Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-428

CWE-428

Unquoted Search Path or Element

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

418 vulnerabilities with CWE-428

CVE-2021-47889 HIGH

Softros LAN Messenger 9.6.4 - Code Injection

CVE-2021-47887 HIGH

OKI Print Job Accounting 4.4.10 - Local Privilege Escalation

CVE-2021-47886 HIGH

Pingzapper 2.3.1 - Code Injection

CVE-2021-47884 HIGH

OKI Configuration Tool 1.6.53 - Code Injection

CVE-2021-47883 HIGH

Sandboxie Plus 0.7.2 - Privilege Escalation

CVE-2021-47882 HIGH

FreeLAN 2.2 - RCE

CVE-2021-47880 HIGH

Realtek Wireless LAN Utility 700.1631 - Privilege Escalation

CVE-2021-47879 HIGH

eBeam Interactive Suite 3.6 - Privilege Escalation

CVE-2021-47878 HIGH

eBeam Education Suite 2.5.0.9 - Code Injection

CVE-2021-47874 HIGH

VFS for Git 1.0.21014.1 - Privilege Escalation

CVE-2021-47869 HIGH

Brother BRAdmin Professional 3.75 - Local Privilege Escalation

CVE-2021-47868 HIGH

WIN-PACK PRO 4.8 - Privilege Escalation

CVE-2021-47867 HIGH

WIN-PACK PRO4.8 - Privilege Escalation

CVE-2021-47866 HIGH

WIN-PACK PRO 4.8 - Privilege Escalation

CVE-2021-47864 HIGH

OSAS Traverse Extension 11 - Path Traversal

CVE-2021-47863 HIGH

MacPaw Encrypto 1.0.1 - Code Injection

CVE-2021-47862 HIGH

Hi-Rez Studios 5.1.6.3 - Code Injection

CVE-2021-47861 HIGH

Event Log Explorer 4.9.3 - Privilege Escalation

CVE-2021-47859 HIGH

ActivIdentity 8.2 - Local Privilege Escalation

CVE-2021-47847 HIGH

Disk Sorter Server 13.6.12 - Code Injection

CVE-2021-47845 HIGH

Spy Emergency 25.0.650 - Privilege Escalation

CVE-2021-47833 HIGH

WifiHotSpot 1.0.0.0 - Code Injection

CVE-2021-47829 HIGH

DHCP Broadband 4.1.0.1503 - Code Injection

CVE-2021-47828 HIGH

BOOTP Turbo <2.0.0.1253 - Code Injection

CVE-2021-47826 HIGH

Acer Backup Manager 3.0.0.99 - Code Injection

Previous Page 8 of 17 Next

Details

Vulnerabilities 418

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy