Fallos del tipo CWE-78
3804 resultadosCVE-2024-24329CRITICALTOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setPortFEPSS 6.2%CVE-2024-24328HIGHTOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setMacFiEPSS 6.2%CVE-2021-4473CRITICALTianxin Internet Behavior Management System Command Injection via toQuery.phpEPSS 6.2%CVE-2020-1946—Apache SpamAssassin has an OS Command Injection vulnerabilityEPSS 6.1%CVE-2025-2611CRITICALICTBroadcast <= 7.4 Unauthenticated Session Cookie RCEEPSS 6.1%CVE-2025-10359MEDIUMWavlink WL-WN578W2 wireless.cgi sub_404DBC os command injectionEPSS 6.1%CVE-2025-10358MEDIUMWavlink WL-WN578W2 wireless.cgi sub_404850 os command injectionEPSS 6.1%CVE-2021-21882CRITICALAn OS command injection vulnerability exists in the Web Manager FsUnmount functionality of Lantronix PremierWave 2050 8.9.0.0R4. A speciallyEPSS 6.1%CVE-2021-21872CRITICALAn OS command injection vulnerability exists in the Web Manager Diagnostics: Traceroute functionality of Lantronix PremierWave 2050 8.9.0.0REPSS 6.1%CVE-2021-21883CRITICALAn OS command injection vulnerability exists in the Web Manager Diagnostics: Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4. A sEPSS 6.1%CVE-2026-6992HIGHLinksys MR9600 JNAP Action run_central2.sh BTRequestGetSmartConnectStatus os command injectionEPSS 6.1%CVE-2022-42484CRITICALAn OS command injection vulnerability exists in the httpd logs/view.cgi functionality of FreshTomato 2022.5. A specially crafted HTTP requesEPSS 6.0%CVE-2025-6485MEDIUMTOTOLINK A3002R formWlSiteSurvey os command injectionEPSS 6.0%CVE-2023-3607MEDIUMkodbox WebConsole Plug-In webconsole.php.txt Execute os command injectionEPSS 5.9%CVE-2023-28381HIGHAn OS command injection vulnerability exists in the admin.cgi MVPN_trial_init functionality of peplink Surf SOHO HW1 v6.3.5 (in QEMU). A speEPSS 5.9%CVE-2019-5477—A command injection vulnerability in Nokogiri v1.10.3 and earlier allows commands to be executed in a subprocess via Ruby's `Kernel.open` meEPSS 5.9%CVE-2024-57357HIGHAn issue in TPLINK TL-WPA 8630 TL-WPA8630(US)_V2_2.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub_42EPSS 5.9%CVE-2025-3816MEDIUMwestboy CicadasCMS Scheduled Task save os command injectionEPSS 5.9%CVE-2023-3606MEDIUMTamronOS ping os command injectionEPSS 5.9%CVE-2024-28026HIGHThree OS command injection vulnerabilities exist in the web interface I/O configuration functionality of MC Technologies MC LR Router 2.10.5EPSS 5.8%