Weaknesses of type CWE-78
3,816 resultsCVE-2026-23515CRITICALRCE - Command Injection in Signal K set-system-time pluginEPSS 4.2%CVE-2023-6309MEDIUMmoses-smt mosesdecoder trans_result.php os command injectionEPSS 4.2%CVE-2026-5352MEDIUMTrendnet TEW-657BRM setup.cgi edit os command injectionEPSS 4.1%CVE-2026-7609MEDIUMTRENDnet TEW-821DAP Firmware Udpate diagnostic tools_diagnostic os command injectionEPSS 4.1%CVE-2021-21018CRITICALMagnto Commerce Unauthorized Data Modification Could Lead To Arbitrary Code ExecutionEPSS 4.1%CVE-2021-30361—The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a commEPSS 4.1%CVE-2024-53584CRITICALOpenPanel v0.3.4 was discovered to contain an OS command injection vulnerability via the timezone parameter.EPSS 4.1%CVE-2025-10774MEDIUMRuijie 6000-E10 sub_commit.php os command injectionEPSS 4.1%CVE-2019-14894HIGHA flaw was found in the CloudForms management engine version 5.10 and CloudForms management version 5.11, which triggered remote code executEPSS 4.1%CVE-2026-7096HIGHTenda HG3 formgponConf os command injectionEPSS 4.1%CVE-2025-6896MEDIUMD-Link DI-7300G+ wget_test.asp os command injectionEPSS 4.1%CVE-2022-40220HIGHAn OS command injection vulnerability exists in the httpd txt/restore.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A speEPSS 4.1%CVE-2024-2812MEDIUMTenda AC15 WriteFacMac formWriteFacMac os command injectionEPSS 4.0%CVE-2024-9001MEDIUMTOTOLINK T10 cstecgi.cgi setTracerouteCfg os command injectionEPSS 4.0%CVE-2025-11407MEDIUMD-Link DI-7001 MINI upgrade_filter.asp os command injectionEPSS 4.0%CVE-2024-51503HIGHA security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20 Agent could allow an attacker to escalate pEPSS 4.0%CVE-2026-3301CRITICALTotolink N300RH Web Management cstecgi.cgi setWebWlanIdx os command injectionEPSS 4.0%CVE-2021-33191—MiNiFi CPP arbitrary script execution is possible on the agent's host machine through the c2 protocolEPSS 4.0%CVE-2024-33896HIGHCosy+ devices running a firmware 21.x below 21.2s10 or a firmware 22.x below 22.1s3 are vulnerable to code injection due to improper parametEPSS 4.0%CVE-2026-2063MEDIUMD-Link DIR-823X Web Management set_ac_server os command injectionEPSS 4.0%