Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-88

CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Parent: CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string.

326 vulnerabilities with CWE-88

CVE-2024-52301 HIGH

Laravel - Info Disclosure

CVE-2024-47553 CRITICAL

Siemens SINEC Security Monitor < V4.9.0 - Code Injection

CVE-2024-21533 MEDIUM

ggit - Command Injection

CVE-2024-20444 MEDIUM

Cisco Nexus Dashboard Fabric Controller - Command Injection

CVE-2024-47611 MEDIUM

XZ Utils <5.6.2 - Command Injection

CVE-2024-43402 HIGH

Rust <1.81.0 - Command Injection

CVE-2024-7573 MEDIUM

Relevanssi Live Ajax Search <2.4 - Command Injection

CVE-2024-41711 MEDIUM

Mitel 6800-6900w Series - Command Injection

CVE-2024-41710 HIGH KEV

Mitel 6800-6900w Series - Command Injection

CVE-2024-39933 HIGH

Gogs <0.13.0 - Command Injection

CVE-2024-39930 CRITICAL

Gogs < 0.13.0 - Remote Code Execution

CVE-2024-35307 CRITICAL

Artica Pandora Fms < 777 - Remote Code Execution

CVE-2024-2422 HIGH

LenelS2 NetBox <5.6.1 - Authenticated RCE

CVE-2024-31966 MEDIUM

Mitel <6.3.3 - Command Injection

CVE-2024-32884 MEDIUM

Crates.io Gix-transport < 0.42.0 - Command Injection

CVE-2024-3684 HIGH

Github Enterprise Server < 3.9.13 - SSRF

CVE-2024-32462 HIGH

Flatpak <1.10.9-1.15.8 - RCE

CVE-2024-3817 CRITICAL

HashiCorp's go-getter - Code Injection

CVE-2024-3367 MEDIUM

Checkmk <2.2.0p26,<2.3.0b5 - Command Injection

CVE-2024-3775 MEDIUM

aEnrich Technology a+HRD - Code Injection

CVE-2024-24576 CRITICAL

Rust <1.77.2 - Command Injection

CVE-2024-22182 HIGH

Commend WS203VICM - DoS

CVE-2024-23731 CRITICAL

Embedchain <0.1.57 - RCE

CVE-2024-20287 MEDIUM

Cisco WAP371 Wireless-AC/N Dual Radio - Command Injection

CVE-2023-50232 HIGH

Inductiveautomation Ignition < 8.1.33 - Remote Code Execution

Previous Page 5 of 14 Next

Details

Vulnerabilities 326

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy