Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-88 (参数注入或修改) — Vulnerability Class 141

141 vulnerabilities classified as CWE-88 (参数注入或修改). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-47611 XZ Utils on Microsoft Windows platform are vulnerable to argument injection — xz 9.4 -2024-10-02
CVE-2024-7573 Relevanssi Live Ajax Search <= 2.4 - Unauthenticated WP_Query Argument Injection — Relevanssi Live Ajax Search 5.3 Medium2024-08-28
CVE-2024-35307 Argument Injection Leading to Remote Code Execution in Realtime Graph Extension — Pandora FMS 9.8 -2024-06-10
CVE-2024-2422 LenelS2 NetBox Improper Neutralization of Argumented Delimiters — NetBox 8.8AIHighAI2024-05-30
CVE-2023-50232 Inductive Automation Ignition getParams Argument Injection Remote Code Execution Vulnerability — Ignition 8.8 -2024-05-03
CVE-2023-44452 Linux Mint Xreader CBT File Parsing Argument Injection Remote Code Execution Vulnerability — Xreader 7.8 -2024-05-03
CVE-2024-3684 Improper Privilege Management was identified in GitHub Enterprise Server that allowed privilege escalation in the Management Console — Enterprise Server 8.0 High2024-04-19
CVE-2024-32462 Flatpak vulnerable to a sandbox escape via RequestBackground portal due to bad argument parsing — flatpak 8.4 High2024-04-18
CVE-2024-3817 HashiCorp go-getter Vulnerable to Argument Injection When Fetching Remote Default Git Branches — Shared library 9.8 Critical2024-04-17
CVE-2024-3367 Argument injection to runmqsc — Checkmk 6.5 Medium2024-04-16
CVE-2024-3775 aEnrich Technology a+HRD - Argument Injection — a+HRD 5.3 Medium2024-04-15
CVE-2024-22182 Commend WS203VICM Argument Injection — WS203VICM 8.6 High2024-03-01
CVE-2024-20287 Cisco Business Wireless Access Points 安全漏洞 — Cisco Business Wireless Access Point Software 6.5 Medium2024-01-17
CVE-2023-6634 LearnPress <= 4.2.5.7 - Command Injection — LearnPress – WordPress LMS Plugin for Create and Sell Online Courses 8.1 High2024-01-11
CVE-2023-6792 PAN-OS: OS Command Injection Vulnerability in the XML API — PAN-OS 5.5 Medium2023-12-13
CVE-2023-49096 Argument Injection in FFmpeg codec parameters in Jellyfin — jellyfin 7.7 High2023-12-06
CVE-2023-6269 Argument injection vulnerability in Atos Unify OpenScape Session Border Controller, Atos Unify OpenScape Branch and Atos Unify OpenScape BCF — OpenScape Session Border Controller (SBC) 10.0 Critical2023-12-05
CVE-2023-0633 In Docker Desktop on Windows before 4.12.0 an argument injection to installer may result in LPE — Docker Desktop 7.2 High2023-09-25
CVE-2023-26143 Blamer 参数注入漏洞 — blamer 6.5 Medium2023-09-19
CVE-2023-26310 Command Injection In OPPO Service — OPPO Find X3 7.4 High2023-08-09
CVE-2023-34395 Apache Airflow ODBC Provider: Remote code execution vulnerability — Apache Airflow ODBC Provider 9.8 -2023-06-27
CVE-2022-40677 Fortinet FortiNAC 参数注入漏洞 — FortiNAC 7.2 High2023-02-16
CVE-2022-4864 Argument Injection in froxlor/froxlor — froxlor/froxlor 7.6 -2022-12-30
CVE-2022-44731 Siemens部分产品 参数注入漏洞 — SIMATIC WinCC OA V3.15 5.4 Medium2022-12-13
CVE-2022-23740 Improper Neutralization of Argument Delimiters in a Command in GitHub Enterprise Server leading to Remote Code Execution — GitHub Enterprise Server 8.8 -2022-11-23
CVE-2022-20930 Cisco SD-WAN Software Arbitrary File Corruption Vulnerability — Cisco SD-WAN vManage 6.7 Medium2022-09-30
CVE-2022-1399 Remote code execution in scheduled tasks component — CMDB 9.1 Critical2022-08-16
CVE-2022-36322 JetBrains TeamCity 参数注入漏洞 — TeamCity 5.4 Medium2022-07-20
CVE-2022-31084 Unauthenticated Remote Code Execution in ldap-account-manager — lam 8.8 -2022-06-27
CVE-2022-26532 Zyxel USG/ZyWALL 操作系统命令注入漏洞 — USG/ZyWALL series firmware 7.8 High2022-05-24

Vulnerabilities classified as CWE-88 (参数注入或修改) represent 141 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.