Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2669

2669 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-34073 stamparm/maltrail <=0.54 Remote Command Execution — Maltrail 9.8AICriticalAI2025-07-02
CVE-2025-53100 RestDB's Codehooks.io MCP Server Vulnerable to Command Injection — codehooks-mcp-server 8.8AIHighAI2025-07-01
CVE-2025-34056 AVTECH IP camera, DVR, and NVR Devices Authenticated Root Command Execution — IP camera, DVR, and NVR Devices 8.8AIHighAI2025-07-01
CVE-2025-34055 AVTECH IP camera, DVR, and NVR Devices Authenticated Root Command Execution — IP camera, DVR, and NVR Devices 8.8AIHighAI2025-07-01
CVE-2025-34054 AVTECH IP camera, DVR, and NVR Devices Unauthenticated Command Injection — IP camera, DVR, and NVR Devices 9.8AICriticalAI2025-07-01
CVE-2025-6899 D-Link DI-7300G+/DI-8200G msp_info.htm os command injection — DI-7300G+ 6.3 Medium2025-06-30
CVE-2025-6898 D-Link DI-7300G+ in proxy_client.asp os command injection — DI-7300G+ 6.3 Medium2025-06-30
CVE-2025-6897 D-Link DI-7300G+ httpd_debug.asp os command injection — DI-7300G+ 5.5 Medium2025-06-30
CVE-2025-6896 D-Link DI-7300G+ wget_test.asp os command injection — DI-7300G+ 6.3 Medium2025-06-30
CVE-2023-28906 Command injection in networking service — Volkswagen MIB3 infotainment system MIB3 OI MQB 7.8 High2025-06-28
CVE-2025-36529 TB-eye多款产品 操作系统命令注入漏洞 — XRN-410SN/TE 7.2 High2025-06-27
CVE-2025-34049 OptiLink ONT1GEW GPON Remote Code Execution — ONT1GEW GPON 8.8AIHighAI2025-06-26
CVE-2025-34044 WIFISKY 7-Layer Flow Control Router Remote Command Execution — WIFISKY 7-layer flow control router 9.8AICriticalAI2025-06-26
CVE-2025-34043 Vacron NVR Remote Command Execution — Network Video Recorder (NVR) 9.8AICriticalAI2025-06-26
CVE-2025-34042 Beward N100 IP Camera Remote Command Execution — N100 IP Camera 8.8AIHighAI2025-06-26
CVE-2025-52573 Command Injection in MCP Server ios-simulator-mcp — ios-simulator-mcp 6.0 Medium2025-06-26
CVE-2025-6562 Hunt Electronic Hybrid DVR - OS Command Injection — Hybrid DVR 8.8 High2025-06-26
CVE-2025-5459 OS Command Injection — Puppet Enterprise 8.8AIHighAI2025-06-26
CVE-2025-6621 TOTOLINK CA300-PoE ap.so QuickSetting os command injection — CA300-PoE 6.3 Medium2025-06-25
CVE-2025-6620 TOTOLINK CA300-PoE upgrade.so setUpgradeUboot os command injection — CA300-PoE 6.3 Medium2025-06-25
CVE-2025-6619 TOTOLINK CA300-PoE upgrade.so setUpgradeFW os command injection — CA300-PoE 6.3 Medium2025-06-25
CVE-2025-6618 TOTOLINK CA300-PoE wps.so SetWLanApcliSettings os command injection — CA300-PoE 6.3 Medium2025-06-25
CVE-2025-48890 Elecom WRH-733GBK和Elecom WRH-733GWH 操作系统命令注入漏洞 — WRH-733GBK 9.8AICriticalAI2025-06-24
CVE-2025-43879 Elecom WRH-733GBK和Elecom WRH-733GWH 操作系统命令注入漏洞 — WRH-733GBK 9.8AICriticalAI2025-06-24
CVE-2025-41427 Elecom多款产品 操作系统命令注入漏洞 — WRC-X3000GS 8.8AIHighAI2025-06-24
CVE-2025-6559 Sapido Wireless Router - OS Command Injection — BR071n 9.8 Critical2025-06-24
CVE-2025-34041 Sangfor Endpoint Detection and Response OS Command Injection — Endpoint Detection and Response Platform 9.8AICriticalAI2025-06-24
CVE-2025-34037 Linksys Routers E/WAG/WAP/WES/WET/WRT-Series — E4200 9.8AICriticalAI2025-06-24
CVE-2025-34036 Shenzhen TVT CCTV-DVR Command Injection — CCTV-DVR 9.8AICriticalAI2025-06-24
CVE-2025-34035 EnGenius EnShare IoT Gigabit Cloud Service Command Injection — EnShare IoT Gigabit Cloud Service 9.8AICriticalAI2025-06-24

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2669 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.