Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2668

2668 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-27249 D-Link DAP-2020 操作系统命令注入漏洞 — DAP-2020 8.8 -2021-04-14
CVE-2021-28204 ASUS BMC's firmware: command injection - Modify user’s information function — BMC firmware for Z10PR-D16 7.2 High2021-04-06
CVE-2021-28203 ASUS BMC's firmware: command injection - Web Set Media Image function — BMC firmware for Z10PR-D16 7.2 High2021-04-06
CVE-2021-29083 Synology DiskStation Manager 操作系统命令注入漏洞 — Synology DiskStation Manager (DSM) 7.2 High2021-04-01
CVE-2021-21412 [thi.ng/egf] Potential arbitrary code execution of `#gpg`-tagged property values — egf 6.4 Medium2021-03-30
CVE-2021-27273 NETGEAR ProSAFE Network Management System 操作系统命令注入漏洞 — ProSAFE Network Management System 8.8 -2021-03-29
CVE-2020-1946 Apache SpamAssassin has an OS Command Injection vulnerability — Apache SpamAssassin 7.2 -2021-03-25
CVE-2021-1452 Cisco IOS XE ROM Monitor Software for Cisco Industrial Switches OS Command Injection Vulnerability — Cisco IOS XE ROMMON Software 6.8 Medium2021-03-24
CVE-2021-1441 Cisco IOS XE Software Hardware Initialization Routines Arbitrary Code Execution Vulnerability — Cisco IOS XE Software 6.7 Medium2021-03-24
CVE-2021-20017 Sonicwall SMA100 操作系统命令注入漏洞 — SMA100 8.8 -2021-03-13
CVE-2021-24033 react-dev-utils 操作系统命令注入漏洞 — react-dev-utils 8.1 -2021-03-09
CVE-2021-21503 Dell PowerScale OneFS 操作系统命令注入漏洞 — PowerScale OneFS 7.8 High2021-03-08
CVE-2021-27256 Netgear NETGEAR R7800 操作系统命令注入漏洞 — R7800 8.8 -2021-03-05
CVE-2021-21302 CSV Injection via csv export — PrestaShop 6.8 Medium2021-02-26
CVE-2021-26724 Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4 — Guardian 7.2 High2021-02-22
CVE-2021-21315 Command Injection Vulnerability — systeminformation 7.1 High2021-02-16
CVE-2020-27861 Netgear NETGEAR 操作系统命令注入漏洞 — Orbi 8.8 -2021-02-11
CVE-2021-21016 Magento Commerce Unauthorized Data Modification Could Lead to Arbitrary Code Execution — Magento Commerce 9.1 -2021-02-11
CVE-2021-21015 Magento Commerce Unauthorized Data Modification Could Lead to Arbitrary Code Execution — Magento Commerce 9.1 -2021-02-11
CVE-2021-21018 Magnto Commerce Unauthorized Data Modification Could Lead To Arbitrary Code Execution — Magento Commerce 9.1 -2021-02-11
CVE-2021-1370 Cisco IOS XR Software for Cisco 8000 Series Routers and Network Convergence System 540 Series Routers Privilege Escalation Vulnerability — Cisco IOS XR Software 7.8 -2021-02-04
CVE-2021-21289 Command Injection Vulnerability in Mechanize — mechanize 7.4 High2021-02-02
CVE-2020-12513 Pepper+Fuchs Comtrol IO-Link Master OS Command Injection — Comtrol IO-Link Master 7.5 High2021-01-22
CVE-2021-1264 Cisco DNA Center Command Runner Command Injection Vulnerability — Cisco Digital Network Architecture Center (DNA Center) 9.6 Critical2021-01-20
CVE-2020-27298 Philips Interventional Workstations OS Command Injection — Interventional Workspot 6.5 Medium2021-01-20
CVE-2021-0219 Junos OS: Command injection vulnerability in 'request system software' CLI command — Junos OS 6.7 Medium2021-01-15
CVE-2021-0218 Junos OS: Command injection vulnerability in license-check daemon — Junos OS 7.8 High2021-01-15
CVE-2020-5146 Sonicwall SMA100 操作系统命令注入漏洞 — SMA100 7.2 -2021-01-09
CVE-2020-26294 Exposure of server configuration — compiler 7.4 High2021-01-04
CVE-2020-35851 HGiga MailSherlock - Command Injection — MailSherlock MSR45/SSR45 8.1 High2020-12-31

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2668 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.