Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2668

2668 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-26284 Hugo can execute a binary from the current directory on Windows — hugo 7.7 High2020-12-21
CVE-2020-12522 Command Injection Vulnerability in I/O-Check Service of WAGO PFC100, PFC200 and Touch Panel 600 Series with firmware versions <=FW10 — Series PFC 100 (750-81xx/xxx-xxx) 10.0 Critical2020-12-17
CVE-2020-26274 Command Injection Vulnerability in systeminformation — systeminformation 6.4 Medium2020-12-16
CVE-2020-26259 XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling — xstream 6.8 Medium2020-12-16
CVE-2020-12148 OS Command Injection - nslookup API — ECOS 6.8 Medium2020-12-11
CVE-2020-12149 OS Command Injection - Management File Upload — ECOS 6.8 Medium2020-12-11
CVE-2020-26245 Prototype Pollution leading to Command Injection in systeminformation — systeminformation 8.1 High2020-11-27
CVE-2020-3586 Cisco DNA Spaces Connector Command Injection Vulnerability — Cisco DNA Spaces Connector 9.4 Critical2020-11-18
CVE-2020-3367 Cisco Secure Web Appliance Privilege Escalation Vulnerability — Cisco Web Security Appliance (WSA) 7.8 -2020-11-18
CVE-2020-26217 Remote Code Execution in XStream — xstream 8.0 High2020-11-16
CVE-2020-8270 多款Citrix Systems产品操作系统命令注入漏洞 — Citrix Virtual Apps and Desktops 8.8 -2020-11-16
CVE-2020-8273 Citrix Systems SD-WAN Center 操作系统命令注入漏洞 — Citrix SD-WAN Center 8.8 -2020-11-16
CVE-2020-3371 Cisco Integrated Management Controller Command Injection Vulnerability — Cisco Unified Computing System (Standalone) 6.3 Medium2020-11-06
CVE-2020-25849 Openfind MailGates/MailAudit - Command Injection — MailGates 8.8 High2020-11-01
CVE-2020-15272 Shell-injection in git-tag-annotation GitHub action — git-tag-annotation-action 8.7 High2020-10-26
CVE-2020-15271 Shell Command Execution in lookatme — lookatme 9.3 Critical2020-10-26
CVE-2020-3457 Cisco FXOS Software Command Injection Vulnerability — Cisco Adaptive Security Appliance (ASA) Software 7.8 -2020-10-21
CVE-2020-3459 Cisco FXOS Software for Firepower 4100/9300 Series Command Injection Vulnerability — Cisco Firepower Extensible Operating System (FXOS) 7.8 -2020-10-21
CVE-2020-25859 Qualcomm QCMAP 操作系统命令注入漏洞 — Qualcomm QCMAP 7.8 -2020-10-15
CVE-2020-17406 Microhard Bullet-LTE 操作系统命令注入漏洞 — Bullet-LTE 8.8 -2020-10-13
CVE-2020-3403 Cisco IOS XE Software Command Injection Vulnerability — Cisco IOS XE Software 7.8 -2020-09-24
CVE-2020-3417 Cisco IOS XE Software Arbitrary Code Execution Vulnerability — Cisco IOS XE Software 6.8 Medium2020-09-24
CVE-2020-24552 Atop Technology 3G/4G LTE Cellular to Ethernet and Serial Secure Industrial Gateway - Command Injection — 3G/4G LTE Cellular to Ethernet and Serial Secure Industrial Gateway SE5901 5.5 Medium2020-09-10
CVE-2020-2038 PAN-OS: OS command injection vulnerability in the management web interface — PAN-OS 7.2 High2020-09-09
CVE-2020-2037 PAN-OS: OS command injection vulnerability in the management web interface — PAN-OS 7.2 High2020-09-09
CVE-2020-3430 Cisco Jabber for Windows Protocol Handler Command Injection Vulnerability — Cisco Jabber 8.8 High2020-09-04
CVE-2020-16205 Geutebrück G-Cam和G-Code 操作系统命令注入漏洞 — G-Cam and G-Code 8.8 -2020-08-14
CVE-2020-7361 ZenTao Pro Command Injection — ZenTao Pro 9.6 Critical2020-08-06
CVE-2020-7357 Cayin CMS Command Injection — Cayin CMS-SE 9.6 Critical2020-08-06
CVE-2020-3377 Cisco Data Center Network Manager Command Injection Vulnerability — Cisco Data Center Network Manager 6.3 Medium2020-07-31

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2668 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.