Fallos del tipo CWE-78
3797 resultadosCVE-2023-7116MEDIUMWeiYe-Jing datax-web HTTP POST Request killJob os command injectionEPSS 9.9%CVE-2025-1609MEDIUMLB-LINK AC1900 Router set_cmd websGetVar os command injectionEPSS 9.9%CVE-2025-1608MEDIUMLB-LINK AC1900 Router set_manpwd websGetVar os command injectionEPSS 9.9%CVE-2013-10037CRITICALWebTester 5.x install2.php Unauthenticated Command ExecutionEPSS 9.9%CVE-2026-2846HIGHUTT HiPER 520 Web Management formPdbUpConfig sub_44D264 os command injectionEPSS 9.8%CVE-2018-25120CRITICALD-Link DNS-343 ShareCenter <= 1.05 Command Injection via /goform/Mail_TestEPSS 9.8%CVE-2025-9745MEDIUMD-Link DI-500WF jhttpd version_upgrade.asp os command injectionEPSS 9.7%CVE-2025-28219CRITICALNetgear DC112A V1.0.0.64 has an OS command injection vulnerability in the usb_adv.cgi, which allows remote attackers to execute arbitrary coEPSS 9.7%CVE-2025-52379MEDIUMNexxt Solutions NCM-X1800 Mesh Router firmware UV1.2.7 and below contains an authenticated command injection vulnerability in the firmware uEPSS 9.7%CVE-2024-6184MEDIUMRuijie RG-UAC reboot_commit.php os command injectionEPSS 9.7%CVE-2013-10050HIGHD-Link Devices tools_vct.xgi Authenticated RCEEPSS 9.6%CVE-2023-6304HIGHTecno 4G Portable WiFi TR118 Ping Tool goform_get_cmd_process os command injectionEPSS 9.5%CVE-2025-10328MEDIUMMiczFlor RPi-Jukebox-RFID playsinglefile.php os command injectionEPSS 9.4%CVE-2025-2605CRITICALAuthenticated command injectionEPSS 9.4%CVE-2025-9387MEDIUMDCN DCME-720 Web Management Backend ip_block.php os command injectionEPSS 9.3%CVE-2024-34921HIGHTOTOLINK X5000R v9.1.0cu.2350_B20230313 was discovered to contain a command injection via the disconnectVPN function.EPSS 9.3%CVE-2024-54018MEDIUMMultiple improper neutralization of special elements used in an OS Command vulnerabilities [CWE-78] in FortiSandbox before 4.4.5 allows a prEPSS 9.2%CVE-2026-2847HIGHUTT HiPER 520 Web Management formReleaseConnect sub_44EFB4 os command injectionEPSS 9.2%CVE-2025-45858CRITICALTOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability via the FUN_00459fdc function.EPSS 9.1%CVE-2026-3040MEDIUMDrayTek Vigor 300B Web Management uploadlangs cgiGetFile os command injectionEPSS 9.1%