Vulnerability Category - 代码执行 - Code Execution - Seebug Vulnerability Platform

Vulnerability Category — Code Execution

Chinese name:: 代码执行

Detail：: 代码执行漏洞是用户通过浏览器提交执行命令，由于服务器端没有针对执行函数做过滤，导致在没有指定绝对路径的情况下就执行命令，可能会允许攻击者通过改变 $PATH 或程序执行环境的其他方面来执行一个恶意构造的代码。

Related Vulnerabilities

SSV ID	Submit Time	Level	Name	Status	Popularity \| Comments
SSV-96670	2017-10-12		FreeImage Library XMP Image Handling Code Execution Vulnerability(CVE-2016-5684)		1127 \| 0
SSV-96668	2017-10-12		Hopper Disassembler ELF Section Header Size Code Execution Vulnerability(CVE-2016-8390)		860 \| 0
SSV-96667	2017-10-12		LibTIFF PixarLogDecode Remote Code Execution Vulnerability(CVE-2016-5875)		1230 \| 0
SSV-96666	2017-10-12		LibTIFF TIFF2PDF TIFFTAG_JPEGTABLES Remote Code Execution Vulnerability(CVE-2016-5652)		1133 \| 0
SSV-96665	2017-10-12		LibTIFF Tag Extension Remote Code Execution Vulnerability(CVE-2016-8331)		1183 \| 0
SSV-96664	2017-10-12		Iceni Argus ipNameAdd Code Execution Vulnerability(CVE-2016-8335)		795 \| 0
SSV-96663	2017-10-12		Iceni Argus ipfSetColourStroke Code Execution Vulnerability(CVE-2016-8333)		748 \| 0
SSV-96662	2017-10-12		GMER Path Length Code Execution Vulnerability(CVE-2016-4289)		1384 \| 0
SSV-96660	2017-10-12		Macro-less Code Exec in MSWord		1425 \| 0
SSV-96659	2017-10-12		Outlook Home Page – Another Ruler Vector		1615 \| 0
SSV-96658	2017-10-11		seacms6.55 search.php 代码执行漏洞		2612 \| 0
SSV-96654	2017-10-11		HDF5 Group libhdf5 H5T_ARRAY Code Execution Vulnerability(CVE-2016-4330)		1148 \| 0
SSV-96653	2017-10-11		HDF5 Group libhdf5 H5Z_NBIT Code Execution Vulnerability(CVE-2016-4331)		1211 \| 0
SSV-96652	2017-10-11		HDF5 Group libhdf5 Shareable Message Type Code Execution Vulnerability(CVE-2016-4332)		1081 \| 0
SSV-96651	2017-10-11		HDF5 Group libhdf5 H5T_COMPOUND Code Execution Vulnerability(CVE-2016-4333)		1211 \| 0
SSV-96646	2017-10-11		ArcGIS Server 10.3.1: RMIClassLoader RCE		3765 \| 0
SSV-96643	2017-10-11		OrientDB 2.2.2 < 2.2.22 - Remote Code Execution		1453 \| 0
SSV-96633	2017-10-10		Computerinsel Photoline SVG Parsing Code Execution Vulnerability(CVE-2017-2920)		762 \| 0
SSV-96632	2017-10-10		Computerinsel Photoline GIF Parsing Code Execution Vulnerability(CVE-2017-2880)		841 \| 0
SSV-96631	2017-10-10		Computerinsel Photoline TGA Parsing Code Execution Vulnerability(CVE-2017-12106)		816 \| 0
SSV-96630	2017-10-10		WebKit: JSC: Incorrect for-in optimization #2(CVE-2017-7117)		1916 \| 0
SSV-96629	2017-10-10		WebKit: JSC: Incorrect optimization in BytecodeGenerator::emitGetByVal(CVE-2017-7061)		2033 \| 0
SSV-96627	2017-10-10		Apple: Multiple Race Conditions in PCIe Message Ring protocol leading to OOB Write and OOB Read(CVE-2017-7115)		924 \| 0
SSV-96626	2017-10-10		Apple: OOB NUL byte write when handling WLC_E_TRACE event packets(CVE-2017-7112)		832 \| 0
SSV-96625	2017-10-10		Apple: Heap overflow and information disclosure in "setVendorIE" when handling ioctl results(CVE-2017-7110)		854 \| 0
SSV-96624	2017-10-10		Apache Tomcat Upload Bypass / Remote Code Execution(CVE-2017-12617)		6863 \| 0
SSV-96617	2017-10-09		Mozilla Firefox WebExtensions can download and open non-executable files without user interaction(CVE-2017-7821)		1878 \| 0
SSV-96604	2017-09-29		Adobe Flash: Out-of-bounds read in applyToRange(CVE-2017-11282)		1492 \| 0
SSV-96602	2017-09-29		Adobe Flash: Out-of-bounds write in MP4 Edge Processing(CVE-2017-11281)		1638 \| 0
SSV-96601	2017-09-29		Adobe Flash: Out-of-bounds memory read in MP4 parsing(CVE-2017-11281)		1787 \| 0
SSV-96595	2017-09-28		Smart home: remote command execution (RCE)		1164 \| 0
SSV-96594	2017-09-28		LibOFX Tag Parsing Code Execution Vulnerability		757 \| 0
SSV-96592	2017-09-27		ansible-vault Yaml Load Code Execution Vulnerability		767 \| 0
SSV-96589	2017-09-26		Aerospike Database Server Set Name Code Execution Vulnerability(CVE-2016-9054)		1028 \| 0
SSV-96588	2017-09-26		Aerospike Database Server Index Name Code Execution Vulnerability(CVE-2016-9052)		810 \| 0
SSV-96586	2017-09-26		Oracle Outside In Technology PDF parser confusion Code Execution Vulnerability(CVE-2017-3271)		881 \| 0
SSV-96585	2017-09-26		Oracle Outside In Technology RTF Parsing Code Execution Vulnerability(CVE-2017-3293)		776 \| 0
SSV-96584	2017-09-26		Adobe Acrobat Reader DC jpeg decoder Remote Code Execution Vulnerability(CVE-2017-2971)		1255 \| 0
SSV-96583	2017-09-26		Libbpg BGP image decoding Code Execution Vulnerability(CVE-2016-8710)		942 \| 0
SSV-96581	2017-09-26		Nitro Pro 10 PDF Handling Code Execution Vulnerability(CVE-2016-8713)		697 \| 0
SSV-96580	2017-09-26		Nitro Pro PDF Handling Code Execution Vulnerability(CVE-2016-8709)		817 \| 0
SSV-96579	2017-09-26		Nitro Pro 10 PDF Handling Code Execution Vulnerability(CVE-2016-8711)		735 \| 0
SSV-96578	2017-09-26		FLIR Systems Multiple Vulnerabilities		1250 \| 0
SSV-96572	2017-09-22		Apple GarageBand Out of Bounds Write Code Execution Vulnerability(CVE-2017-2374)		1058 \| 0
SSV-96570	2017-09-22		Apple GarageBand Out of Bounds Write Code Execution Vulnerability(CVE-2017-2372)		966 \| 0
SSV-96569	2017-09-22		Aerospike Database Server Client Batch Request Code Execution Vulnerability(CVE-2016-9051)		835 \| 0
SSV-96568	2017-09-22		Aerospike Database Server RW Fabric Message Particle Type Code Execution Vulnerability(CVE-2016-9053)		833 \| 0
SSV-96566	2017-09-22		Ichitaro Office JTD Figure handling Code Execution Vulnerability(CVE-2017-2789)		887 \| 0
SSV-96565	2017-09-22		Ichitaro Word Processor PersistDirectory Code Execution Vulnerability(CVE-2017-2791)		802 \| 0
SSV-96564	2017-09-22		Iceni Argus PDF Inflate+LZW Decompression Heap-Based Buffer Overflow Vulnerability(CVE-2016-8387)		866 \| 0
SSV-96563	2017-09-22		Ichitaro Office Excel File Code Execution Vulnerability(CVE-2017-2790)		900 \| 0
SSV-96560	2017-09-21		Iceni Argus TrueType Font File Cmap Table Code Execution Vulnerability(CVE-2016-8386)		879 \| 0
SSV-96559	2017-09-21		Iceni Argus PDF Font-Encoding GlyphMap Adjustment Code Execution Vulnerability(CVE-2016-8388)		860 \| 0
SSV-96558	2017-09-21		Iceni Argus icnChainAlloc Signed Comparison Code Execution Vulnerability(CVE-2016-8715)		795 \| 0
SSV-96557	2017-09-20		Tomcat代码执行漏洞(CVE-2017-12615)		11781 \| 0
SSV-96554	2017-09-20		Iceni Argus PDF Uninitialized WordStyle Color Length Code Execution Vulnerability(CVE-2016-8385)		814 \| 0
SSV-96553	2017-09-20		Iceni Argus ipStringCreate Code Execution Vulnerability(CVE-2017-2777)		833 \| 0
SSV-96552	2017-09-20		Iceni Argus PDF TextToPolys Rasterization Code Execution Vulnerability(CVE-2016-8389)		805 \| 0
SSV-96551	2017-09-20		Pharos PopUp Printer Client DecodeString Code Execution Vulnerability(CVE-2017-2786)		875 \| 0
SSV-96550	2017-09-20		Pharos PopUp Printer Client memcpy Code Execution Vulnerability(CVE-2017-2787)		825 \| 0
SSV-96549	2017-09-20		Pharos PopUp Printer Client DecodeBinary Code Execution Vulnerability(CVE-2017-2788)		835 \| 0
SSV-96547	2017-09-20		Pharos PopUp Printer Client DecodeString Code Execution Vulnerability(CVE-2017-2785)		797 \| 0
SSV-96546	2017-09-20		R PDF LoadEncoding Code Execution Vulnerability(CVE-2016-8714)		1050 \| 0
SSV-96545	2017-09-20		National Instruments LabVIEW LvVarientUnflatten Code Execution Vulnerability(CVE-2017-2775)		1051 \| 0
SSV-96528	2017-09-19		ARM Mbedtls x509 ECDSA invalid public key Remote Code Execution Vulnerability(CVE-2017-2784)		966 \| 0
SSV-96527	2017-09-19		IrfanView JPEG 2000 Reference Tile Width Arbitrary Code Execution Vulnerability(CVE-2017-2813)		790 \| 0
SSV-96524	2017-09-19		AntennaHouse DMC HTMLFilter DHFSummary Code Execution Vulnerability(CVE-2016-8384)		828 \| 0
SSV-96523	2017-09-19		AntennaHouse DMC HTMLFilter FillRowFormat Code Execution Vulnerability(CVE-2017-2783)		829 \| 0
SSV-96522	2017-09-19		AntennaHouse DMC HTMLFilter iBldDirInfo Code Execution Vulnerability(CVE-2017-2792)		835 \| 0
SSV-96521	2017-09-19		AntennaHouse DMC HTMLFilter PPT DHFSummary Code Execution Vulnerability(CVE-2017-2794)		820 \| 0
SSV-96520	2017-09-18		AntennaHouse DMC HTMLFilter PPT ParseEnvironment Code Execution Vulnerability(CVE-2017-2797)		848 \| 0
SSV-96519	2017-09-18		WolfSSL library X509 Certificate Text Parsing Code Execution Vulnerability(CVE-2017-2800)		1838 \| 0
SSV-96518	2017-09-18		AntennaHouse DMC HTMLFilter UnCompressUnicode Code Execution Vulnerability(CVE-2017-2793)		824 \| 0
SSV-96517	2017-09-18		AntennaHouse DMC HTMLFilter Doc_SetSummary Code Execution Vulnerability(CVE-2016-8382)		896 \| 0
SSV-96516	2017-09-18		AntennaHouse DMC HTMLFilter Doc_GetFontTable Code Execution Vulnerability(CVE-2016-8383)		1035 \| 0
SSV-96515	2017-09-18		AntennaHouse DMC HTMLFilter Txo Code Execution Vulnerability(CVE-2017-2795)		906 \| 0
SSV-96514	2017-09-18		AntennaHouse DMC HTMLFilter GetIndexArray Code Execution Vulnerability(CVE-2017-2798)		801 \| 0
SSV-96513	2017-09-18		AntennaHouse DMC HTMLFilter AddSst Code Execution Vulnerability(CVE-2017-2799)		820 \| 0
SSV-96512	2017-09-18		PowerIso Parsing Code Execution Vulnerability(CVE-2017-2817)		1175 \| 0
SSV-96510	2017-09-18		Hancom Thinkfree NEO Hangul Word Processor HWPTAG_TAB_DEF Tab Count Code Execution Vulnerability(CVE-2017-2819)		813 \| 0
SSV-96509	2017-09-18		Artifex MuPDf JBIG2 Parser Code Execution Vulnerability(CVE-2016-8729)		1107 \| 0
SSV-96508	2017-09-18		MuPDF Fitz library font glyph scaling Code Execution Vulnerability(CVE-2016-8728)		1399 \| 0
SSV-96507	2017-09-18		Tablib Yaml Load Code Execution Vulnerability(CVE-2017-2810)		1191 \| 0
SSV-96503	2017-09-15		Foscam IP Video Camera CGIProxy.fcgi Wifi Settings Code Exectuion Vulnerability(CVE-2017-2851)		1198 \| 0
SSV-96502	2017-09-15		Foscam IP Video Camera CGIProxy.fcgi Message 0x3001 Multi-part Form Boundary Code Execution Vulnerability(CVE-2017-2830)		1136 \| 0
SSV-96487	2017-09-15		Foscam IP Video Camera WebService CGI Parameter Code Execution Vulnerability(CVE-2017-2805)		1102 \| 0
SSV-96484	2017-09-14		FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY		2209 \| 0
SSV-96482	2017-09-14		InsideSecure MatrixSSL x509 certificate IssuerDomainPolicy Remote Code Execution Vulnerability(CVE-2017-2781)		795 \| 0
SSV-96481	2017-09-14		InsideSecure MatrixSSL x509 certificate SubjectDomainPolicy Remote Code Execution Vulnerability(CVE-2017-2780)		807 \| 0
SSV-96477	2017-09-14		Nitro Pro 11 PDF Handling Code Execution Vulnerability(CVE-2016-2796)		780 \| 0
SSV-96476	2017-09-14		Poppler PDF Image Display DCTStream::readProgressiveSOF() Code Execution Vulnerability(CVE-2017-2818)		1186 \| 0
SSV-96475	2017-09-14		Poppler PDF library JPEG 2000 levels Code Execution Vulnerability(CVE-2017-2820)		1102 \| 0
SSV-96474	2017-09-14		Poppler PDF Image Display DCTStream::readScan() Code Execution Vulnerability(CVE-2017-2814)		1027 \| 0
SSV-96473	2017-09-14		Iceni Infix PDF parsing SetSize Code Execution Vulnerability(CVE-2017-2863)		788 \| 0
SSV-96471	2017-09-14		ProcessMaker Enterprise Core Code Execution Vulnerability(CVE-2016-9045)		954 \| 0
SSV-96465	2017-09-13		Corel CorelDRAW X8 EMF Parser Code Execution Vulnerability(CVE-2016-9043)		776 \| 0
SSV-96464	2017-09-13		Corel PHOTO-PAINT X8 TIFF Filter Code Execution Vulnerability(CVE-2017-2804)		820 \| 0
SSV-96463	2017-09-13		Corel PHOTO-PAINT X8 64-bit TIFF Filter Code Execution Vulnerability(CVE-2017-2803)		755 \| 0
SSV-96462	2017-09-13		Corel PHOTO-PAINT X8 GIF Filter Code Execution Vulnerability(CVE-2016-8730)		798 \| 0
SSV-96457	2017-09-13		FreeRDP Rdp Client License Recv Code Execution Vulnerability(CVE-2017-2834)		1079 \| 0

1
...
3
4
5
6
7
8
9
10
11
12
13
...
25