Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2664

2664 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-30247 Western Digital My Cloud 安全漏洞 — My Cloud 9.8AICriticalAI2025-09-29
CVE-2025-11141 Ruijie NBR2100G-E branch_passw.php listAction os command injection — NBR2100G-E 4.7 Medium2025-09-29
CVE-2025-11138 mirweiye wenkucms common.php createPathOne os command injection — wenkucms 6.3 Medium2025-09-29
CVE-2025-59844 Argument injection vulnerability in SonarQube Scan Action — sonarqube-scan-action 8.8 -2025-09-26
CVE-2025-35027 Unitree Multiple Robotic Products Command Injection — Go2 7.3 High2025-09-26
CVE-2025-60017 Unitree多款产品 安全漏洞 — Go2 8.2 High2025-09-26
CVE-2025-11005 TOTOLINK X6000R Unauthenticated Command Injection Vulnerability — X6000R 9.8AICriticalAI2025-09-25
CVE-2025-34227 Nagios XI < 2026R1 Configuration Wizard Authenticated Command Injection — Nagios XI 8.8AIHighAI2025-09-25
CVE-2025-43943 Dell Cloud Disaster Recovery 操作系统命令注入漏洞 — Cloud Disaster Recovery 6.7 Medium2025-09-25
CVE-2025-27262 Ericsson Indoor Connect 8855 - Improper Neutralization of Special Elements used in an OS Command Vulnerability — Indoor Connect 8855 9.8AICriticalAI2025-09-25
CVE-2025-52906 TOTOLINK X6000R Command Injection Vulnerability — X6000R 9.8AICriticalAI2025-09-24
CVE-2025-59534 CryptoLib command Injection vulnerability in initialize_kerberos_keytab_file_login() — CryptoLib 7.3 High2025-09-23
CVE-2025-9588 OS Command Injection in Iron Mountain's enVision — enVision 10.0 Critical2025-09-23
CVE-2025-9494 Viessmann Vitogate 300 OS Command Injection — Vitogate 300 8.8AIHighAI2025-09-23
CVE-2025-10775 Wavlink WL-NU516U1 login.cgi sub_4012A0 os command injection — WL-NU516U1 4.7 Medium2025-09-22
CVE-2025-10774 Ruijie 6000-E10 sub_commit.php os command injection — 6000-E10 4.7 Medium2025-09-22
CVE-2025-10767 CosmodiumCS OnlyRAT Configuration File main.py remote_download os command injection — OnlyRAT 4.5 Medium2025-09-21
CVE-2025-10568 HyperX NGENUITY - Arbitrary Code Execution — HyperX NGENUITY 8.8 -2025-09-19
CVE-2025-48703 Control Web Panel 操作系统命令注入漏洞 — CentOS Web Panel 9.0 Critical2025-09-19
CVE-2025-36143 IBM watsonx.data command execution — watsonx.data 4.7 Medium2025-09-18
CVE-2025-23316 NVIDIA Triton Inference Server 操作系统命令注入漏洞 — Triton Inference Server 9.8 Critical2025-09-17
CVE-2025-10619 sequa-ai sequa-mcp OAuth Server Discovery node-oauth-client-provider.ts redirectToAuthorization os command injection — sequa-mcp 6.3 Medium2025-09-17
CVE-2025-9972 Planet Technology|Industrial Cellular Gateway - OS Command Injection — ICG-2510WG-LTE (EU/US) 9.8 Critical2025-09-17
CVE-2025-10589 N-Partner|N-Reporter, N-Cloud, N-Probe - OS Command Injection — N-Reporter 8.8 High2025-09-17
CVE-2025-58116 I-O DATA WN-7D36QR 操作系统命令注入漏洞 — WN-7D36QR 7.2 High2025-09-17
CVE-2025-59518 LemonLDAP::NG 操作系统命令注入漏洞 — LemonLDAP::NG 8.0 High2025-09-17
CVE-2025-34184 Ilevia EVE X1 Server 4.7.18.0.eden Neuro-Core Unauthenticated Code Injection — EVE X1 Server 9.8AICriticalAI2025-09-16
CVE-2025-55211 FreePBX Post-Authenticated Command Injection — framework 7.2AIHighAI2025-09-15
CVE-2025-59361 OS command injection in Chaos Mesh via the cleanIptables mutation 9.8 Critical2025-09-15
CVE-2025-59360 OS command injection in Chaos Mesh via the killProcesses mutation 9.8 Critical2025-09-15

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2664 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.