Weaknesses of type CWE-77
2,524 resultsCVE-2022-39243HIGHNuProcess vulnerable to command-line injection through insertion of NUL character(s)EPSS 1.1%CVE-2023-45025CRITICALQTS, QuTS hero, QuTScloudEPSS 1.1%CVE-2026-36841CRITICALTOTOLINK N200RE V5 was discovered to contain a command injection vulnerability via the macstr and bandstr parameters in the formMapDelDeviceEPSS 1.1%CVE-2023-47560HIGHQuMagieEPSS 1.1%CVE-2023-41334HIGHastropy vulnerable to RCE in TranformGraph().to_dot_graph functionEPSS 1.1%CVE-2020-36198MEDIUMCommand Injection Vulnerability in Malware RemoverEPSS 1.1%CVE-2025-58178HIGHCommand Injection via sonarqube-scan-action GitHub ActionEPSS 1.1%CVE-2024-44577HIGHRELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the time_date function.EPSS 1.1%CVE-2025-60683MEDIUMA command injection vulnerability exists in the ToToLink A720R Router firmware V4.1.5cu.614_B20230630 within the sysconf binary, specificallEPSS 1.1%CVE-2026-31255MEDIUMA command injection vulnerability exists in Tenda AC18 V15.03.05.05_multi. The vulnerability is located in the /goform/SetSambaCfg interfaceEPSS 1.1%CVE-2025-46122CRITICALAn issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139, where the authenticated diagnostics API eEPSS 1.1%CVE-2024-29737HIGHApache StreamPark (incubating): maven build params could trigger remote command executionEPSS 1.1%CVE-2024-55461CRITICALSeaCMS <=13.0 is vulnerable to command execution in phome.php via the function Ebak_RepPathFiletext().EPSS 1.1%CVE-2026-11408MEDIUMvertex-app vertex Log Viewer Endpoint LogMod.js os command injectionEPSS 1.1%CVE-2024-24377HIGHAn issue in idocv v.14.1.3_20231228 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted scriptEPSS 1.1%CVE-2023-47562HIGHPhoto StationEPSS 1.1%CVE-2026-7628MEDIUMcrazyrabbitLTC mcp-code-review-server RepoMix repomix.ts executeRepomix command injectionEPSS 1.1%CVE-2026-7600MEDIUMArtMin96 yii2-mcp-server MCP index.ts yii_execute_command os command injectionEPSS 1.1%CVE-2024-34792CRITICALWordPress Dextaz Ping plugin <= 0.65 - Remote Code Execution (RCE) vulnerabilityEPSS 1.1%CVE-2026-3680MEDIUMRyuzakiShinji biome-mcp-server biome-mcp-server.ts command injectionEPSS 1.1%