Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-77 (在命令中使用的特殊元素转义处理不恰当(命令注入)) — Vulnerability Class 1149

1149 vulnerabilities classified as CWE-77 (在命令中使用的特殊元素转义处理不恰当(命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-5338 Tenda G103 Setting system.lua action_set_system_settings command injection — G103 4.7 Medium2026-04-02
CVE-2026-5333 DefaultFuction Content-Management-System tools.php command injection — Content-Management-System 7.3 High2026-04-02
CVE-2026-5327 efforthye fast-filesystem-mcp index.ts handleGetDiskUsage command injection — fast-filesystem-mcp 6.3 Medium2026-04-02
CVE-2026-20096 Cisco Integrated Management Controller Command Injection Vulnerability — Cisco Enterprise NFV Infrastructure Software 6.5 Medium2026-04-01
CVE-2026-20094 Cisco Integrated Management Controller Command Injection Vulnerability — Cisco Unified Computing System (Standalone) 8.8 High2026-04-01
CVE-2026-20095 Cisco Integrated Management Controller Command Injection Vulnerability — Cisco Enterprise NFV Infrastructure Software 6.5 Medium2026-04-01
CVE-2026-34243 wenxian: Command Injection in GitHub Actions Workflow via `issue_comment.body` — wenxian 9.8 Critical2026-03-31
CVE-2026-5184 TRENDnet TEW-713RE setSysAdm command injection — TEW-713RE 6.3 Medium2026-03-31
CVE-2026-5183 TRENDnet TEW-713RE addRouting sub_421494 command injection — TEW-713RE 6.3 Medium2026-03-31
CVE-2026-5178 Totolink A3300R cstecgi.cgi setIptvCfg command injection — A3300R 6.3 Medium2026-03-31
CVE-2026-5177 Totolink A3300R cstecgi.cgi setWiFiBasicCfg command injection — A3300R 6.3 Medium2026-03-31
CVE-2026-5176 Totolink A3300R cstecgi.cgi setSyslogCfg command injection — A3300R 7.3 High2026-03-31
CVE-2026-5153 Tenda CH22 WriteFacMac FormWriteFacMac command injection — CH22 6.3 Medium2026-03-30
CVE-2025-15379 Command Injection in mlflow/mlflow — mlflow/mlflow 8.8 -2026-03-30
CVE-2026-5105 Totolink A3300R Parameter cstecgi.cgi setVpnPassCfg command injection — A3300R 6.3 Medium2026-03-30
CVE-2026-5104 Totolink A3300R cstecgi.cgi setStaticRoute command injection — A3300R 6.3 Medium2026-03-30
CVE-2026-5103 Totolink A3300R cstecgi.cgi setUPnPCfg command injection — A3300R 6.3 Medium2026-03-30
CVE-2026-5102 Totolink A3300R Parameter cstecgi.cgi setSmartQosCfg command injection — A3300R 6.3 Medium2026-03-30
CVE-2026-5101 Totolink A3300R Parameter cstecgi.cgi setLanCfg command injection — A3300R 6.3 Medium2026-03-29
CVE-2026-5041 code-projects Chamber of Commerce Membership Management System pageMail.php fwrite command injection — Chamber of Commerce Membership Management System 4.7 Medium2026-03-29
CVE-2026-5030 Totolink NR1800X Telnet Service cstecgi.cgi NTPSyncWithHost command injection — NR1800X 6.3 Medium2026-03-29
CVE-2026-5020 Totolink A3600R Parameter cstecgi.cgi setNoticeCfg command injection — A3600R 6.3 Medium2026-03-29
CVE-2026-32241 Flannel vulnerable to cross-node remote code execution via extension backend BackendData injection — flannel 7.5 High2026-03-27
CVE-2026-4554 Tenda F453 WriteFacMac FormWriteFacMac privilege escalation — F453 6.3 Medium2026-03-22
CVE-2026-4543 Wavlink WL-WN578W2 POST Request firewall.cgi command injection — WL-WN578W2 6.3 Medium2026-03-22
CVE-2026-4537 Cudy TR1200 ipsec.lua action_ipsec_conn command injection — TR1200 4.7 Medium2026-03-22
CVE-2025-15607 Authenticated Command Injection in mcsd Service of TP-Link Archer AX53 — AX53 v1 8.8 -2026-03-20
CVE-2026-4468 Comfast CF-AC100 mbox-config command injection — CF-AC100 4.7 Medium2026-03-20
CVE-2026-4467 Comfast CF-AC100 mbox-config command injection — CF-AC100 4.7 Medium2026-03-20
CVE-2026-4466 Comfast CF-AC100 mbox-config command injection — CF-AC100 4.7 Medium2026-03-20

Vulnerabilities classified as CWE-77 (在命令中使用的特殊元素转义处理不恰当(命令注入)) represent 1149 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.