Falhas do tipo CWE-78
3.866 resultadosCVE-2024-20424CRITICALA vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software, formerly Firepower ManagemeEPSS 0.9%CVE-2021-4470CRITICALTG8 Firewall Unauthenticated RCE via runphpcmd.phpEPSS 0.9%CVE-2021-3769HIGHOS Command Injection in ohmyzsh/ohmyzshEPSS 0.9%CVE-2026-30806HIGHOS Command Injection in Network Report leads to Remote Code ExecutionEPSS 0.9%CVE-2025-9976CRITICALOS Command Injection vulnerability affecting Station Launcher App in 3DEXPERIENCE platform from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025xEPSS 0.9%CVE-2025-6562HIGHHunt Electronic Hybrid DVR - OS Command InjectionEPSS 0.9%CVE-2023-34974HIGHQTS, QuTS hero, QuTScloud, QVR, QESEPSS 0.9%CVE-2024-21531MEDIUMAll versions of the package git-shallow-clone are vulnerable to Command injection due to missing sanitization or mitigation flags in the proEPSS 0.9%CVE-2026-30809HIGHOS Command Injection in WebServerModuleDebug via Blacklist Bypass leads to Remote Code ExecutionEPSS 0.9%CVE-2020-1609HIGHJunos OS and Junos OS Evolved: A vulnerability in JDHCPD allows an attacker to send crafted IPv6 packets and arbitrarily execute commands on the target device.EPSS 0.9%CVE-2025-60960HIGHOS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers tEPSS 0.9%CVE-2025-60963HIGHOS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers tEPSS 0.9%CVE-2025-59370HIGHA command injection vulnerability has been identified in bwdpi. A remote, authenticated attacker could leverage this vulnerability to potentEPSS 0.9%CVE-2026-11417HIGHOS Command Injection in NodejsFunction Bundling in aws-cdk-libEPSS 0.9%CVE-2024-51009HIGHNetgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the wan_gateway parameter at ether.cgi. This vulneraEPSS 0.9%CVE-2024-51010HIGHNetgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to contain a command injection vulnerabEPSS 0.9%CVE-2026-25157HIGHOpenClaw/Clawdbot has OS Command Injection via Project Root Path in sshNodeCommandEPSS 0.9%CVE-2025-27797CRITICALOS command injection vulnerability in the specific service exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, an arbitrary OS commaEPSS 0.9%CVE-2024-51008HIGHNetgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the system_name parameter at wiz_dyn.cgi. This vulnerEPSS 0.9%CVE-2026-28207MEDIUMZen-C Vulnerable to Command Injection via Malicious Output FilenameEPSS 0.9%