Falhas do tipo CWE-78
3.786 resultadosCVE-2019-15978HIGHCisco Data Center Network Manager Command Injection VulnerabilitiesEPSS 37.5%CVE-2021-21881CRITICALAn OS command injection vulnerability exists in the Web Manager Wireless Network Scanner functionality of Lantronix PremierWave 2050 8.9.0.0EPSS 37.1%CVE-2020-10221HIGHlib/ajaxHandlers/ajaxAddTemplate.php in rConfig through 3.94 allows remote attackers to execute arbitrary OS commands via shell metacharacteEPSS 36.8%KEVCVE-2023-2522MEDIUMChengdu VEC40G Network Detection os command injectionEPSS 36.0%CVE-2023-25826CRITICALRemote Code Execution in OpenTSDBEPSS 35.6%CVE-2022-0848CRITICALOS Command Injection in part-db/part-dbEPSS 35.4%CVE-2022-40005HIGHIntelbras WiFiber 120AC inMesh before 1-1-220826 allows command injection by authenticated users, as demonstrated by the /boaform/formPing6 EPSS 34.8%CVE-2024-45242HIGHEnGenius ENH1350EXT A8J-ENH1350EXT devices through 3.9.3.2_c1.9.51 allow (blind) OS Command Injection via shell metacharacters to the Ping oEPSS 34.7%CVE-2022-45025CRITICALMarkdown Preview Enhanced v0.6.5 and v0.19.6 for VSCode and Atom was discovered to contain a command injection vulnerability via the PDF filEPSS 34.5%CVE-2020-2509CRITICALCommand Injection Vulnerability in QTS and QuTS heroEPSS 34.2%KEVCVE-2021-3060HIGHPAN-OS: OS Command Injection in Simple Certificate Enrollment Protocol (SCEP)EPSS 33.9%CVE-2020-7357CRITICALCayin CMS Command InjectionEPSS 33.9%CVE-2025-43562CRITICALColdFusion | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)EPSS 33.2%CVE-2019-5129CRITICALA command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the server. ExploitableEPSS 33.2%CVE-2024-12986MEDIUMDrayTek Vigor2960/Vigor300B Web Management Interface apmcfgupptim os command injectionEPSS 32.8%CVE-2024-20356HIGHA vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote aEPSS 32.5%CVE-2023-39780HIGHOn ASUS RT-AX55 3.0.0.4.386.51598 devices, authenticated attackers can perform OS command injection via the /start_apply.htm qos_bw_rulelistEPSS 32.2%KEVCVE-2024-0778HIGHUniview ISC 2500-S VM.php setNatConfig os command injectionEPSS 32.1%CVE-2024-12828CRITICALWebmin CGI Command Injection Remote Code Execution VulnerabilityEPSS 32.0%CVE-2023-25279CRITICALOS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload.EPSS 32.0%