Fallos del tipo CWE-78
3786 resultadosCVE-2019-10891CRITICALAn issue was discovered in D-Link DIR-806 devices. There is a command injection in function hnap_main, which calls system() without checkingEPSS 19.4%CVE-2024-40891HIGH**UNSUPPORTED WHEN ASSIGNED**
A post-authentication command injection vulnerability in the management commands of the legacy DSL CPE Zyxel VEPSS 19.4%KEVCVE-2025-58180HIGHOctoPrint is Vulnerable to RCE Attacks via Unsanitized Filename in File UploadEPSS 19.3%CVE-2024-40890HIGH**UNSUPPORTED WHEN ASSIGNED**
A post-authentication command injection vulnerability in the CGI program of the legacy DSL CPE Zyxel VMG4325-BEPSS 19.3%KEVCVE-2013-10059HIGHD-Link Routers tools_vct.htm OS Command InjectionEPSS 19.1%CVE-2023-29778CRITICALGL.iNET MT3000 4.1.0 Release 2 is vulnerable to OS Command Injection via /usr/lib/oui-httpd/rpc/logread.EPSS 19.1%CVE-2023-24261HIGHA vulnerability in GL.iNET GL-E750 Mudi before firmware v3.216 allows authenticated attackers to execute arbitrary code via a crafted POST rEPSS 18.8%CVE-2023-23368CRITICALQTS, QuTS hero, QuTScloudEPSS 18.7%CVE-2023-26315MEDIUMXiaomi router has a command injection vulnerability after authorizationEPSS 18.6%CVE-2026-25512CRITICALGroup-Office is vulnerable to RCE due to Command Injection via TNEF Attachment HandlerEPSS 18.5%CVE-2018-15716—NUUO NVRMini2 version 3.9.1 is vulnerable to authenticated remote command injection. An attacker can send crafted requests to upgrade_handleEPSS 18.5%CVE-2019-5475—The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnEPSS 18.4%CVE-2025-9424MEDIUMRuijie WS7204-A branch_import.php os command injectionEPSS 18.3%CVE-2025-43984CRITICALAn issue was discovered on KuWFi GC111 devices (Hardware Version: CPE-LM321_V3.2, Software Version: GC111-GL-LM321_V3.0_20191211). They are EPSS 18.2%CVE-2022-42139HIGHDelta Electronics DVW-W02W2-E2 1.5.0.10 is vulnerable to Command Injection via Crafted URL.EPSS 18.2%CVE-2023-34993CRITICALA improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 through 8.6.EPSS 18.1%CVE-2023-5683MEDIUMByzoro Smart S85F Management Platform importconf.php os command injectionEPSS 18.0%CVE-2025-66398CRITICALSignal K Server has Unauthenticated State Pollution leading to Remote Code Execution (RCE)EPSS 17.9%CVE-2025-14094MEDIUMEdimax BR-6478AC V3 formSysCmd sub_44CCE4 os command injectionEPSS 17.9%CVE-2024-13129HIGHRoxy-WI roxy.py action_service os command injectionEPSS 17.8%