Weaknesses of type CWE-78
3,889 resultsCVE-2022-45939HIGHGNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file, because lib-src/etagEPSS 0.6%CVE-2025-54415CRITICALdag-factory's CI/CD Workflow Allows for Repository Takeover and Secret ExfiltrationEPSS 0.6%CVE-2015-10145HIGHGargoyle 1.5.x Authenticated OS Command Execution via run_commands.shEPSS 0.6%CVE-2023-47540MEDIUMAn improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSandbox 4.4.0 tEPSS 0.6%CVE-2026-22179HIGHOpenClaw < 2026.2.22 - Allowlist Bypass via Command Substitution in system.runEPSS 0.6%CVE-2023-34141HIGHA command injection vulnerability in the access point (AP) management feature of the Zyxel ATP series firmware versions 5.00 through 5.36 PaEPSS 0.6%CVE-2023-34138HIGHA command injection vulnerability in the hotspot management feature of the Zyxel ATP series firmware versions 4.60 through 5.36 Patch 2, USGEPSS 0.6%CVE-2020-36877CRITICALReQuest Serious Play F3 Media Server <= 7.0.3 code executionEPSS 0.6%CVE-2022-43948MEDIUMA improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWeb version 7.0.0 through 7.0.EPSS 0.6%CVE-2024-7517HIGHPrivileged escalation via crafted use of portcfg commandEPSS 0.6%CVE-2024-13502CRITICALA command injection in the NTC2218, NTC2250, NTC2299 modems' web interfaces allows to exeucte arbitrary shell commands.EPSS 0.6%CVE-2024-14026LOWQTS, QuTS heroEPSS 0.6%CVE-2025-0255HIGHHCL DevOps Deploy / HCL Launch is susceptible to command injection vulnerabilityEPSS 0.6%CVE-2024-55904HIGHIBM DevOps Deploy / IBM UrbanCode Deploy command injectionEPSS 0.6%CVE-2023-49692HIGHA vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V7.2.2), RUGGEDCOM RM1224 LTE(4G) NAEPSS 0.6%CVE-2025-25039MEDIUMAuthenticated Remote Command Injection in HPE Aruba Networking ClearPass Policy Manager Web-Based Management InterfaceEPSS 0.6%CVE-2023-34215HIGHSecond Order Command-injection Vulnerability in the Certificate-generation FunctionEPSS 0.6%CVE-2026-44724HIGHsysteminformation: Linux command injection in networkInterfaces() via unsanitized NetworkManager connection profile nameEPSS 0.6%CVE-2025-15518HIGHCommand Injection in Wireless Control CLI on TP-Link Archer NX200, NX210, NX500 and NX600EPSS 0.6%CVE-2023-24046HIGHAn issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary commands via use of a crafted string in thEPSS 0.6%