Fallos del tipo CWE-78
3885 resultadosCVE-2026-34113CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in speech_text.phpEPSS 0.5%CVE-2025-9996MEDIUMCWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause theEPSS 0.5%CVE-2026-34114CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in translate_text.phpEPSS 0.5%CVE-2026-34115CRITICALGuardian Language-System Unauthenticated OS Command Injection via id Parameter in transcribe_amazon.phpEPSS 0.5%CVE-2026-35519HIGHPi-hole FTL affected by Remote Code Execution (RCE) via dns.hostRecord Newline InjectionEPSS 0.5%CVE-2024-31843MEDIUMAn issue was discovered in Italtel Embrace 1.6.4. The Web application does not properly check the parameters sent as input before they are pEPSS 0.5%CVE-2026-48723HIGHBrowserStack Cypress CL: Command Injection via cypress_config_file leads to arbitrary code execution through malicious browserstack.jsonEPSS 0.5%CVE-2026-54088CRITICALFile Browser: Command Injection via Authentication Hook Shell Substitution (Pre-Authentication RCE)EPSS 0.5%CVE-2025-0415CRITICALCommand Injection in NTP SettingEPSS 0.5%CVE-2024-21773HIGHMultiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product from the LAN port or Wi-Fi to executeEPSS 0.5%CVE-2026-32003HIGHOpenClaw < 2026.2.22 - Remote Code Execution via SHELLOPTS/PS4 Environment Injection in system.runEPSS 0.5%CVE-2023-6926HIGHImproper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Crestron AM-300EPSS 0.5%CVE-2026-34597HIGHCoolify: Authenticated Host RCEEPSS 0.5%CVE-2026-31995MEDIUMOpenClaw 2026.1.21 < 2026.2.19 - Command Injection via Windows Shell Fallback in Lobster ExtensionEPSS 0.5%CVE-2025-55048CRITICALMultiple CWE-78EPSS 0.5%CVE-2024-2421CRITICALLenelS2 NetBox Improper Neutralization of Special ElementsEPSS 0.5%CVE-2020-21583—An issue was discovered in hwclock.13-v2.27 allows attackers to gain escalated privlidges or execute arbitrary commands via the path parametEPSS 0.5%CVE-2026-41613HIGHVisual Studio Code Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2023-37937HIGHAn improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSwitch version 7.4.0 and 7.2.EPSS 0.5%CVE-2025-24377HIGHDell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 0.5%