Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-428

CWE-428

Unquoted Search Path or Element

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

418 vulnerabilities with CWE-428

CVE-2021-47825 HIGH

Acer Updater Service 1.2.3500.0 - Privilege Escalation

CVE-2021-47823 HIGH

Acer ePowerSvc 6.0.3008.0 - Privilege Escalation

CVE-2021-47822 HIGH

DiskBoss Service 12.2.18 - Privilege Escalation

CVE-2021-47810 HIGH

WibuKey Runtime 6.51 - Code Injection

CVE-2021-47809 HIGH

Disk Sorter Enterprise 13.6.12 - Code Injection

CVE-2021-47807 HIGH

Sync Breeze 13.6.18 - Code Injection

CVE-2021-47806 HIGH

Dup Scout 13.5.28 - Code Injection

CVE-2021-47805 HIGH

Disk Savvy 13.6.14 - Code Injection

CVE-2021-47804 HIGH

Wise Care 365 <5.6.7.568 - Code Injection

CVE-2021-47803 HIGH

iFunbox 4.2 - Code Injection

CVE-2021-47792 HIGH

Remote Mouse 4.002 - Privilege Escalation

CVE-2021-47790 HIGH

Active WebCam 11.5 - Code Injection

CVE-2021-47787 HIGH

TotalAV <5.15.69 - Privilege Escalation

CVE-2021-47780 HIGH

Macro Expert 4.7 - Privilege Escalation

CVE-2021-47773 HIGH

Dynojet Power Core 2.3.0 - Code Injection

CVE-2021-47767 HIGH

10-strike Network Inventory Explorer - Privilege Escalation

CVE-2021-47762 HIGH

HTTPDebuggerPro 9.11 - Code Injection

CVE-2021-47739 HIGH

Epic Games Easy Anti-Cheat 4.0 - Code Injection

CVE-2021-26735 MEDIUM

Zscaler Client Connector < 3.6 - Origin Validation Error

CVE-2021-43463 HIGH

Ext2Fsd 0.68 - Buffer Overflow

CVE-2021-43460 HIGH

System Explorer 7.0.0 - Privilege Escalation

CVE-2021-43458 HIGH

Vembu BDR 4.2.0.1 - Unquoted Service Path

CVE-2021-43457 HIGH

bVPN 2.5.1 - Path Traversal

CVE-2021-43456 HIGH

Rumble Mail Server 0.51.3135 - Buffer Overflow

CVE-2021-43455 HIGH

FreeLAN 2.2 - Buffer Overflow

Previous Page 9 of 17 Next

Details

Vulnerabilities 418

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy