Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2653

2653 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-28409 WeGIA Vulnerable to Remote Code Execution (RCE) via OS Command Injection — WeGIA 10.0 Critical2026-02-27
CVE-2026-21654 Johnson Controls -Frick Quantum HD- Unauthenticated Remote Code Execution — Frick Controls Quantum HD 6.6 -2026-02-27
CVE-2026-0980 Rubyipmi: red hat satellite: remote code execution in rubyipmi via malicious bmc username — Red Hat Satellite 6.16 for RHEL 8 8.3 High2026-02-27
CVE-2026-3301 Totolink N300RH Web Management cstecgi.cgi setWebWlanIdx os command injection — N300RH 9.8 Critical2026-02-27
CVE-2026-3037 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-25037 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-25196 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-20764 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-25721 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-23702 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-24452 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-25105 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-24695 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-20902 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-25109 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-24689 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-20910 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-25195 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-24517 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-20742 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-25111 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-21389 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 8.0 High2026-02-27
CVE-2026-24663 Copeland XWEB and XWEB Pro OS Command Injection — Copeland XWEB 300D PRO 9.0 Critical2026-02-27
CVE-2026-28279 `osctrl-admin` Vulnerable to OS Command Injection via Environment Configuration — osctrl 7.4 High2026-02-26
CVE-2026-28269 Kiteworks Core has an OS Command Injection — security-advisories 5.9 Medium2026-02-26
CVE-2026-28207 Zen-C Vulnerable to Command Injection via Malicious Output Filename — Zen-C 6.6 Medium2026-02-26
CVE-2026-27965 Vitess users with backup storage access can gain unauthorized access to production deployment environments — vitess 8.8AIHighAI2026-02-26
CVE-2026-27938 WPGraphQL Repo Vulnerable to Command Injection via Unsanitized GitHub Actions Expression in Release Workflow — wp-graphql 7.7 High2026-02-26
CVE-2026-27635 Manyfold vulnerable to OS command injection via ZIP filename in f3d render — manyfold 7.5 High2026-02-25
CVE-2026-27613 CGI Parameter Injection (Bypass of STRICT_CGI_PARAMS and EscapeShellParam) — TinyWeb 9.8AICriticalAI2026-02-25

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2653 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.