Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2675

2675 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-24393 Authenticated Command Injection Vulnerability in Fidelis Network and Deception — Fidelis Network 8.8 High2022-05-17
CVE-2022-24394 Authenticated Command Injection Vulnerability in Fidelis Network and Deception — Fidelis Network 8.8 High2022-05-17
CVE-2022-26518 InHand Networks InRouter302 操作系统命令注入漏洞 — InRouter302 8.8 -2022-05-12
CVE-2022-26420 InHand Networks InRouter302 操作系统命令注入漏洞 — InRouter302 8.8 -2022-05-12
CVE-2022-26075 InHand Networks InRouter302 操作系统命令注入漏洞 — InRouter302 8.8 -2022-05-12
CVE-2022-30525 合勤科技 USG FLEX 操作系统命令注入漏洞 — USG FLEX 100(W) firmware 9.8 Critical2022-05-12
CVE-2021-30361 Check Point Gaia Portal 操作系统命令注入漏洞 — Check Point Gaia Portal 6.7 -2022-05-11
CVE-2021-34602 Bender Charge Controller: Long URL could lead to webserver crash — CC612 8.8 High2022-04-27
CVE-2022-1440 Command Injection vulnerability in git-interface@2.1.1 in yarkeev/git-interface — yarkeev/git-interface 9.8 -2022-04-22
CVE-2022-26413 Zyxel VMG3312-T20A 操作系统命令注入漏洞 — VMG3312-T20A firmware 8.0 High2022-04-11
CVE-2021-36293 Dell Vnx2 Oe For File安全漏洞 — VNX2 6.4 Medium2022-04-08
CVE-2021-36287 Dell Vnx2 Oe For File 操作系统命令注入漏洞 — VNX2 7.3 High2022-04-08
CVE-2022-26670 D-Link DIR-878 - Command Injection — DIR-878 8.8 High2022-04-07
CVE-2022-25597 ASUS RT-AC86U - Command Injection — RT-AC86U 8.8 High2022-04-07
CVE-2022-24803 Command Injection vulnerability in asciidoctor-include-ext — asciidoctor-include-ext 10.0 Critical2022-03-31
CVE-2022-24796 Remote Command Injection in RaspberryMatic — RaspberryMatic 10.0 Critical2022-03-31
CVE-2021-22795 Schneider Electric StruxureWare Data Center Expert 操作系统命令注入漏洞 — StruxureWare Data Center Expert 9.1 Critical2022-03-28
CVE-2021-27476 Rockwell Automation FactoryTalk AssetCentre OS Command Injection — FactoryTalk AssetCentre 10.0 Critical2022-03-23
CVE-2022-22273 SonicWall SSLVPN 操作系统命令注入漏洞 — SonicWall SRA/SMA100 9.8 -2022-03-17
CVE-2021-32475 Moodle 跨站脚本漏洞 — moodle 5.4 -2022-03-11
CVE-2022-24753 Code injection in Stripe CLI on windows — stripe-cli 7.7 High2022-03-09
CVE-2022-0848 OS Command Injection in part-db/part-db — part-db/part-db 9.8 -2022-03-04
CVE-2022-0841 OS Command Injection in ljharb/npm-lockfile — ljharb/npm-lockfile 9.8 -2022-03-03
CVE-2021-4039 Zyxel Nwa-1100-Nh 操作系统命令注入漏洞 — NWA1100-NH firmware 9.8 Critical2022-03-01
CVE-2020-12775 Hicos citizen certificate client-side component - Command Injection — citizen certificate client-side component 9.8 Critical2022-03-01
CVE-2022-0764 Arbitrary Command Injection in strapi/strapi — strapi/strapi 6.7 -2022-02-26
CVE-2022-25328 Privilege escalation through command injection in fscrypt — fscrypt 5.0 Medium2022-02-25
CVE-2022-24288 Apache Airflow: RCE in example DAGs — Apache Airflow 8.8 -2022-02-25
CVE-2022-20650 Cisco NX-OS Software NX-API Command Injection Vulnerability — Cisco NX-OS Software 8.8 High2022-02-23
CVE-2021-4029 Zyxel Nbg6816和Zyxel Nbg6817 操作系统命令注入漏洞 — ARMOR Z2 (NBG6817) firmware 8.8 High2022-02-22

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2675 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.