Fallos del tipo CWE-77
2516 resultadosCVE-2025-10323MEDIUMWavlink WL-WN578W2 wizard_rep.shtml sub_409184 command injectionEPSS 8.1%CVE-2025-10324MEDIUMWavlink WL-WN578W2 firewall.cgi sub_401C5C command injectionEPSS 8.1%CVE-2023-31985CRITICALA Command Injection vulnerability in Edimax Wireless Router N300 Firmware BR-6428NS_v4 allows attacker to execute arbitrary code via the forEPSS 8.1%CVE-2025-5440MEDIUMLinksys RE6500/RE6250/RE6300/RE6350/RE7000/RE9000 NTP os command injectionEPSS 8.1%CVE-2025-5439MEDIUMLinksys RE6500/RE6250/RE6300/RE6350/RE7000/RE9000 verifyFacebookLike os command injectionEPSS 8.1%CVE-2025-28145MEDIUMEdimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a command injection vulnerability via partition EPSS 8.0%CVE-2025-28142MEDIUMEdimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3_1.0.15 was discovered to contain a command injection vulnerability via the folderEPSS 8.0%CVE-2024-8128MEDIUMD-Link DNS-1550-04 HTTP POST Request webfile_mgr.cgi cgi_add_zip command injectionEPSS 8.0%CVE-2025-50989CRITICALOPNsense before 25.1.8 contains an authenticated command injection vulnerability in its Bridge Interface Edit endpoint (interfaces_bridge_edEPSS 8.0%CVE-2024-8133MEDIUMD-Link DNS-1550-04 HTTP POST Request hd_config.cgi cgi_FMT_R5_SpareDsk_DiskMGR command injectionEPSS 7.9%CVE-2024-8130MEDIUMD-Link DNS-1550-04 HTTP POST Request s3.cgi cgi_s3 command injectionEPSS 7.9%CVE-2024-8134MEDIUMD-Link DNS-1550-04 HTTP POST Request hd_config.cgi cgi_FMT_Std2R5_1st_DiskMGR command injectionEPSS 7.9%CVE-2024-3009MEDIUMTenda FH1205 WriteFacMac formWriteFacMac command injectionEPSS 7.9%CVE-2025-11285MEDIUMsamanhappy MCPHub serverController.ts os command injectionEPSS 7.9%CVE-2025-53832HIGH@translated/lara-mcp vulnerable to command injection in import_tmx toolEPSS 7.8%CVE-2024-7436MEDIUMD-Link DI-8100 msp_info.htm msp_info_htm command injectionEPSS 7.8%CVE-2025-28143MEDIUMEdimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3_1.0.15 was discovered to contain a command injection vulnerability via the groupnEPSS 7.7%CVE-2024-11772CRITICALCommand injection in the admin web console of Ivanti CSA before version 5.0.3 allows a remote authenticated attacker with admin privileges tEPSS 7.7%CVE-2022-42904HIGHZoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings.EPSS 7.7%CVE-2025-8818MEDIUMLinksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 setLan setDFSSetting os command injectionEPSS 7.7%