Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2682

2682 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-43068 Dell SmartFabric Storage Software 操作系统命令注入漏洞 — Dell SmartFabric Storage Software 7.8 High2023-10-05
CVE-2023-5301 DedeCMS album_add.php AddMyAddon os command injection — DedeCMS 4.7 Medium2023-09-30
CVE-2023-26145 pydash 命令注入漏洞 — pydash 7.4 High2023-09-28
CVE-2023-20231 Cisco IOS XE Software 输入验证错误漏洞 — Cisco IOS XE Software 8.8 High2023-09-27
CVE-2023-3767 OS command injection on EasyPHP Webserver — Webserver 9.8 Critical2023-09-26
CVE-2023-40581 yt-dlp command injection when using `%q` in `--exec` on Windows — yt-dlp 8.4 High2023-09-25
CVE-2022-3874 Os command injection via ct_command and fcct_command — foreman 8.0 High2023-09-22
CVE-2023-5002 Pgadmin4: remote code execution by an authenticated user 6.0 Medium2023-09-22
CVE-2023-23362 QTS, QuTS hero, QuTScloud — QTS 8.8 High2023-09-22
CVE-2023-0118 Foreman: arbitrary code execution through templates 9.1 Critical2023-09-20
CVE-2022-47555 Improper Neutralization of Special Elements in Ormazabal products — ekorCCP 9.3 Critical2023-09-19
CVE-2023-35850 SUNNET WMPro - Command Injection — WMPro 7.2 High2023-09-18
CVE-2022-35849 Fortinet FortiADC 操作系统命令注入漏洞 — FortiADC 7.4 High2023-09-13
CVE-2023-39780 ASUS RT-AX55 命令注入漏洞 — RT-AX55 8.8 High2023-09-11
CVE-2023-4873 Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform importexport.php os command injection — Smart S45F Multi-Service Secure Gateway Intelligent Management Platform 6.3 Medium2023-09-10
CVE-2023-20193 Cisco Identity Services Engine 安全漏洞 — Cisco Identity Services Engine Software 6.0 Medium2023-09-07
CVE-2023-39237 ASUS RT-AC86U - Command injection vulnerability - 5 — RT-AC86U 8.8 High2023-09-07
CVE-2023-39236 ASUS RT-AC86U - Command injection vulnerability - 4 — RT-AC86U 8.8 High2023-09-07
CVE-2023-38033 ASUS RT-AC86U - Command injection vulnerability - 3 — RT-AC86U 8.8 High2023-09-07
CVE-2023-38032 ASUS RT-AC86U - Command injection vulnerability - 2 — RT-AC86U 8.8 High2023-09-07
CVE-2023-38031 ASUS RT-AC86U - Command injection vulnerability - 1 — RT-AC86U 8.8 High2023-09-07
CVE-2021-36023 Magento Commerce Widgets Update Layout XML Injection Vulnerability Could Lead To Remote Code Execution — Adobe Commerce 9.1 Critical2023-09-06
CVE-2023-39362 Authenticated command injection in SNMP options of a Device — cacti 7.2 High2023-09-05
CVE-2023-4711 D-Link DAR-8000-10 decodmail.php os command injection — DAR-8000-10 5.0 Medium2023-09-01
CVE-2023-40582 Command Injection Vulnerability in find-exec — find-exec 9.8 Critical2023-08-30
CVE-2023-1997 OS Command Injection vulnerability affecting SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x — SIMULIA 3DOrchestrate 8.8 High2023-08-28
CVE-2023-38027 SpotCam Co., Ltd. SpotCam Sense - Command Injection — SpotCam Sense 9.8 Critical2023-08-28
CVE-2022-43907 IBM Security Guardium command execution — Security Guardium 7.2 High2023-08-27
CVE-2023-4542 D-Link DAR-8000-10 sys1.php os command injection — DAR-8000-10 6.3 Medium2023-08-25
CVE-2023-4412 TOTOLINK EX1200L setWanCfg os command injection — EX1200L 6.3 Medium2023-08-18

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2682 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.