Weaknesses of type CWE-78

3,864 results
CVE-2025-57639MEDIUMOS Command injection vulnerability in Tenda AC9 1.0 was discovered to contain a command injection vulnerability via the usb.samba.guest.userEPSS 1.0%CVE-2022-43758HIGHRancher: Command injection in Git packageEPSS 1.0%CVE-2020-8105CRITICALCommand Execution due to unsanitized inputEPSS 1.0%CVE-2023-1082HIGHWelotec: Command injection vulnerability in TK500v1 router seriesEPSS 1.0%CVE-2023-35174HIGHLivebook Desktop's protocol handler can be exploited to execute arbitrary command on WindowsEPSS 1.0%CVE-2024-45252CRITICALElsight – CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')EPSS 1.0%CVE-2023-34108HIGHManipulation of Internal Dovecot Variables in mailcow via crafted PasswordsEPSS 1.0%CVE-2025-10589HIGHN-Partner|N-Reporter, N-Cloud, N-Probe - OS Command InjectionEPSS 1.0%CVE-2024-45251CRITICALElsight – CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')EPSS 1.0%CVE-2026-24719MEDIUMQTS, QuTS heroEPSS 1.0%CVE-2012-10028HIGHNetwin SurgeFTP <= v23c8 Authenticated RCEEPSS 1.0%CVE-2025-14213HIGHCato's Socket WebUI is vulnerable to OS Command InjectionEPSS 1.0%CVE-2025-8693HIGHA post-authentication command injection vulnerability in the "priv" parameter of Zyxel DX3300-T0 firmware version 5.50(ABVY.6.3)C0 and earliEPSS 1.0%CVE-2025-24306HIGHImproper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in +F FS010M versions prior to V2.0.EPSS 1.0%CVE-2024-1180MEDIUMTP-Link Omada ER605 Access Control Command Injection Remote Code Execution VulnerabilityEPSS 1.0%CVE-2024-54181HIGHIBM WebSphere Automation command injectionEPSS 1.0%CVE-2024-52020HIGHNetgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the wan_gateway parameter at wiz_fix2.cgi. This vulnEPSS 1.0%CVE-2023-22280HIGHMAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancEPSS 1.0%CVE-2026-5208HIGHImproper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in coolercontroldEPSS 1.0%CVE-2025-8637MEDIUMKenwood DMX958XR Firmware Update Command Injection VulnerabilityEPSS 1.0%