Fallos del tipo CWE-78
3797 resultadosCVE-2022-36509HIGHH3C GR3200 MiniGR1B0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.EPSS 12.3%CVE-2022-36510HIGHH3C GR2200 MiniGR1A0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.EPSS 12.3%CVE-2025-6770HIGHOS command injection in Ivanti Endpoint ManagerEPSS 12.3%CVE-2025-15471CRITICALTRENDnet TEW-713RE formFSrvX os command injectionEPSS 12.1%CVE-2025-10441MEDIUMD-Link DI-8100G/DI-8200G/DI-8003G jhttpd version_upgrade.asp sub_433F7C os command injectionEPSS 12.1%CVE-2025-10440MEDIUMD-Link DI-8100/DI-8100G/DI-8200/DI-8200G/DI-8003/DI-8003G jhttpd usb_paswd.asp sub_4621DC os command injectionEPSS 12.1%CVE-2013-10048CRITICALD-Link Devices command.php Unauthenticated RCEEPSS 12.1%CVE-2026-35216CRITICALBudibase: Unauthenticated Remote Code Execution via Webhook Trigger and Bash Automation StepEPSS 12.0%CVE-2021-33990CRITICALLiferay Portal 6.2.5 allows Command=FileUpload&Type=File&CurrentFolder=/ requests when frmfolders.html exists. NOTE: The vendor disputes thiEPSS 11.9%CVE-2013-10069CRITICALD-Link Devices Unauthenticated RCEEPSS 11.9%CVE-2023-27826HIGHSeowonIntech SWC 5100W WIMAX Bootloader 1.18.19.0, HW 0.0.7.0, and FW 1.11.0.1, 1.9.9.4 are vulnerable to OS Command Injection. which allowsEPSS 11.8%CVE-2025-9377HIGHAuthenticated RCE via Parental Control command injectionEPSS 11.7%KEVCVE-2025-6978HIGHDiagnostics command injection vulnerabilityEPSS 11.7%CVE-2025-48047CRITICALMICI Network Co. Ltd. NetFax Server Command InjectionEPSS 11.7%CVE-2021-20026—A vulnerability in the SonicWall NSM On-Prem product allows an authenticated attacker to perform OS command injection using a crafted HTTP rEPSS 11.6%CVE-2024-11003HIGHQualys discovered that needrestart, before version 3.8, passes unsanitized data to a library (Modules::ScanDeps) which expects safe input. TEPSS 11.5%CVE-2025-1829MEDIUMTOTOLINK X18 cstecgi.cgi setMtknatCfg os command injectionEPSS 11.4%CVE-2024-7261CRITICALThe improper neutralization of special elements in the parameter "host" in the CGI program of Zyxel NWA1123ACv3 firmware version 6.70(ABVT.4EPSS 11.3%CVE-2022-1703—Improper neutralization of special elements in the SonicWall SSL-VPN SMA100 series management interface allows a remote authenticated attackEPSS 11.1%CVE-2024-46628HIGHTenda G3 Router firmware v15.03.05.05 was discovered to contain a remote code execution (RCE) vulnerability via the usbPartitionName parametEPSS 11.0%