Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2653

2653 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-20099 Cisco UCS Manager and FXOS Software Command Injection Vulnerability — Cisco Firepower Extensible Operating System (FXOS) 6.7 Medium2026-02-25
CVE-2026-27728 OneUptime: OS Command Injection in Probe NetworkPathMonitor via unsanitized destination in traceroute exec() — oneuptime 10.0 Critical2026-02-25
CVE-2026-27849 Missing neutralization in Linksys MR9600, Linksys MX4200 — MR9600 8.8AIHighAI2026-02-25
CVE-2026-20036 Cisco UCS Manager Software Command Injection Vulnerability — Cisco Unified Computing System (Managed) 6.5 Medium2026-02-25
CVE-2026-27848 Missing neutralization in Linksys MR9600, Linksys MX4200 — MR9600 9.8AICriticalAI2026-02-25
CVE-2026-27626 OliveTin vulnerable to OS Command Injection via `password` argument type and webhook JSON extraction bypasses shell safety checks — OliveTin 10.0 Critical2026-02-25
CVE-2026-22553 InSAT MasterSCADA BUK-TS OS Command Injection — MasterSCADA BUK-TS 9.8 Critical2026-02-24
CVE-2026-23678 Binardat 10G08-0800GSM Network Switch Traceroute CLI Command Injection — 10G08-0800GSM Network Switch 8.8 High2026-02-24
CVE-2026-3102 exiftool PNG File MacOS.pm SetMacOSTags os command injection — exiftool 6.3 Medium2026-02-24
CVE-2026-3101 Intelbras TIP 635G Ping os command injection — TIP 635G 6.3 Medium2026-02-24
CVE-2026-27208 api-gateway-deploy Affected by Exploitable Command Injection via Unprivileged Root Execution — api-gateway-deploy 9.2 Critical2026-02-24
CVE-2026-1459 Zyxel VMG3625-T50B 操作系统命令注入漏洞 — VMG3625-T50B firmware 7.2 High2026-02-24
CVE-2025-13943 Zyxel EX3301-T0 操作系统命令注入漏洞 — EX3301-T0 firmware 8.8 High2026-02-24
CVE-2025-13942 Zyxel EX3510-B0 操作系统命令注入漏洞 — EX3510-B0 firmware 9.8 Critical2026-02-24
CVE-2026-26331 yt-dlp: Arbitrary Command Injection when using the `--netrc-cmd` option — yt-dlp 8.8 High2026-02-24
CVE-2026-3040 DrayTek Vigor 300B Web Management uploadlangs cgiGetFile os command injection — Vigor 300B 4.7 Medium2026-02-23
CVE-2026-2952 Vaelsys HTTP POST Request tree_server.php os command injection — Vaelsys 7.3 High2026-02-22
CVE-2026-2944 Tosei Online Store Management System ネット店舗管理システム HTTP POST Request monitor.php system os command injection — Online Store Management System ネット店舗管理システム 7.3 High2026-02-22
CVE-2026-27487 OpenClaw: Prevent shell injection in macOS keychain credential write — openclaw 7.6 High2026-02-21
CVE-2026-26046 Moodle: moodle: improper input sanitization in tex filter administration setting 7.2 High2026-02-21
CVE-2019-25441 thesystem 1.0 Command Injection via run_command endpoint — thesystem 9.8 Critical2026-02-20
CVE-2026-2041 Nagios Host zabbixagent_configwizard_func Command Injection Remote Code Execution Vulnerability — Host 8.8AIHighAI2026-02-20
CVE-2026-2043 Nagios Host esensors_websensor_configwizard_func Command Injection Remote Code Execution Vulnerability — Host 8.8AIHighAI2026-02-20
CVE-2026-2042 Nagios Host monitoringwizard Command Injection Remote Code Execution Vulnerability — Host 8.8AIHighAI2026-02-20
CVE-2026-2035 Deciso OPNsense diag_backup.php filename Command Injection Remote Code Execution Vulnerability — OPNsense 8.0AIHighAI2026-02-20
CVE-2026-27113 Liquid Prompt arbitrary command injection via crafted Git branch names in gitstatusd backend — liquidprompt 6.3 Medium2026-02-20
CVE-2026-27190 Deno has a Command Injection via Incomplete shell metacharacter blocklist in node:child_process — deno 8.1 High2026-02-20
CVE-2026-2847 UTT HiPER 520 Web Management formReleaseConnect sub_44EFB4 os command injection — HiPER 520 7.2 High2026-02-20
CVE-2026-2846 UTT HiPER 520 Web Management formPdbUpConfig sub_44D264 os command injection — HiPER 520 7.2 High2026-02-20
CVE-2021-35402 ProLink PRC2402M 操作系统命令注入漏洞 — PRC2402M 10.0 Critical2026-02-20

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2653 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.