Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2682

2682 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-4221 Chamilo LMS Learning Path PPT2LP Command Injection Vulnerability — Chamilo 7.2 High2023-11-28
CVE-2023-3368 Chamilo LMS Unauthenticated Command Injection — Chamilo 9.8 Critical2023-11-28
CVE-2023-6309 moses-smt mosesdecoder trans_result.php os command injection — mosesdecoder 5.5 Medium2023-11-27
CVE-2023-6304 Tecno 4G Portable WiFi TR118 Ping Tool goform_get_cmd_process os command injection — 4G Portable WiFi TR118 7.2 High2023-11-27
CVE-2023-4149 WAGO: OS Command Injection Vulnerability in Managed Switch — Industrial Managed Switch (0852-0602) 9.8 Critical2023-11-21
CVE-2023-35762 OS Command Injection in INEA ME RTU — ME RTU 9.9 Critical2023-11-20
CVE-2023-6019 Ray Command Injection in cpu_profile Parameter — ray-project/ray 9.8 Critical2023-11-16
CVE-2023-6018 MLflow Arbitrary File Write — mlflow/mlflow 9.1 -2023-11-16
CVE-2023-36553 Fortinet FortiSIEM 安全漏洞 — FortiSIEM 9.3 Critical2023-11-14
CVE-2023-5037 Authenticated Command Injection — A-Series, Q-Series, PNM-series Camera 8.8 -2023-11-13
CVE-2023-39295 QuMagie — QuMagie 8.8 High2023-11-10
CVE-2023-23367 QTS, QuTS hero, QuTScloud — QTS 4.7 Medium2023-11-10
CVE-2023-26156 chromedriver 安全漏洞 — chromedriver 5.6 Medium2023-11-09
CVE-2023-23368 QTS, QuTS hero, QuTScloud — QTS 9.8 Critical2023-11-03
CVE-2023-41352 Chunghwa Telecom NOKIA G-040W-Q - Command Injection — NOKIA G-040W-Q 7.2 High2023-11-03
CVE-2023-41348 ASUS RT-AX55 - command injection - 4 — RT-AX55 8.8 High2023-11-03
CVE-2023-41347 ASUS RT-AX55 - command injection - 3 — RT-AX55 8.8 High2023-11-03
CVE-2023-41346 ASUS RT-AX55 - command injection - 2 — RT-AX55 8.8 High2023-11-03
CVE-2023-41345 ASUS RT-AX55 - command injection - 1 — RT-AX55 8.8 High2023-11-03
CVE-2023-20175 Cisco Identity Services Engine 安全漏洞 — Cisco Identity Services Engine Software 8.8 High2023-11-01
CVE-2023-20219 Cisco Firepower Management Center 安全漏洞 — Cisco Firepower Management Center 7.2 High2023-11-01
CVE-2023-20273 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE Software 7.2 High2023-10-24
CVE-2023-33839 IBM Security Verify Governance command execution — Security Verify Governance 7.2 High2023-10-23
CVE-2023-43066 Dell Unity 操作系统命令注入漏洞 — Unity 5.1 Medium2023-10-23
CVE-2023-28805 ZCC on Linux privilege escalation — Client Connector 6.7 Medium2023-10-23
CVE-2023-5684 Byzoro Smart S85F Management Platform importexport.php os command injection — Smart S85F Management Platform 4.7 Medium2023-10-21
CVE-2023-5683 Byzoro Smart S85F Management Platform importconf.php os command injection — Smart S85F Management Platform 6.3 Medium2023-10-21
CVE-2023-46117 Inadequate validation of retrieved subdomains may lead to a Remote Code Execution in reconFTW — reconftw 8.8 -2023-10-20
CVE-2023-23373 QUSBCam2 — QUSBCam2 8.8 High2023-10-20
CVE-2023-40145 Weintek cMT3000 HMI Web CGI OS Command Injection — cMT-FHD 8.8 High2023-10-19

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2682 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.