Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2676

2676 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-7448 Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability — AXIOM 8.0AIHighAI2024-08-21
CVE-2020-11847 Vulnerability in sshrelay in privileged access manager provides full system access. — Privileged Access Manager 8.2 High2024-08-21
CVE-2024-39401 Adobe Commerce | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78) — Adobe Commerce 8.4 High2024-08-14
CVE-2024-39402 Adobe Commerce | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78) — Adobe Commerce 8.4 High2024-08-14
CVE-2024-7728 CAYIN Technology CMS - OS Command Injection — CMS-SE(22.04) 7.2 High2024-08-14
CVE-2022-27486 Fortinet FortiDDoS 操作系统命令注入漏洞 — FortiDDoS 5.9 Medium2024-08-13
CVE-2024-40893 Firewalla BTLE Authenticated Command Injection — Box Software 6.8 Medium2024-08-12
CVE-2024-6917 RCE in Veribilim Software's Veribase Order Management — Veribase Order Management 8.8AIHighAI2024-08-12
CVE-2024-42167 Command Injection in Organisationname — FIWARE Keyrock 9.1 Critical2024-08-12
CVE-2024-42166 Command Injection in Applicationname — FIWARE Keyrock 9.1 Critical2024-08-12
CVE-2024-42370 Litestar repository vulnerable to Environment Variable injection in `docs-preview.yml` workflow — litestar 8.3 High2024-08-09
CVE-2024-3659 Command injection in KAON AR2140 routers — AR2140 7.2AIHighAI2024-08-08
CVE-2024-7580 Alien Technology ALR-F800 system.html os command injection — ALR-F800 6.3 Medium2024-08-07
CVE-2024-7579 Alien Technology ALR-F800 File Name upgrade.cgi popen os command injection — ALR-F800 6.3 Medium2024-08-07
CVE-2024-7470 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface vpn_template_style.php sslvpn_config_mod os command injection — MSG1200 6.3 Medium2024-08-05
CVE-2024-7469 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_vpn_web_custom.php sslvpn_config_mod os command injection — MSG1200 6.3 Medium2024-08-05
CVE-2024-7468 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_service_manage.php sslvpn_config_mod os command injection — MSG1200 6.3 Medium2024-08-05
CVE-2024-7467 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_ip_network.php sslvpn_config_mod os command injection — MSG1200 6.3 Medium2024-08-05
CVE-2024-41956 Soft Serve allows arbitrary code execution by crafting git-lfs requests — soft-serve 8.1 High2024-08-01
CVE-2024-7357 D-Link DIR-600 soap.cgi soapcgi_main os command injection — DIR-600 6.3 Medium2024-08-01
CVE-2024-39607 ELECOM WRC-X6000XS-G、WRC-X1500GS-B、WRC-X1500GSA-B 安全漏洞 — WRC-X1500GS-B 7.2AIHighAI2024-08-01
CVE-2024-5670 Softnext Mail SQR Expert and Mail Archiving Expert - OS Command Injection — SN OS 12.1 9.8 Critical2024-07-29
CVE-2024-7175 TOTOLINK A3600R cstecgi.cgi setDiagnosisCfg os command injection — A3600R 6.3 Medium2024-07-29
CVE-2024-7171 TOTOLINK A3600R cstecgi.cgi NTPSyncWithHost os command injection — A3600R 6.3 Medium2024-07-28
CVE-2024-38512 Lenovo XClarity Controller 安全漏洞 — XClarity Controller 7.2 High2024-07-26
CVE-2024-38511 Lenovo XClarity Controller 安全漏洞 — XClarity Controller 7.2 High2024-07-26
CVE-2024-38510 Lenovo XClarity Controller 安全漏洞 — XClarity Controller 7.2 High2024-07-26
CVE-2024-38508 Lenovo XClarity Controller 安全漏洞 — XClarity Controller 7.2 High2024-07-26
CVE-2024-7120 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_base_config.php os command injection — MSG1200 6.3 Medium2024-07-26
CVE-2024-24622 Softaculous Webuzo Password Reset Command Injection — Webuzo 8.8 High2024-07-25

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2676 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.