Weaknesses of type CWE-78
3,814 resultsCVE-2026-41922CRITICALWDR201A WiFi Extender OS Command Injection via wireless.cgiEPSS 5.0%CVE-2025-43979HIGHAn issue was discovered on FIRSTNUM JC21A-04 devices through 2.01ME/FN that allows authenticated attackers to execute arbitrary OS system coEPSS 5.0%CVE-2026-25108HIGHFileZen contains an OS command injection vulnerability. When FileZen Antivirus Check Option is enabled, a logged-in user may send a speciallEPSS 5.0%KEVCVE-2025-34087CRITICALPi-Hole AdminLTE Whitelist (now 'Web Allowlist') Remote Command ExecutionEPSS 5.0%CVE-2026-8230MEDIUMWavlink NU516U1 login.cgi sys_login1 os command injectionEPSS 4.9%CVE-2026-8227MEDIUMWavlink NU516U1 adm.cgi wzdapMesh os command injectionEPSS 4.9%CVE-2026-8229MEDIUMWavlink NU516U1 wireless.cgi WifiBasic os command injectionEPSS 4.9%CVE-2017-14429CRITICALThe DHCP client on D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) deviceEPSS 4.9%CVE-2024-0292MEDIUMTotolink LR1200GB cstecgi.cgi setOpModeCfg os command injectionEPSS 4.9%CVE-2025-50201CRITICALWeGIA OS Command Injection in debug_info.php parameter 'branch'EPSS 4.9%CVE-2018-11616—This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tencent Foxmail 7.2.9.115. User interactEPSS 4.9%CVE-2024-10919MEDIUMdidi Super-Jacoco triggerUnitCover os command injectionEPSS 4.9%CVE-2020-7350MEDIUMMetasploit Framework Plugin Libnotify Command InjectionEPSS 4.9%CVE-2024-12358MEDIUMWeiYe-Jing datax-web add os command injectionEPSS 4.8%CVE-2026-8192MEDIUMWavlink NU516U1 adm.cgi wzdap os command injectionEPSS 4.8%CVE-2022-26518CRITICALAn OS command injection vulnerability exists in the console infactory_net functionality of InHand Networks InRouter302 V3.5.37. A specially-EPSS 4.8%CVE-2024-0293MEDIUMTotolink LR1200GB cstecgi.cgi setUploadSetting os command injectionEPSS 4.8%CVE-2026-2081MEDIUMD-Link DIR-823X set_password os command injectionEPSS 4.8%CVE-2018-1167—This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Spotify Music Player 1.0.69.336. User inEPSS 4.8%CVE-2026-8228MEDIUMWavlink NU516U1 wireless.cgi advance os command injectionEPSS 4.8%