Fallos del tipo CWE-78

3821 resultados
CVE-2021-31580HIGHAkkadian Provisioning Manager Engine (PME) Shell Escape via 'exec' commandEPSS 3.0%CVE-2025-27140CRITICALWeGIA vulnerable to OS Command Injection at endpoint 'importar_dump.php' parameter 'import' (RCE)EPSS 3.0%CVE-2022-30309CRITICALFESTO: CECC-X-M1 and Servo Press Kit YJKP OS Command Injection vulnerabilityEPSS 3.0%CVE-2024-30368HIGHA10 Thunder ADC CsrRequestView Command Injection Remote Code Execution VulnerabilityEPSS 3.0%CVE-2022-36231CRITICALpdf_info 0.5.3 is vulnerable to Command Execution because the Ruby code uses backticks instead of Open3.EPSS 3.0%CVE-2025-56819CRITICALAn issue in Datart v.1.0.0-rc.3 allows a remote attacker to execute arbitrary code via the INIT connection parameter.EPSS 3.0%CVE-2022-22984MEDIUMCommand InjectionEPSS 3.0%CVE-2012-10046CRITICALE-Mail Security Virtual Appliance learn-msg.cgi Command InjectionEPSS 3.0%CVE-2018-17707This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Epic Games Launcher versions prior to 8.EPSS 3.0%CVE-2026-6025CRITICALTotolink A7100RU CGI cstecgi.cgi setSyslogCfg os command injectionEPSS 3.0%CVE-2026-25070CRITICALXikeStor SKS8310-8X PingTestSet Command InjectionEPSS 3.0%CVE-2024-58287HIGHreNgine 2.2.0 Authenticated Command Injection via Scan Engine ConfigurationEPSS 3.0%CVE-2026-6026CRITICALTotolink A7100RU CGI cstecgi.cgi setPortalConfWeChat os command injectionEPSS 3.0%CVE-2020-12775CRITICALHicos citizen certificate client-side component - Command InjectionEPSS 3.0%CVE-2026-6028CRITICALTotolink A7100RU CGI cstecgi.cgi setPptpServerCfg os command injectionEPSS 3.0%CVE-2026-6029CRITICALTotolink A7100RU CGI cstecgi.cgi setVpnAccountCfg os command injectionEPSS 3.0%CVE-2024-5717HIGHLogsign Unified SecOps Platform Command Injection Remote Code Execution VulnerabilityEPSS 3.0%CVE-2025-66213CRITICALCoolify Vulnerable to Authenticated Remote Code Execution via Command Injection in File Storage Directory Mount PathEPSS 3.0%CVE-2026-33475CRITICALLangflow GitHub Actions Shell InjectionEPSS 3.0%CVE-2025-56094HIGHOS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POSTEPSS 3.0%