Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-88

CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Parent: CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string.

326 vulnerabilities with CWE-88

CVE-2022-29971 HIGH

Magnitude Simba Amazon Athena ODBC Driver <1.1.17 - Command Injection

CVE-2022-30284 CRITICAL

python-libnmap <0.7.2 - RCE

CVE-2022-24437 CRITICAL

git-pull-or-clone <2.0.2 - Command Injection

CVE-2022-25866 HIGH

Git-php < 4.0.3 - Command Injection

CVE-2022-25648 HIGH

Git < 1.11.0 - Command Injection

CVE-2022-24828 HIGH

Composer - Code Injection

CVE-2022-28391 HIGH

BusyBox <1.35.0 - RCE

CVE-2022-24066 HIGH

simple-git <3.5.0 - Command Injection

CVE-2022-24440 HIGH

cocoapods-downloader <1.6.0, 1.6.2-1.6.3 - Command Injection

CVE-2022-21223 HIGH

Cocoapods-downloader < 1.6.2 - Command Injection

CVE-2022-21235 HIGH

Vcs < 1.1.13 - Command Injection

CVE-2022-25766 HIGH

Ungit < 1.5.20 - Remote Code Execution

CVE-2022-21187 HIGH

Libvcs < 0.11.1 - Command Injection

CVE-2022-24433 HIGH

simple-git <3.3.0 - Command Injection

CVE-2022-23915 HIGH

weblate <4.11.1 - RCE

CVE-2022-24953 MEDIUM

Crypt_GPG <1.6.7 - Info Disclosure

CVE-2022-23221 CRITICAL

H2 Console <2.1.210 - RCE

CVE-2021-1484 MEDIUM

Cisco Catalyst Sd-wan Manager - Denial of Service

CVE-2021-46850 HIGH

myVesta Control Panel <0.9.8-26-43 - Command Injection

CVE-2021-33473 CRITICAL

Dragonfly Ruby Gem <1.3.0 - Command Injection

CVE-2021-43736 CRITICAL

CmsWing CMS <1.3.7 - RCE

CVE-2021-43809 MEDIUM

Bundler <2.2.33 - Code Injection

CVE-2021-37040 CRITICAL

Huawei Harmonyos < 2.0 - Privilege Escalation

CVE-2021-41146 HIGH

qutebrowser <1.7.0 - RCE

CVE-2021-38112 HIGH

Amazon AWS WorkSpaces <3.1.8 - RCE

Previous Page 8 of 14 Next

Details

Vulnerabilities 326

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy