Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-140 (分隔符转义处理不恰当) — Vulnerability Class 17

17 vulnerabilities classified as CWE-140 (分隔符转义处理不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-33457 Potential livestatus injection in prediction graph page — Checkmk 8.8 -2026-04-10
CVE-2026-33456 Potential livestatus injection in notification test — Checkmk 8.8 -2026-04-10
CVE-2026-33455 Livestatus injection in monitoring quicksearch — Checkmk 8.8 -2026-04-10
CVE-2025-52989 Junos OS and Junos OS Evolved: Annotate configuration command can be used to change the configuration — Junos OS 5.1 Medium2025-07-11
CVE-2025-32918 Livestatus injection in autocomplete endpoint — Checkmk 8.8 -2025-07-04
CVE-2025-48879 OctoPrint Vulnerable to Denial of Service through malformed HTTP request — OctoPrint 6.5 Medium2025-06-10
CVE-2024-38866 Livestatus Injection in dynmaps — Nagvis 8.8AIHighAI2025-05-27
CVE-2025-47779 Using malformed From header can forge identity with ";" or NULL in name portion — asterisk 7.7 High2025-05-22
CVE-2024-38865 Livestatus command injection in RestAPI — Checkmk 8.8AIHighAI2025-04-10
CVE-2024-42392 Improper Neutralization of Delimiters in Mongoose Web Server library — Mongoose Web Server 4.0 Medium2024-11-18
CVE-2024-42385 Improper Neutralization of Delimiters in Mongoose Web Server library — Mongoose Web Server 4.0 Medium2024-11-18
CVE-2024-42482 fish-shop/syntax-check Improper Neutralization of Delimiters — syntax-check 4.8 Medium2024-08-12
CVE-2024-6542 Livestatus injection in mknotifyd — Checkmk 6.5 Medium2024-07-22
CVE-2023-6157 Livestatus injection in ajax_search — Checkmk 7.6 High2023-11-22
CVE-2023-6156 Livestatus injection in availability timeline — Checkmk 7.6 High2023-11-22
CVE-2023-38488 Kirby vulnerable to field injection in the KirbyData text storage handler — kirby 7.1 High2023-07-27
CVE-2023-31208 Livestatus command injection in RestAPI — Checkmk 8.3 High2023-05-17

Vulnerabilities classified as CWE-140 (分隔符转义处理不恰当) represent 17 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.