Weaknesses of type CWE-78
3,887 resultsCVE-2026-49869CRITICALKestra: Unauthenticated Remote Code Execution via Authentication Bypass in `AuthenticationFilter`EPSS 0.7%CVE-2017-20236CRITICALProSoft Technology ICX35-HWC Command Injection via Web InterfaceEPSS 0.7%CVE-2024-20459MEDIUMCisco ATA 190 Series Analog Telephone Adapter Muliplatform Firmware Command Injection VulnerabilityEPSS 0.7%CVE-2026-34106CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in subtitles.phpEPSS 0.7%CVE-2024-8881MEDIUMA post-authentication command injection vulnerability in the CGI program in the Zyxel GS1900-48 switch firmware version V2.80(AAHN.1)C0 and EPSS 0.7%CVE-2026-34107CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in translate.phpEPSS 0.7%CVE-2024-47821CRITICALpyLoad vulnerable to remote code execution by download to /.pyload/scripts using /flashgot APIEPSS 0.7%CVE-2025-9762CRITICALPost By Email <= 1.0.4b - Unauthenticated Arbitrary File Upload via Email AttachmentsEPSS 0.7%CVE-2024-6048CRITICALOpenfind MailGates and MailAudit - OS Command InjectionEPSS 0.7%CVE-2026-56137HIGHRPG MAKER MV and MZ provided by Gotcha Gotcha Games Inc. contain an OS command injection vulnerability. If a user loads a specially crafted EPSS 0.7%CVE-2019-1709MEDIUMCisco Firepower Threat Defense Software Command Injection VulnerabilityEPSS 0.7%CVE-2023-48380HIGHSoftnext Mail SQR Expert - Command InjectionEPSS 0.7%CVE-2024-26012MEDIUMA improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiAP-S 6.2 all verisons, and 6.4EPSS 0.7%CVE-2026-8666HIGHOS Command Injection in Rapid7 InsightConnect Traceroute PluginEPSS 0.7%CVE-2026-8592HIGHOS Command Injection in Rapid7 InsightConnect AWK PluginEPSS 0.7%CVE-2026-8660HIGHOS Command Injection in Rapid7 InsightConnect Ping PluginEPSS 0.7%CVE-2026-8665HIGHOS Command Injection in Rapid7 InsightConnect Translate PluginEPSS 0.7%CVE-2024-28015CRITICALImproper Neutralization of Special Elements used in an OS Command vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WGEPSS 0.7%CVE-2026-28507HIGHIdno: Remote Code Execution via Chained Import File Write and Template Path TraversalEPSS 0.7%CVE-2025-53542HIGHKubernetes Headlamp Allows Arbitrary Command Injection in macOS Process headlamp@codeSignEPSS 0.7%