Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-88

CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Parent: CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string.

326 vulnerabilities with CWE-88

CVE-2022-47926 CRITICAL

AyaCMS 3.1.2 - Path Traversal

CVE-2022-44731 MEDIUM

SIMATIC WinCC OA - Command Injection

CVE-2022-23740 HIGH

Github Enterprise Server - Remote Code Execution

CVE-2022-45062 CRITICAL

Xfce xfce4-settings <4.16.4-4.17.1 - Command Injection

CVE-2022-42968 CRITICAL

Gitea <1.17.3 - Code Injection

CVE-2022-3140 MEDIUM

LibreOffice - RCE

CVE-2022-20930 MEDIUM

Cisco Catalyst Sd-wan Manager < 20.6.2 - Denial of Service

CVE-2022-37027 HIGH

Ahsay Cloud Backup Suite - Remote Code Execution

CVE-2022-36069 HIGH

Poetry - Info Disclosure

CVE-2022-36804 HIGH KEV

Atlassian Bitbucket Server/Data Center <7.6.17/<7.17.10/<7.21.4/<8....

CVE-2022-1399 CRITICAL

Device42 CMDB <18.01.00 - Command Injection

CVE-2022-37005 HIGH

Settings - Command Injection

CVE-2022-25973 HIGH

mc-kill-port - Code Injection

CVE-2022-36322 MEDIUM

JetBrains TeamCity <2022.04.2 - Code Injection

CVE-2022-25900 HIGH

Git-clone - Command Injection

CVE-2022-31084 HIGH

LDAP Account Manager <8.0 - Code Injection

CVE-2022-31246 MEDIUM

Electrum <4.2.2 - DoS

CVE-2022-24376 HIGH

git-promise - Command Injection

CVE-2022-26532 HIGH

Zyxel USG/ZyWALL series <4.71 - Command Injection

CVE-2022-29215 HIGH

RegionProtect <1.1.0 - Code Injection

CVE-2022-29184 HIGH

GoCD <22.1.0 - Authenticated RCE

CVE-2022-25865 HIGH

Microsoft Workspace-tools < 0.18.4 - Command Injection

CVE-2022-30240 HIGH

Magnitude Simba Amazon Redshift JDBC Driver <1.2.55 - Command Injec...

CVE-2022-30239 HIGH

Magnitude Simba Amazon Athena JDBC Driver <2.0.29 - Command Injection

CVE-2022-29972 HIGH

Magnitude Simba Amazon Redshift ODBC Driver <1.4.52 - Command Injec...

Previous Page 7 of 14 Next

Details

Vulnerabilities 326

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy