Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-88

CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Parent: CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string.

326 vulnerabilities with CWE-88

CVE-2021-41316 HIGH

Device42 Main Appliance <17.05.01 - Code Injection

CVE-2021-34718 HIGH

Cisco IOS XR - Privilege Escalation

CVE-2021-21814 HIGH

ATT XMill - Buffer Overflow via Command Line Argument

CVE-2021-3045 MEDIUM

Palo Alto Networks PAN-OS <8.1.19, <9.0.14, <9.1.10 - Command Injec...

CVE-2021-3540 MEDIUM

Ivanti MobileIron Core <11.1.0.0 - RCE

CVE-2021-34816 HIGH

Etherpad 1.8.13 - Command Injection

CVE-2021-36122 HIGH

Echo ShareCare 8.15.5 - Command Injection

CVE-2021-3256 MEDIUM

KuaiFanCMS V5.x - Info Disclosure

CVE-2021-33564 CRITICAL

Dragonfly <1.4.0 - Command Injection

CVE-2021-1531 HIGH

Cisco Modeling Labs - Command Injection

CVE-2021-31909 CRITICAL

Jetbrains Teamcity < 2020.2.3 - Remote Code Execution

CVE-2021-29472 HIGH

Composer < 1.10.22 - Remote Code Execution

CVE-2021-29461 HIGH

Demon1a Discord-recon - Remote Code Execution

CVE-2021-1485 MEDIUM

Cisco IOS XR - Command Injection

CVE-2021-21386 CRITICAL

APKLeaks <2.0.3 - RCE

CVE-2021-1454 MEDIUM

Cisco IOS XE SD-WAN - Privilege Escalation

CVE-2021-1383 MEDIUM

Cisco IOS XE SD-WAN - Privilege Escalation

CVE-2021-21384 MEDIUM

shescape <1.1.3 - Code Injection

CVE-2021-24030 CRITICAL

Facebook Gameroom <1.26.0 - Code Injection

CVE-2021-26937 CRITICAL

GNU Screen < 4.8.0 - Denial of Service

CVE-2021-3401 CRITICAL

Bitcoin Core <0.19.0 - RCE

CVE-2020-7851 HIGH

Innorix Web-Based File Transfer Solution <9.2.18.385 - RCE

CVE-2020-7850 HIGH

NBBDownloader.ocx - RCE

CVE-2020-21224 CRITICAL

Inspur Clusterengine - Remote Code Execution

CVE-2020-35136 HIGH

Dolibarr <12.0.3 - Authenticated RCE

Previous Page 9 of 14 Next

Details

Vulnerabilities 326

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy