Weaknesses of type CWE-74
4,127 resultsCVE-2026-2823MEDIUMComfast CF-E7 webmggnt mbox-config sub_41ACCC command injectionEPSS 13.0%CVE-2023-22522CRITICALThis Template Injection vulnerability allows an authenticated attacker, including one with anonymous access, to inject unsafe user input intEPSS 12.8%CVE-2025-20284MEDIUMCisco Identity Services Engine Authenticated Remote Code Execution VulnerabilityEPSS 12.7%CVE-2021-21305HIGHCode Injection vulnerability in CarrierWaveEPSS 12.7%CVE-2026-2535MEDIUMComfast CF-N1 V2 mbox-config sub_44AB9C command injectionEPSS 12.5%CVE-2026-2534MEDIUMComfast CF-N1 V2 mbox-config sub_44AC4C command injectionEPSS 12.0%CVE-2025-15139MEDIUMTRENDnet TEW-822DRE formWsc sub_43ACF4 command injectionEPSS 11.8%CVE-2025-4357MEDIUMTenda RX3 telnet command injectionEPSS 11.7%CVE-2023-4450MEDIUMjeecgboot JimuReport Template injectionEPSS 11.4%CVE-2025-15048MEDIUMTenda WH450 HTTP Request CheckTools command injectionEPSS 11.3%CVE-2025-4999MEDIUMLinksys FGW3000-AH/FGW3000-HK HTTP POST Request sysconf.cgi sub_4153FC command injectionEPSS 11.3%CVE-2026-3662MEDIUMWavlink WL-NU516U1 adm.cgi usb_p910 command injectionEPSS 11.2%CVE-2020-11060HIGHRemote Code Execution in GLPIEPSS 10.9%CVE-2026-3661MEDIUMWavlink WL-NU516U1 adm.cgi ota_new_upgrade command injectionEPSS 10.9%CVE-2025-14107HIGHZSPACE Q2C NAS HTTP POST Request status zfilev2_api.SafeStatus command injectionEPSS 10.8%CVE-2025-14106HIGHZSPACE Q2C NAS HTTP POST Request close zfilev2_api.CloseSafe command injectionEPSS 10.7%CVE-2025-5000MEDIUMLinksys FGW3000-AH/FGW3000-HK HTTP POST Request sysconf.cgi control_panel_sw command injectionEPSS 10.5%CVE-2025-15137HIGHTRENDnet TEW-800MB NTPSyncWithHost.cgi sub_F934 command injectionEPSS 10.3%CVE-2026-2615HIGHWavlink WL-NU516U1 firewall.cgi singlePortForwardDelete command injectionEPSS 10.3%CVE-2026-4537MEDIUMCudy TR1200 ipsec.lua action_ipsec_conn command injectionEPSS 10.3%