Weaknesses of type CWE-77
2,524 resultsCVE-2023-51707CRITICALMotionPro in Array ArrayOS AG before 9.4.0.505 on AG and vxAG allows remote command execution via crafted packets. AG and vxAG 9.3.0.259.x aEPSS 1.3%CVE-2023-48791HIGHAn improper neutralization of special elements used in a command ('Command Injection') vulnerability [CWE-77] in FortiPortal version 7.2.0, EPSS 1.3%CVE-2024-28135MEDIUMPHOENIX CONTACT: command injection vulnerability in the API of the CHARX SeriesEPSS 1.3%CVE-2026-10127MEDIUMEdimax BR-6478AC POST Request formStaDrvSetup command injectionEPSS 1.3%CVE-2024-44916HIGHVulnerability in admin_ip.php in Seacms v13.1, when action=set, allows attackers to control IP parameters that are written to the data/adminEPSS 1.3%CVE-2024-37023CRITICALVonets WiFi Bridges Command InjectionEPSS 1.3%CVE-2023-24135HIGHJensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to contain a command injection vulnerability in the function formWriteFacMEPSS 1.3%CVE-2024-12992HIGHRemote Code Execution leads to Command InjectionEPSS 1.3%CVE-2023-24184CRITICALTOTOLink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability.EPSS 1.3%CVE-2020-22662HIGHIn Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, RuckusEPSS 1.3%CVE-2026-45585MEDIUMWindows BitLocker Security Feature Bypass VulnerabilityEPSS 1.2%CVE-2025-55227HIGHMicrosoft SQL Server Elevation of Privilege VulnerabilityEPSS 1.2%CVE-2024-53700MEDIUMQHoraEPSS 1.2%CVE-2023-29855HIGHWBCE CMS 1.5.3 has a command execution vulnerability via admin/languages/install.php.EPSS 1.2%CVE-2025-37176MEDIUMAuthenticated Command Injection Vulnerability in an AOS-8 operating system's internal workflowEPSS 1.2%CVE-2024-37091CRITICALWordPress Consulting Elementor Widgets plugin <= 1.3.0 - Remote Code Execution (RCE) vulnerabilityEPSS 1.2%CVE-2026-38707CRITICALA command injection vulnerability exists in the IPSec VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315EPSS 1.2%CVE-2026-38703CRITICALA command injection vulnerability exists in the ZeroTier VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IREPSS 1.2%CVE-2026-38702CRITICALA command injection vulnerability exists in the Admin Access feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IREPSS 1.2%CVE-2022-2323—Improper neutralization of special elements used in a user input allows an authenticated malicious user to perform remote code execution in EPSS 1.2%