Weaknesses of type CWE-78
3,878 resultsCVE-2025-40949HIGHA vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (All versions < V2.17.1), RUGGEEPSS 0.5%CVE-2026-41497CRITICALIncomplete fix for CVE-2026-34935: Command Injection in MervinPraison/PraisonAIEPSS 0.5%CVE-2024-38641HIGHQTS, QuTS heroEPSS 0.5%CVE-2025-0127HIGHPAN-OS: Authenticated Admin Command Injection Vulnerability in PAN-OS VM-SeriesEPSS 0.5%CVE-2025-43885HIGHDell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) an Improper Neutralization of Special Elements used in an OS EPSS 0.5%CVE-2026-22708HIGHCursor has a Terminal Tool Allowlist Bypass via Environment VariablesEPSS 0.5%CVE-2025-23383HIGHDell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 0.5%CVE-2026-34113CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in speech_text.phpEPSS 0.5%CVE-2026-34117CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in text_to_subtitles.phpEPSS 0.5%CVE-2026-34115CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in transcribe_amazon.phpEPSS 0.5%CVE-2025-24380HIGHDell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 0.5%CVE-2026-35519HIGHPi-hole FTL affected by Remote Code Execution (RCE) via dns.hostRecord Newline InjectionEPSS 0.5%CVE-2026-34114CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in translate_text.phpEPSS 0.5%CVE-2025-24386HIGHDell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 0.5%CVE-2026-34112CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in speechmac.phpEPSS 0.5%CVE-2025-9996MEDIUMCWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause theEPSS 0.5%CVE-2024-49564HIGHDell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 0.5%CVE-2026-34109CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in speech.phpEPSS 0.5%CVE-2024-49565HIGHDell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 0.5%CVE-2024-31843MEDIUMAn issue was discovered in Italtel Embrace 1.6.4. The Web application does not properly check the parameters sent as input before they are pEPSS 0.5%