Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2653

2653 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-22550 ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 操作系统命令注入漏洞 — WRC-X1500GS-B 8.8AIHighAI2026-02-03
CVE-2026-0383 Information disclosure in Brocade Fabric OS before 9.2.1c2, 9.2.2 through 9.2.2a and 10.0.0 — Fabric OS 5.5AIMediumAI2026-02-03
CVE-2026-24763 Authenticated Command Injection in OpenClaw Docker Execution via PATH Environment Variable — clawdbot 8.8 High2026-02-02
CVE-2026-23515 RCE - Command Injection in Signal K set-system-time plugin — signalk-server 10.0 Critical2026-02-02
CVE-2026-22229 Command Injection Vulnerability on TP-Link Archer BE230 v1.2 and Deco BE25 v1.0 — Archer BE230 v1.2 7.7AIHighAI2026-02-02
CVE-2026-22227 Command Injection Vulnerability on TP-Link Archer BE230 v1.2 — Archer BE230 v1.2 8.4AIHighAI2026-02-02
CVE-2026-22226 Command Injection Vulnerability on TP-Link Archer BE230 v1.2 — Archer BE230 v1.2 8.4AIHighAI2026-02-02
CVE-2026-22225 Command Injection Vulnerability on TP-Link Archer BE230 v1.2 and AXE75 v1.0 — Archer BE230 v1.2 8.4AIHighAI2026-02-02
CVE-2026-22224 Command Injection Vulnerability on TP-Link Archer BE230 v1.2 — Archer BE230 v1.2 8.4AIHighAI2026-02-02
CVE-2026-22223 Command Injection Vulnerability on TP-Link Archer BE230 v1.2 — Archer BE230 v1.2 9.0AICriticalAI2026-02-02
CVE-2026-22222 Command Injection Vulnerability on TP-Link Archer BE230 v1.2 — Archer BE230 v1.2 9.0AICriticalAI2026-02-02
CVE-2026-0631 Command Injection Vulnerability on TP-Link Archer BE230 v1.2 — Archer BE230 v1.2 9.0AICriticalAI2026-02-02
CVE-2026-0630 Command Injection Vulnerability on TP-Link Archer BE230 v1.2 and AXE75 v1.0 — Archer BE230 v1.2 8.0AIHighAI2026-02-02
CVE-2026-22221 Command Injection Vulnerability on TP-Link Archer BE230 v1.2 — Archer BE230 v1.2 9.0AICriticalAI2026-02-02
CVE-2026-24788 raspap-webgui 操作系统命令注入漏洞 — raspap-webgui 8.8AIHighAI2026-02-02
CVE-2020-37032 Wing FTP Server 6.3.8 - Remote Code Execution — Wing FTP Server 8.8 High2026-01-30
CVE-2020-37027 Sickbeard 0.1 - Remote Command Injection — Sickbeard 9.8 Critical2026-01-30
CVE-2026-1723 TOTOLINK X6000R Unauthenticated Command Injection Vulnerability — X6000R 9.8AICriticalAI2026-01-30
CVE-2026-25130 Cybersecurity AI vulnerable to command Injection through argument injection in find_file Agent tool — cai 9.7 Critical2026-01-30
CVE-2026-21418 Dell Unity 操作系统命令注入漏洞 — Unity 7.8 High2026-01-30
CVE-2026-22277 Dell UnityVSA 操作系统命令注入漏洞 — UnityVSA 7.8 High2026-01-30
CVE-2026-1665 Command Injection in nvm via NVM_AUTH_HEADER in wget code path — nvm 8.8AIHighAI2026-01-29
CVE-2026-25063 gradle-completion has a Bash command injection issue — gradle-completion 8.8AIHighAI2026-01-29
CVE-2020-37012 Tea LaTex 1.0 - Remote Code Execution — Tea LaTex 9.8 Critical2026-01-29
CVE-2020-37002 Ajenti 2.1.36 - Remote Code Execution — Ajenti 9.8 Critical2026-01-29
CVE-2026-1544 D-Link DIR-823X set_mode sub_41E2A0 os command injection — DIR-823X 6.3 Medium2026-01-28
CVE-2026-1506 D-Link DIR-615 MAC Filter Configuration adv_mac_filter.php os command injection — DIR-615 7.2 High2026-01-28
CVE-2026-1505 D-Link DIR-615 URL Filter set_temp_nodes.php os command injection — DIR-615 7.2 High2026-01-28
CVE-2026-24841 Dokploy Vulnerable to Authenticated Remote Code Execution via Command Injection in Docker Container Terminal WebSocket Endpoint — dokploy 9.9 Critical2026-01-28
CVE-2025-33234 NVIDIA runx 安全漏洞 — NVIDIA runx 7.8 High2026-01-27

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2653 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.