Tag

Os-Command-Injection

4 briefs RSS

SambaBox OS Command Injection Vulnerability (CVE-2026-3120)

SambaBox versions 5.1 to before 5.3 are vulnerable to OS command injection via improper control of code generation (CVE-2026-3120), potentially allowing attackers with high privileges to execute arbitrary commands on the underlying system.

SambaBox code-injection os-command-injection cve-2026-3120

2r 1t 1c 10h ago

high advisory

PraisonAI OS Command Injection Vulnerability (CVE-2026-34937)

2 rules 1 TTP 1 CVE

PraisonAI versions prior to 1.5.90 are vulnerable to OS Command Injection (CVE-2026-34937) due to insufficient escaping in the run_python() function, allowing arbitrary OS command execution via shell interpolation.

cve-2026-34937 os command injection praisonai

2r 1t 1c Apr 3, 2026

critical advisory

Ruckus Unleashed Authenticated Remote Code Execution via CVE-2023-7338

2 rules 3 TTPs 2 IOCs

CVE-2023-7338 is a remote code execution vulnerability affecting Ruckus Unleashed when gateway mode is enabled, allowing authenticated remote attackers to execute arbitrary code by sending specially crafted requests through the web-based management interface.

CVE-2023-7338 ruckus rce os command injection

2r 3t 2i Mar 26, 2026

critical advisory

Pardus OS My Computer OS Command Injection Vulnerability (CVE-2026-6849)

1 rule 1 TTP 1 CVE

CVE-2026-6849 is an OS Command Injection vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus OS My Computer versions <=0.7.5 before 0.8.0, allowing an attacker to execute arbitrary OS commands due to improper neutralization of special elements.

Pardus OS My Computer cve-2026-6849 os command injection pardus os

1r 1t 1c Jan 2, 2024