Falhas do tipo CWE-77
2.518 resultadosCVE-2018-0341—A vulnerability in the web-based UI of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware before 11.2(1) could allow an EPSS 5.9%CVE-2026-2528MEDIUMWavlink WL-WN579A3 wireless.cgi Delete_Mac_list command injectionEPSS 5.8%CVE-2025-0528HIGHTenda AC8/AC10/AC18 HTTP Request telnet command injectionEPSS 5.8%CVE-2026-5184MEDIUMTRENDnet TEW-713RE setSysAdm command injectionEPSS 5.8%CVE-2026-2526MEDIUMWavlink WL-WN579A3 wireless.cgi multi_ssid command injectionEPSS 5.8%CVE-2026-2530MEDIUMWavlink WL-WN579A3 wireless.cgi AddMac command injectionEPSS 5.8%CVE-2025-7836MEDIUMD-Link DIR-816L Environment Variable cgibin lxmldbc_system command injectionEPSS 5.8%CVE-2017-0915—Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote cEPSS 5.7%CVE-2017-0916—Gitlab Community Edition version 10.3 is vulnerable to a lack of input validation in the system_hook_push queue through web hook component rEPSS 5.7%CVE-2026-5339MEDIUMTenda G103 Setting gpon.lua action_set_net_settings command injectionEPSS 5.7%CVE-2026-2142HIGHD-Link DIR-823X set_qos sub_420688 os command injectionEPSS 5.7%CVE-2025-65363HIGHAuthenticated append-style command-injection Ruijie APs (AP_RGOS 11.1.x) allows an authenticated web user to execute appended shell expressiEPSS 5.6%CVE-2025-13562MEDIUMD-Link DIR-852 gena.cgi command injectionEPSS 5.6%CVE-2025-9149MEDIUMWavlink WL-NU516U1 wireless.cgi sub_4032E4 command injectionEPSS 5.6%CVE-2019-15588—There is an OS Command Injection in Nexus Repository Manager <= 2.14.14 (bypass CVE-2019-5475) that could allow an attacker a Remote Code ExEPSS 5.6%CVE-2025-15500CRITICALSangfor Operation and Maintenance Management System HTTP POST Request getHis os command injectionEPSS 5.6%CVE-2026-8272MEDIUMD-Link DNS-320 webfile_mgr.cgi chown os command injectionEPSS 5.6%CVE-2025-15502MEDIUMSangfor Operation and Maintenance Management System session SessionController os command injectionEPSS 5.6%CVE-2024-41319HIGHTOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the cmd parameter in the webcmd functiEPSS 5.5%CVE-2025-7932MEDIUMD-Link DIR‑817L ssdpcgi lxmldbc_system command injectionEPSS 5.5%