Weaknesses of type CWE-78

3,847 results
CVE-2024-1881HIGHImproper Neutralization of Special Elements used in an OS Command in significant-gravitas/autogptEPSS 1.4%CVE-2026-22222HIGHCommand Injection Vulnerability on TP-Link Archer BE230 v1.2EPSS 1.4%CVE-2026-22223HIGHCommand Injection Vulnerability on TP-Link Archer BE230 v1.2EPSS 1.4%CVE-2021-44453CRITICALmySCADA myPROEPSS 1.4%CVE-2024-51023HIGHD-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the Address parameter in the SetNetworkTomographySeEPSS 1.4%CVE-2023-27988HIGHThe post-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21(AAZF.13)C0 could allow an autheEPSS 1.4%CVE-2022-43536HIGHVulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands onEPSS 1.4%CVE-2025-7451CRITICALHgiga|iSherlock - OS Command InjectionEPSS 1.4%CVE-2025-46645MEDIUMDell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.4.0.0, LTS2025 releaseEPSS 1.4%CVE-2026-6158MEDIUMTotolink N300RH upgrade.so setUpgradeUboot os command injectionEPSS 1.4%CVE-2026-5688MEDIUMTotolink A7100RU cstecgi.cgi setDdnsCfg os command injectionEPSS 1.4%CVE-2026-1961HIGHForman: foreman: remote code execution via command injection in websocket proxyEPSS 1.4%CVE-2024-8686HIGHPAN-OS: Command Injection VulnerabilityEPSS 1.4%CVE-2023-39297HIGHQTS, QuTS hero, QuTScloudEPSS 1.4%CVE-2025-2733MEDIUMmannaandpoem OpenManus Prompt python_execute.py os command injectionEPSS 1.4%CVE-2022-23611HIGHOS command injection in iTunesRPC-RemasteredEPSS 1.4%CVE-2020-7879HIGHipTIME C200 IP Camera command injection vulnerabilityEPSS 1.4%CVE-2026-58000HIGHluci-proto-openvpn - Command Injection via cl_meta Parameter in generateKeyEPSS 1.4%CVE-2026-24893HIGHopenITCOCKPIT has Authenticated Command Injection Leading to Remote Code Execution via Host Address Macro ExpansionEPSS 1.4%CVE-2025-13943HIGHA post-authentication command injection vulnerability in the log file download function of the Zyxel EX3301-T0 firmware versions through 5.5EPSS 1.4%