Weaknesses of type CWE-74
4,162 resultsCVE-2026-9400MEDIUMEdimax BR-6675nD POST Request formUSBStorage command injectionEPSS 1.2%CVE-2026-7705MEDIUMJD Cloud JDCOS Service jdcap set_iptv_info command injectionEPSS 1.2%CVE-2026-8777MEDIUMEdimax BR-6428NS POST Request formStaDrvSetup command injectionEPSS 1.2%CVE-2026-9362MEDIUMEdimax EW-7438RPn Setting formConnectionSetting command injectionEPSS 1.2%CVE-2026-9363MEDIUMEdimax EW-7438RPn POST Request formEZCHNwlanSetu formEZCHNwlanSetup command injectionEPSS 1.2%CVE-2026-9379MEDIUMEdimax BR-6675nD POST Request formWpsStart command injectionEPSS 1.2%CVE-2026-9439MEDIUMEdimax BR-6675nD stainfo command injectionEPSS 1.2%CVE-2026-12810MEDIUMEdimax BR-6478AC V2 POST Request mp command injectionEPSS 1.2%CVE-2026-9361MEDIUMEdimax EW-7438RPn POST Request formAccep formAccept command injectionEPSS 1.2%CVE-2026-12809MEDIUMEdimax BR-6478AC V2 POST Request wiz_5in1_redirect command injectionEPSS 1.2%CVE-2023-29518CRITICALCode injection from view right using Invitation.InvitationCommon in xwiki-platformEPSS 1.1%CVE-2023-29526CRITICALAsync and display macro allow displaying and interacting with any document in restricted modeEPSS 1.1%CVE-2023-29512CRITICALCode injection in xwiki-platform-web-templatesEPSS 1.1%CVE-2023-27479CRITICALImproper Neutralization of Directives in Dynamically Evaluated Code in org.xwiki.platform:xwiki-platform-panels-uiEPSS 1.1%CVE-2022-36084CRITICALcruddl vulnerable to AQL injection through flexSearchEPSS 1.1%CVE-2023-29521HIGHCode injection from account/view through VFS Tree macro in xwiki-platformEPSS 1.1%CVE-2022-46162HIGHDiscourse BBCode plugin vulnerable to arbitrary CSS injectionEPSS 1.1%CVE-2022-45048HIGHApache Ranger: code execution vulnerability in policy expressionsEPSS 1.1%CVE-2026-3680MEDIUMRyuzakiShinji biome-mcp-server biome-mcp-server.ts command injectionEPSS 1.1%CVE-2026-5327MEDIUMefforthye fast-filesystem-mcp index.ts handleGetDiskUsage command injectionEPSS 1.1%