Falhas do tipo CWE-78

3.847 resultados
CVE-2026-10214MEDIUMzhayujie chatgpt-on-wechat Bash Tool bash.py _get_safety_warning os command injectionEPSS 1.3%CVE-2026-10219MEDIUMnextlevelbuilder GoClaw write_file Tool fsbridge.go FsBridge.WriteFile os command injectionEPSS 1.3%CVE-2025-48069MEDIUMejson2env has insufficient input sanitizationEPSS 1.3%CVE-2022-22991HIGHCommand injection through unsecured HTTP calls on Western Digital My Cloud devicesEPSS 1.3%CVE-2023-6398HIGHA post-authentication command injection vulnerability in the file upload binary in Zyxel ATP series firmware versions from 4.32 through 5.37EPSS 1.3%CVE-2021-34602HIGHBender Charge Controller: Long URL could lead to webserver crashEPSS 1.3%CVE-2025-11005CRITICALTOTOLINK X6000R Unauthenticated Command Injection VulnerabilityEPSS 1.3%CVE-2026-24788HIGHRaspAP raspap-webgui versions prior to 3.3.6 contain an OS command injection vulnerability. If exploited, an arbitrary OS command may be exeEPSS 1.3%CVE-2023-29048HIGHA component for parsing OXMF templates could be abused to execute arbitrary system commands that would be executed as the non-privileged runEPSS 1.3%CVE-2011-3178HIGHopenbuildservice webui code injectionEPSS 1.3%CVE-2025-66052HIGHCommand injection in Vivotek IP7137 camerasEPSS 1.3%CVE-2022-24431HIGHCommand InjectionEPSS 1.3%CVE-2022-25890HIGHAll versions of the package wifey are vulnerable to Command Injection via the connect() function due to improper input sanitization. EPSS 1.3%CVE-2026-0596CRITICALCommand Injection in mlflow/mlflowEPSS 1.3%CVE-2024-57025MEDIUMTOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "desc" parameter in setWiFiSEPSS 1.3%CVE-2024-57023MEDIUMTOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "week" parameter in setWiFiSEPSS 1.3%CVE-2024-44678HIGHGigastone TR1 Travel Router R101 v1.0.2 is vulnerable to Command Injection. This allows an authenticated attacker to execute arbitrary commaEPSS 1.3%CVE-2025-1265CRITICALElseta Vinci Protocol Analyzer OS Command InjectionEPSS 1.3%CVE-2024-11063HIGHD-Link DSL6740C - OS Command InjectionEPSS 1.3%CVE-2024-11064HIGHD-Link DSL6740C - OS Command InjectionEPSS 1.3%