Fallos del tipo CWE-77
2524 resultadosCVE-2025-4850MEDIUMTOTOLINK N300RH cstecgi.cgi setUnloadUserData command injectionEPSS 1.2%CVE-2025-4729MEDIUMTOTOLINK A3002R/A3002RU HTTP POST Request formMapDelDevice command injectionEPSS 1.2%CVE-2026-12223MEDIUMYealink SIP-T46U Web FastCGI Service tftpuploadiperf mod_webd.TFTPUploadIperf command injectionEPSS 1.2%CVE-2025-27212CRITICALAn Improper Input Validation in certain UniFi Access devices could allow a Command Injection by a malicious actor with access to UniFi AccesEPSS 1.2%CVE-2023-40263HIGHAn issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated command injection via ftp.EPSS 1.2%CVE-2023-26128HIGHAll versions of the package keep-module-latest are vulnerable to Command Injection due to missing input sanitization or other checks and sanEPSS 1.2%CVE-2025-22630CRITICALWordPress Widget Options Plugin <= 4.1.0 - Arbitrary Code Execution vulnerabilityEPSS 1.2%CVE-2025-53104CRITICALgluestack-ui Command Injection Vulnerability via discussion-to-slack GitHub Action WorkflowEPSS 1.2%CVE-2026-12807MEDIUMEdimax BR-6478AC V2 POST Request setWAN command injectionEPSS 1.2%CVE-2026-12808MEDIUMEdimax BR-6478AC V2 POST Request stainfo command injectionEPSS 1.2%CVE-2026-8753MEDIUMkalcaddle Kodbox fileThumb Plugin VideoResize.class.php parseVideoInfo command injectionEPSS 1.2%CVE-2024-10435MEDIUMdidi Super-Jacoco triggerEnvCov command injectionEPSS 1.2%CVE-2026-8774MEDIUMEdimax BR-6228NC POST Request mp command injectionEPSS 1.2%CVE-2026-12814MEDIUMComfast CF-WR631AX V3 API Endpoint mbox-config system os command injectionEPSS 1.2%CVE-2024-2947HIGHCockpit: command injection when deleting a sosreport with a crafted nameEPSS 1.2%CVE-2026-6799MEDIUMComfast CF-N1-S Endpoint mbox-config command injectionEPSS 1.2%CVE-2024-38486HIGHDell SmartFabric OS10 Software, version(s) 10.5.5.4 through 10.5.5.10 and 10.5.6.x , contain(s) an Improper Neutralization of Special ElemenEPSS 1.2%CVE-2025-24285CRITICALMultiple Improper Input Validation vulnerabilities in UniFi Connect EV Station Lite may allow a Command Injection by a malicious actor with EPSS 1.2%CVE-2024-43613HIGHAzure Database for PostgreSQL Flexible Server Extension Elevation of Privilege VulnerabilityEPSS 1.2%CVE-2025-59046CRITICALinteractive-git-checkout has Command Injection vulnerabilityEPSS 1.2%