Fallos del tipo CWE-78
3885 resultadosCVE-2025-56590CRITICALAn issue was discovered in the InsertFromURL() function of the Apryse HTML2PDF SDK thru 11.10. This vulnerability could allow an attacker toEPSS 0.5%CVE-2024-42166CRITICALCommand Injection in ApplicationnameEPSS 0.5%CVE-2024-42167CRITICALCommand Injection in OrganisationnameEPSS 0.5%CVE-2025-36569MEDIUMDell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.1.0.10, LTS2024 releasEPSS 0.5%CVE-2026-39420MEDIUMMaxKB: Sandbox escape via LD_PRELOAD bypassEPSS 0.5%CVE-2020-3171HIGHCisco FXOS and UCS Manager Software Local Management CLI Command Injection VulnerabilityEPSS 0.5%CVE-2020-3167HIGHCisco FXOS and UCS Manager Software CLI Command Injection VulnerabilityEPSS 0.5%CVE-2026-46624CRITICALTwenty: SQL Injection via the timeZone fieldEPSS 0.5%CVE-2026-26009CRITICALCatalyst Affected by Remote Code Execution as Root via Containerized Install Script ExecutionEPSS 0.5%CVE-2026-58652HIGHluci-app-travelmate - Arbitrary Command Execution via UCI Script ParameterEPSS 0.5%CVE-2021-1476MEDIUMCisco Adaptive Security Appliance Software and Firepower Threat Defense Software Command Injection VulnerabilityEPSS 0.5%CVE-2021-4466HIGHIPCop <= 2.1.9 Authenticated RCEEPSS 0.5%CVE-2026-25041HIGHBudibase has a Command Injection in PostgreSQL Dump CommandEPSS 0.5%CVE-2024-45325MEDIUMAn improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerabilities [CWE-78] in Fortinet FortiDDoSEPSS 0.5%CVE-2025-70828HIGHAn issue in Datart v1.0.0-rc.3 allows attackers to execute arbitrary code via the url parameter in the JDBC configurationEPSS 0.5%CVE-2023-2625CRITICALA vulnerability exists that can be exploited by an authenticated client that is connected to the same network segment as the CoreTec 4, haviEPSS 0.5%CVE-2024-3798HIGHInsecure handling of GET argument in PhonieboxEPSS 0.5%CVE-2025-43943MEDIUMDell Cloud Disaster Recovery, version(s) prior to 19.20, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OEPSS 0.5%CVE-2026-28470CRITICALOpenClaw < 2026.2.2 - Exec Allowlist Bypass via Command Substitution in Double QuotesEPSS 0.5%CVE-2024-48891MEDIUMAn Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] in FortiSOAR 7.6.0 throEPSS 0.5%