Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2676

2676 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-11064 D-Link DSL6740C - OS Command Injection — DSL6740C 7.2 High2024-11-11
CVE-2024-11063 D-Link DSL6740C - OS Command Injection — DSL6740C 7.2 High2024-11-11
CVE-2024-11062 D-Link DSL6740C - OS Command Injection — DSL6740C 7.2 High2024-11-11
CVE-2024-11046 D-Link DI-8003 upgrade_filter.asp upgrade_filter_asp os command injection — DI-8003 6.3 Medium2024-11-10
CVE-2024-45763 Dell Enterprise SONiC OS 操作系统命令注入漏洞 — Enterprise SONiC OS 9.1 Critical2024-11-08
CVE-2024-45765 Dell Enterprise SONiC OS 操作系统命令注入漏洞 — Enterprise SONiC OS 9.1 Critical2024-11-08
CVE-2024-10966 TOTOLINK X18 cstecgi.cgi os command injection — X18 6.3 Medium2024-11-07
CVE-2024-10919 didi Super-Jacoco triggerUnitCover os command injection — Super-Jacoco 6.3 Medium2024-11-06
CVE-2024-10915 D-Link DNS-320/DNS-320LW/DNS-325/DNS-340L account_mgr.cgi cgi_user_add os command injection — DNS-320 8.1 High2024-11-06
CVE-2024-10914 D-Link DNS-320/DNS-320LW/DNS-325/DNS-340L account_mgr.cgi cgi_user_add os command injection — DNS-320 8.1 High2024-11-06
CVE-2023-29120 Unauthorized Remote Command Execution in Enel X Juicebox — JuiceBox Pro 3.0 22kW Cellular 9.6 Critical2024-11-05
CVE-2024-51661 WordPress Media Library Assistant plugin <= 3.19 - Remote Code Execution (RCE) vulnerability — Media LIbrary Assistant 9.1 Critical2024-11-04
CVE-2024-10653 CHANGING Information Technology IDExpert - OS Command Injection — IDExpert 7.2 High2024-11-01
CVE-2024-8934 Beckhoff: Local command injection via TwinCAT Package Manager — TwinCAT Package Manager 6.5 Medium2024-10-31
CVE-2024-41153 Hitachi Energy TRO600 安全漏洞 — TRO600 7.2 High2024-10-29
CVE-2024-47821 pyLoad vulnerable to remote code execution by download to /.pyload/scripts using /flashgot API — pyload 9.1 Critical2024-10-25
CVE-2024-48963 Snyk CLI 安全漏洞 — Snyk Cli 7.5 High2024-10-23
CVE-2024-48964 Snyk CLI 安全漏洞 — Snyk Cli 7.5 High2024-10-23
CVE-2024-20424 Cisco Secure Firewall Management Center 安全漏洞 — Cisco Firepower Management Center 9.9 Critical2024-10-23
CVE-2024-20275 Cisco Secure Firewall Management Center Software Backup Cluster Command Injection Vulnerability — Cisco Firepower Management Center 6.8 Medium2024-10-23
CVE-2024-47901 Siemens InterMesh 7177和Siemens InterMesh 7707 操作系统命令注入漏洞 — InterMesh 7177 Hybrid 2.0 Subscriber 10.0 Critical2024-10-23
CVE-2024-10202 Wellchoose Administrative Management System - OS Command Injection — Administrative Management System 8.8 High2024-10-21
CVE-2024-10119 SECOM WRTM326 - OS Command Injection — WRTM326 9.8 Critical2024-10-18
CVE-2024-10118 SECOM WRTR-304GN-304TW-UPSC - OS Command Injection — WRTR-304GN-304TW-UPSC 9.8 Critical2024-10-18
CVE-2024-49281 WordPress Click to Chat – WP Support All-in-One Floating Widget plugin <= 2.3.3 - Cross Site Scripting (XSS) vulnerability — Click to Chat – WP Support All-in-One Floating Widget 6.5 Medium2024-10-17
CVE-2005-10003 mikexstudios Xcomic os command injection — Xcomic 5.6 Medium2024-10-17
CVE-2024-6333 Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products — AltaLink® B8045 / B8055 / B8065 / B8075 / B8090 | C8030 / C8035 / C8045 / C8055 / C807 7.2 High2024-10-17
CVE-2024-20461 Cisco ATA 190 Series Analog Telephone Adapter Firmware Command Injection Vulnerability — Cisco Analog Telephone Adaptor (ATA) Software 6.0 Medium2024-10-16
CVE-2024-20459 Cisco ATA 190 Series Analog Telephone Adapter Muliplatform Firmware Command Injection Vulnerability — Cisco Analog Telephone Adaptor (ATA) Software 6.5 Medium2024-10-16
CVE-2024-20458 Cisco ATA 190 Series Analog Telephone Adapter Software Vulnerabilities — Cisco Analog Telephone Adaptor (ATA) Software 8.2 High2024-10-16

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2676 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.