CWE-1116

2 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →

CVEs classified under CWE-1116page 1 of 1

CVE-2022-30351HIGHCVSS 7.5EG 7.5
2023-03-30
PDFZorro PDFZorro Online r20220428 using TCPDF 6.2.5, despite having workflows claiming to correctly remove redacted information from a supplied PDF file, does not properly sanitize this information in all cases, causing redacted informati…
CVE-2022-48339HIGHCVSS 7.8EG 9.8
2023-02-20
An issue was discovered in GNU Emacs through 28.2. htmlfontify.el has a command injection vulnerability. In the hfy-istext-command function, the parameter file and parameter srcdir come from external input, and parameters are not escaped. …

Map vulnerabilities like CWE-1116 to your infrastructure

EchelonGraph correlates every CVE — across CWE-1116 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.

Start Free Scan →