Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2676

2676 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-6185 Ruijie RG-UAC commit.php get_ip_addr_details os command injection — RG-UAC 6.3 Medium2024-06-20
CVE-2024-6184 Ruijie RG-UAC reboot_commit.php os command injection — RG-UAC 6.3 Medium2024-06-20
CVE-2024-6048 Openfind MailGates and MailAudit - OS Command Injection — MailGates 5.0 9.8 Critical2024-06-17
CVE-2024-6047 GeoVision EOL device - OS Command Injection — GV_DSP_LPR_V2 9.8 Critical2024-06-17
CVE-2024-31162 ASUS Download Master - OS Command Injection — Download Master 7.2 High2024-06-14
CVE-2024-27172 Remote Code Execution — Toshiba Tec e-Studio multi-function peripheral (MFP) 9.8 Critical2024-06-14
CVE-2024-4696 Lenovo Service Bridge 安全漏洞 — Service Bridge 7.5 High2024-06-13
CVE-2024-35306 OS Command injection in Ajax PHP files through HTTP Request — Pandora FMS 9.8 -2024-06-10
CVE-2024-35304 System command injection through Netflow function — Pandora FMS 9.8 -2024-06-10
CVE-2024-5785 Command injection vulnerability in Comtrend router — Comtrend WLD71-T1_v2.0.201820 8.0 High2024-06-10
CVE-2024-4577 Argument Injection in PHP-CGI — PHP 9.8 Critical2024-06-09
CVE-2024-2359 Improper Neutralization of Special Elements used in an OS Command in parisneo/lollms-webui — parisneo/lollms-webui 9.8AICriticalAI2024-06-06
CVE-2024-1880 OS Command Injection in MacOS Text-To-Speech Class in significant-gravitas/autogpt — significant-gravitas/autogpt 8.8AIHighAI2024-06-06
CVE-2024-1881 Improper Neutralization of Special Elements used in an OS Command in significant-gravitas/autogpt — significant-gravitas/autogpt 9.8AICriticalAI2024-06-06
CVE-2024-30368 A10 Thunder ADC CsrRequestView Command Injection Remote Code Execution Vulnerability — Thunder ADC 8.8AIHighAI2024-06-06
CVE-2024-3104 Remote Code Execution in mintplex-labs/anything-llm — mintplex-labs/anything-llm 10.0AICriticalAI2024-06-06
CVE-2024-36394 SysAid - CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') — SysAid 9.1 Critical2024-06-06
CVE-2024-5421 Authenticated Command Injection — utnserver Pro 8.8AIHighAI2024-06-04
CVE-2024-4253 Command Injection in gradio-app/gradio — gradio-app/gradio 9.8AICriticalAI2024-06-04
CVE-2024-29973 Zyxel NAS326和Zyxel NAS542 操作系统命令注入漏洞 — NAS326 firmware 9.8 Critical2024-06-04
CVE-2024-29972 Zyxel NAS326和Zyxel NAS542 操作系统命令注入漏洞 — NAS326 firmware 9.8 Critical2024-06-04
CVE-2024-2421 LenelS2 NetBox Improper Neutralization of Special Elements — NetBox 9.8AICriticalAI2024-05-30
CVE-2024-5411 Command Injection — IAP-420 8.8AIHighAI2024-05-28
CVE-2024-5403 ASKEY 5G NR Small Cell - Command Injection — 5G NR Small Cell 7.2 High2024-05-27
CVE-2024-5400 Openfind Mail2000 - OS Command Injection — Mail2000 V8.0 8.8 High2024-05-27
CVE-2024-5399 Openfind Mail2000 - OS Command Injection — Mail2000 V7.0 7.2 High2024-05-27
CVE-2024-5340 Ruijie RG-UAC sub_commit.php os command injection — RG-UAC 4.7 Medium2024-05-25
CVE-2024-5339 Ruijie RG-UAC online_check.php os command injection — RG-UAC 4.7 Medium2024-05-25
CVE-2024-5338 Ruijie RG-UAC online.php os command injection — RG-UAC 4.7 Medium2024-05-25
CVE-2024-5337 Ruijie RG-UAC user_commit.php os command injection — RG-UAC 4.7 Medium2024-05-25

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2676 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.