Falhas do tipo CWE-78
3.837 resultadosCVE-2025-56114HIGHOS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to execute arbitrary commands via a crafteEPSS 2.2%CVE-2025-56118HIGHOS Command Injection vulnerability in Ruijie X60 PRO X60_10212014RG-X60 PRO V1.00/V2.00 allowing attackers to execute arbitrary commands viaEPSS 2.2%CVE-2025-56098HIGHOS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POSTEPSS 2.2%CVE-2026-5974MEDIUMFoundationAgents MetaGPT terminal.py Bash.run os command injectionEPSS 2.2%CVE-2020-36856CRITICALNagios XI < 5.6.14 Authenticated RCE command_test.php via addressEPSS 2.2%CVE-2025-30286HIGHColdFusion | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)EPSS 2.2%CVE-2023-26156MEDIUMVersions of the package chromedriver before 119.0.1 are vulnerable to Command Injection when setting the chromedriver.path to an arbitrary sEPSS 2.2%CVE-2016-10541—The npm module "shell-quote" 1.6.0 and earlier cannot correctly escape ">" and "<" operator used for redirection in shell. Applications thatEPSS 2.2%CVE-2023-26490HIGHmailcow is vulnerable to shell command injection via xoauth2 authentication in imapsyncEPSS 2.2%CVE-2021-23025—On version 15.1.x before 15.1.0.5, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.5, and all versions of 12.1.x and 11.6.x, an authenticated rEPSS 2.2%CVE-2021-28634HIGHAdobe Acrobat Reader AcrobatUtils.scpt Extension OS Command Injection VulnerabilityEPSS 2.2%CVE-2026-27190HIGHDeno has a Command Injection via Incomplete shell metacharacter blocklist in node:child_processEPSS 2.2%CVE-2025-8665MEDIUMagno-agi agno Model Context Protocol mcp.py MultiMCPTools os command injectionEPSS 2.2%CVE-2020-25849HIGHOpenfind MailGates/MailAudit - Command InjectionEPSS 2.2%CVE-2026-26046HIGHMoodle: moodle: improper input sanitization in tex filter administration settingEPSS 2.2%CVE-2026-10871HIGHShibby Tomato Web UI rc start_6rd_tunnel os command injectionEPSS 2.2%CVE-2024-53940HIGHAn issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware 1.0) devices. Certain /cgi-bin/luci/admin eEPSS 2.2%CVE-2026-6140CRITICALTotolink A7100RU CGI cstecgi.cgi UploadFirmwareFile os command injectionEPSS 2.2%CVE-2026-10870HIGHShibby Tomato Web UI rc start_dhcpc os command injectionEPSS 2.2%CVE-2025-56087HIGHOS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request tEPSS 2.2%