CVE-2026-44724 high 7.8
7.8
15d ago
Systeminformation vulnerable to Linux command injection in networkInterfaces() via unsanitized NetworkManager connection profile name
npm
CVE-2021-21315 unknown —
1.5
5y ago
In this vulnerability, an attacker can send a malicious payload that will exploit the name parameter. After successful exploitation, attackers can execute remote.
npm
CVE-2026-26318 unknown —
—
3mo ago
Command Injection via Unsanitized `locate` Output in `versions()` — systeminformation
npm
CVE-2026-26280 unknown —
—
3mo ago
Systeminformation has a Command Injection via unsanitized interface parameter in wifi.js retry path
npm
CVE-2025-68154 unknown —
—
5mo ago
systeminformation has a Command Injection vulnerability in fsSize() function on Windows
npm
CVE-2024-56334 unknown —
—
1y ago
Systeminformation has command injection vulnerability in getWindowsIEEE8021x (SSID)
npm
CVE-2023-42810 unknown —
—
3y ago
systeminformation SSID Command Injection Vulnerability
npm
CVE-2020-7778 unknown —
—
4y ago
OS Command Injection in systeminformation
npm
CVE-2021-21388 unknown —
—
5y ago
Command Injection Vulnerability in systeminformation
npm
CVE-2020-26274 unknown —
—
6y ago
Command Injection Vulnerability in systeminformation
npm
CVE-2020-26245 unknown —
—
6y ago
Prototype Pollution in systeminformation
npm
CVE-2020-26300 unknown —
—
6y ago
Command Injection in systeminformation
npm
CVE-2020-7752 unknown —
—
6y ago
systeminformation command injection vulnerability
npm