Fallos del tipo CWE-78
3786 resultadosCVE-2024-9916MEDIUMHuangDou UTCMS cli.php os command injectionEPSS 73.7%CVE-2023-47565HIGHLegacy VioStor NVREPSS 73.3%KEVCVE-2025-1316CRITICALEdimax IC-7100 IP Camera OS Command InjectionEPSS 72.3%KEVCVE-2017-6334HIGHdnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands EPSS 72.2%KEVCVE-2022-34753HIGHA CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause rEPSS 71.1%CVE-2021-4039CRITICALA command injection vulnerability in the web interface of the Zyxel NWA-1100-NH firmware could allow an attacker to execute arbitrary OS comEPSS 71.0%CVE-2021-32682CRITICALMultiple vulnerabilities leading to RCEEPSS 69.9%CVE-2022-44456CRITICALCONPROSYS HMI System (CHS) Ver.3.4.4?and earlier allows a remote unauthenticated attacker to execute an arbitrary OS command on the server wEPSS 69.9%CVE-2021-21805CRITICALAn OS Command Injection vulnerability exists in the ping.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). A specially cEPSS 69.6%CVE-2023-3368CRITICALChamilo LMS Unauthenticated Command InjectionEPSS 68.9%CVE-2016-11021HIGHsetSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand paraEPSS 68.5%KEVCVE-2017-6077CRITICALping.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via sEPSS 68.2%KEVCVE-2023-30805CRITICALSangfor Next-Gen Application Firewall Login Un Param Command InjectionEPSS 65.8%CVE-2023-30806CRITICALSangfor Next-Gen Application Firewall PHPSESSID Command InjectionEPSS 65.8%CVE-2024-47407CRITICALmySCADA myPRO OS Command InjectionEPSS 65.6%CVE-2023-34992CRITICALA improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet allows attacker to eEPSS 65.5%CVE-2020-7351HIGHFonality Trixbox CE Post-Authentication Command InjectionEPSS 65.2%CVE-2021-27273HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System EPSS 65.0%CVE-2024-4883CRITICALWhatsUp Gold WriteDataFile Directory Traversal Remote Code Execution VulnerabilityEPSS 64.8%CVE-2022-44149HIGHThe web service on Nexxt Amp300 ARN02304U8 42.103.1.5095 and 80.103.2.5045 devices allows remote OS command execution by placing &telnetd inEPSS 64.4%