - Path Traversal

Previous Page 6 of 17 Next

Details

Vulnerabilities 418

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy