#CommandInjection

@basefortify.bsky.social

1 week ago

SEPPmail logo on a blue background representing the SEPPmail Secure Email Gateway product affected by CVE-2026-27441.

🚨 CVE-2026-27441 – CRITICAL (9.5)

OS Command Injection in SEPPmail Secure Email Gateway.

A flaw in how PDF encryption passwords are handled allows attackers to execute OS commands.

Full report:
basefortify.eu/cve_reports/...

#CVE #EmailSecurity #CommandInjection #CyberSecurity #InfoSec

0 0 1 0

Awesome Agents

@awesomeagents.bsky.social

2 weeks ago

Kali Linux's Official MCP Server Has a Textbook Command Injection Vulnerability A security researcher found that the mcp-kali-server package - shipped in Kali's official repos - interpolates AI-supplied parameters directly into shell commands with shell=True, enabling trivial remote code execution.

Kali Linux's Official MCP Server Has a Textbook Command Injection Vulnerability

awesomeagents.ai/news/kali-mcp-server-com...

#KaliLinux #Mcp #CommandInjection

0 0 0 0

Checkmarx Zero

@checkmarxzero.bsky.social

2 months ago

CVE-2026-22688: #CommandInjection in #MCP stdio configuration in #WeKnora. Authenticated users can inject commands into the MCP stdio settings, causing the server to create subprocesses and executing the injected commands. buff.ly/CyMafWP

Update to v0.2.5 or higher!

0 0 0 0

BaseFortify.eu

@basefortify.bsky.social

2 months ago

BaseFortify CVE report screenshot showing CVSS score, severity level, and affected Merit LILIN IP camera models.

⚠️ Why this matters:

Attackers can inject OS commands through vulnerable camera interfaces and gain control over surveillance devices.

🛡️ Mitigation:
• Apply vendor updates if available
• Restrict camera access
• Isolate devices on separate networks

#CommandInjection #IoTRisk #Security 🛠️

0 0 1 0

BaseFortify.eu

@basefortify.bsky.social

2 months ago

BaseFortify CVE report screenshot showing CVSS 9.3 severity, EPSS score, affected D-Link models, and mitigation guidance.

⚠️ Why this matters:

Attackers can inject OS commands through the dnscfg.cgi endpoint. Affected routers are end-of-life and will not be patched.

🛡️ Mitigation:
• Replace affected devices
• Disable remote access
• Monitor DNS changes

#RouterSecurity #CommandInjection #IoTRisk

0 0 1 0

Checkmarx Zero

@checkmarxzero.bsky.social

3 months ago

CVE-2025-67511 affects all versions of the Cybersecurity AI (CAI) framework up to and including 0.5.9. If you use it, make sure you know how to reduce the risk of damage (see link above).

#CVE #CommandInjection #AISecurity #Cybersecurity 🧵 2/4

0 0 1 0

C.Ellyson-tech career blueprint

@techwithellyson.bsky.social

3 months ago

Command Injection Probes
Inject OS commands via ; ls or && dir. Blind tests with delays. Tools: Burp Repeater. Use allow-listing for commands. #CommandInjection #EthicalHacking

0 0 0 0

Ahmandonk

@ahmandonk.bsky.social

4 months ago

📰 TP-Link Peringatkan Celah Kritis Command Injection di Perangkat Omada Gateway — Patch Segera Dirilis

👉 Baca artikel lengkap di sini: ahmandonk.com/2025/10/22/tplink-omada-...

#commandinjection #cve-2025-6541 #cve-2025-6542 #cybersecurity #firm

0 0 0 0

@matricedigitale.bsky.social

4 months ago

Cisco Talos segnala vulnerabilità critiche in OpenPLC, router Planet WGR-500 e software Cisco (RoomOS, telefoni SIP, Snort 3) con rischi DoS, injection e data leak.

#cisco #commandinjection #denialofservice #OpenPLC #PlanetWGR500
www.matricedigitale.it/2025/10/16/c...

0 0 0 0

ransomNews

@ransomnews.online

5 months ago

🚨 Critical command-injection flaw found in WD My Cloud NAS

CVE-2025-30247 lets remote attackers execute OS commands via HTTP POST on firmware < 5.31.108. Exploitation could lead to full device takeover.

WD pushed a patch to version 5.31.108.

#ransomNews #WDMyCloud #CommandInjection

4 0 0 0

CySecurity News

@cysecuritynews.bsky.social

9 months ago

Mirai Botnet Variant is Building Swarm by Exploiting DVR Flaw A command injection flaw in internet-connected digital video recorders used for CCTV monitoring is the target of a Mirai botnet malware variant, which allows hackers to take over the devices and add them to a botnet. Cybersecurity researchers at Russian cybersecurity firm Kaspersky discovered a CVE-2024-3721 exploit while analysing logs from their Linux honeypot system. The issue is a command injection vulnerability found in internet-connected digital video recorders used for CCTV surveillance. Further analysis revealed that the activity was related to a form of the Mirai botnet, which exploited this issue in TBK-manufactured DVR devices to compromise and control them. The vulnerability was initially discovered by security researcher "netsecfish" in April 2024. By adjusting parameters like mdb and mdc, the researcher released a proof-of-concept showing how a carefully designed post request to a specific URL can trigger shell command execution. Kaspersky confirmed that this precise technique is being utilised in the wild, with its Linux honeypots catching ongoing exploitation attempts linked to a Mirai botnet variant that uses netsecfish's proof-of-concept to compromise vulnerable DVRs. Nearly a decade ago, an anonymous source made the Mirai source code available online. It continues to act as the foundation for other evolving botnet efforts. The variant aimed at DVR systems expands on Mirai's initial foundation with extra features such as RC4-based string obfuscation, checks to avoid virtual machine environments, and anti-emulation methods. The exploit is used by the attackers to transmit a malicious ARM32 program to the target device, which then connects to a command-and-control server and joins the botnet. The infected device can be used to launch distributed denial-of-service attacks, forward malicious traffic, and engage in other malicious actions. This Mirai variation uses a basic RC4 technique to decode its internal strings, with the decryption key disguised using XOR. After decryption, the strings are saved in a global list and used throughout runtime. To evade analysis, the virus runs anti-virtualization and anti-emulation checks on active processes for indicators of environments such as VMware or QEMU. Last year, Netsecfish reported that around 114,000 DVR devices were vulnerable to CVE-2024-3721. Kaspersky estimates the figure to be closer to 50,000. The majority of infections associated with this Mirai variation are found in Brazil, Russia, Egypt, China, India, and Ukraine.

Mirai Botnet Variant is Building Swarm by Exploiting DVR Flaw #CommandInjection #Linux #Miraibotnet

0 0 0 0

Technijian

@technijian.bsky.social

11 months ago

Critical H3C Router Vulnerabilities Exposed – 8 Remote Command H3C routers face 8 critical remote command injection vulnerabilities affecting models like NX15 & NX400. No patch available yet. Learn how...

Critical Alert for All H3C Router Users!

🛑 Affected Models: NX15, NX30 Pro, NX400, R3010, BE18000

👉 technijian.com/cyber-securi...

#CyberSecurity #H3CRouters #CommandInjection #NetworkVulnerability #ZeroDayExploit #PatchAlert #TechNews #Infosec #Technijian

0 0 0 0

BaseFortify.eu

@basefortify.bsky.social

11 months ago

DIVD is an official #CVE Numbering Authority & has uncovered critical flaws like:
🔹 #Mennekes EV chargers (#SQLinjection & #CommandInjection)
🔹 #Enphase IQ Gateway (#PathTraversal & #RemoteCodeExecution)

Their work helps tools like #BaseFortify stay ahead of threats.

1 0 1 0

or//in

@orxxin.bsky.social

1 year ago

Completed Command Injections Command injection vulnerabilities can be leveraged to compromise a hosting server and its entire network. This module will teach you how to identify and exploit command injection vulnerabilities and h...

Completed the Command Injections module on HTB Academy - halfway through the Bug Bounty Hunter path! 🚀

academy.hackthebox.com/achievement/...

#hackthebox #htbacademy #cybersecurity #infosec #commandinjection #bugbounty #learningjourney