Weaknesses of type CWE-77
2,524 resultsCVE-2025-67728CRITICALFireshare Public Uploads feature is vulnerable to OS Command Injection (RCE)EPSS 0.6%CVE-2024-42348CRITICALFOG leaks sensitive information (AD domain, username and password)EPSS 0.6%CVE-2024-42360CRITICALCommand Injection in sequenceserverEPSS 0.6%CVE-2025-57164MEDIUMFlowise through v3.0.4 is vulnerable to remote code execution via unsanitized evaluation of user input in the "Supabase RPC Filter" field.EPSS 0.6%CVE-2026-31175CRITICALAn issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the stunEnaEPSS 0.6%CVE-2026-23652CRITICALMicrosoft Power Pages Remote Code Execution VulnerabilityEPSS 0.6%CVE-2025-55283CRITICALaiven-db-migrate allows Privilege Escalation through use of psql during migrationEPSS 0.6%CVE-2024-53526MEDIUMcomposio >=0.5.40 is vulnerable to Command Execution in composio_openai, composio_claude, and composio_julep via the handle_tool_calls functEPSS 0.6%CVE-2026-31170CRITICALAn issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the stun-paEPSS 0.6%CVE-2025-53098HIGHRoo Code Vulnerable to Potential Remote Code Execution via Model Context ProtocolEPSS 0.6%CVE-2025-46735LOWTerraform WinDNS Provider improperly sanitizes input variables in `windns_record`EPSS 0.6%CVE-2026-35580CRITICALEmissary has GitHub Actions Shell Injection via Workflow InputsEPSS 0.6%CVE-2026-32622HIGHSQLBot: Remote Code Execution via Terminology PoisoningEPSS 0.6%CVE-2025-11921HIGHiStat Menus 7.10.4 - Local Privilege EscalationEPSS 0.6%CVE-2022-35954MEDIUMDelimiter injection vulnerability in @actions/core exportVariableEPSS 0.6%CVE-2023-49716MEDIUMEmerson Rosemount GC370XA, GC700XA, GC1500XA Command InjectionEPSS 0.6%CVE-2024-53412HIGHCommand injection in the connect function in NietThijmen ShoppingCart 0.0.2 allows an attacker to execute arbitrary shell commands and achieEPSS 0.6%CVE-2020-3266HIGHCisco SD-WAN Solution Command Injection VulnerabilityEPSS 0.6%CVE-2026-23814HIGHAuthenticated Command Injection found in AOS-CX CLI CommandEPSS 0.5%CVE-2024-20492MEDIUMCisco Expressway Series Privilege Escalation VulnerabilityEPSS 0.5%