Weaknesses of type CWE-78

3,840 results
CVE-2024-5295HIGHD-Link G416 flupl self Command Injection Remote Code Execution VulnerabilityEPSS 2.0%CVE-2024-5291HIGHD-Link DIR-2150 GetDeviceSettings Target Command Injection Remote Code Execution VulnerabilityEPSS 2.0%CVE-2021-28203HIGHASUS BMC's firmware: command injection - Web Set Media Image functionEPSS 2.0%CVE-2023-40505CRITICALLG Simple Editor createThumbnailByMovie Command Injection Remote Code Execution VulnerabilityEPSS 2.0%CVE-2022-40785HIGHUnsanitized input when setting a locale file leads to shell injection in mIPC camera firmware 5.3.1.2003161406. This allows an attacker to gEPSS 2.0%CVE-2022-44843CRITICALTOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the port parameter in the setting/setEPSS 2.0%CVE-2022-48121CRITICALTOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the rsabits parameter in the setting/EPSS 2.0%CVE-2022-48124CRITICALTOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the FileName parameter in the settingEPSS 2.0%CVE-2022-44844CRITICALTOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the pass parameter in the setting/setEPSS 2.0%CVE-2022-48126CRITICALTOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the username parameter in the settingEPSS 2.0%CVE-2022-48122CRITICALTOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the dayvalid parameter in the settingEPSS 2.0%CVE-2022-48123CRITICALTOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the servername parameter in the settiEPSS 2.0%CVE-2022-48125CRITICALTOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the password parameter in the settingEPSS 2.0%CVE-2026-28269MEDIUMKiteworks Core has an OS Command InjectionEPSS 2.0%CVE-2021-4144TP-Link wifi router TL-WR802N V4(JP), with firmware version prior to 211202, is vulnerable to OS command injection.EPSS 1.9%CVE-2026-7121CRITICALTotolink A8000RU CGI cstecgi.cgi setWizardCfg os command injectionEPSS 1.9%CVE-2022-43643HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-825 1.0.9/EE routers.EPSS 1.9%CVE-2020-36762MEDIUMONS Digital RAS Collection Instrument comment.yml jobs os command injectionEPSS 1.9%CVE-2023-47618HIGHA post authentication command execution vulnerability exists in the web filtering functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1EPSS 1.9%CVE-2023-3975HIGHOS Command Injection in jgraph/drawioEPSS 1.9%