CVE-2026-9277 | shell-quote up to 1.8.3 os command injection

Inserito da Angelo Barbosa | Mag 22, 2026 | CVE

A vulnerability categorized as critical has been discovered in shell-quote up to 1.8.3. This impacts the function quote. Such manipulation leads to os command injection.

This vulnerability is listed as CVE-2026-9277. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.

CVE-2026-9277 | shell-quote up to 1.8.3 os command injection

Post correlati

CVE-2024-37311 | CollaboraOnline up to 22.05.23.0/23.05.14-0/24.04.4.2 coolwsd certificate validation (GHSA-hvhm-5c44-977x)

CVE-2024-49645 | Ilias Gomatos Affiliate Platform Plugin up to 1.4.8 on WordPress cross site scripting

CVE-2026-28537 | Huawei HarmonyOS 6.0.0 Window double free

CVE-2024-34923 | Avocent DSR2030/SVIP1020 cross site scripting