Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2682

2682 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-36569 Dell PowerProtect Data Domain 操作系统命令注入漏洞 — PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release 6.7 Medium2025-10-07
CVE-2025-36567 Dell PowerProtect Data Domain 操作系统命令注入漏洞 — PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release 6.7 Medium2025-10-07
CVE-2025-43908 Dell PowerProtect Data Domain 操作系统命令注入漏洞 — PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release 6.4 Medium2025-10-07
CVE-2025-43911 Dell PowerProtect Data Domain 操作系统命令注入漏洞 — Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release 6.7 Medium2025-10-07
CVE-2025-43906 Dell PowerProtect Data Domain 操作系统命令注入漏洞 — PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release 6.7 Medium2025-10-07
CVE-2025-43890 Dell PowerProtect Data Domain 操作系统命令注入漏洞 — PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release 6.7 Medium2025-10-07
CVE-2025-54404 Planet WGR-500 安全漏洞 — WGR-500 8.8 High2025-10-07
CVE-2025-54403 Planet WGR-500 安全漏洞 — WGR-500 8.8 High2025-10-07
CVE-2025-54406 Planet WGR-500 安全漏洞 — WGR-500 8.8 High2025-10-07
CVE-2025-54405 Planet WGR-500 安全漏洞 — WGR-500 8.8 High2025-10-07
CVE-2025-36354 IBM Security Verify Access command execution — Security Verify Access Appliance 7.3 High2025-10-06
CVE-2025-11285 samanhappy MCPHub serverController.ts os command injection — MCPHub 6.3 Medium2025-10-05
CVE-2025-47212 QTS, QuTS hero — QTS 7.2 -2025-10-03
CVE-2025-61591 Cursor CLI's Cursor Agent MCP OAuth2 Communication is Vulnerable to Remote Code Execution — cursor 8.8 High2025-10-03
CVE-2025-10659 MegaSys Enterprises Telenium Online Web Application OS Command Injection — Telenium Online Web Application: 9.8 Critical2025-09-30
CVE-2025-11148 check-branches 安全漏洞 — check-branches 9.8 Critical2025-09-30
CVE-2025-9762 Post By Email <= 1.0.4b - Unauthenticated Arbitrary File Upload via Email Attachments — Post By Email 9.8 Critical2025-09-30
CVE-2025-36245 IBM InfoSphere Information Server command execution — InfoSphere Information Server 8.8 High2025-09-29
CVE-2025-30247 Western Digital My Cloud 安全漏洞 — My Cloud 9.8AICriticalAI2025-09-29
CVE-2025-11141 Ruijie NBR2100G-E branch_passw.php listAction os command injection — NBR2100G-E 4.7 Medium2025-09-29
CVE-2025-11138 mirweiye wenkucms common.php createPathOne os command injection — wenkucms 6.3 Medium2025-09-29
CVE-2025-59844 Argument injection vulnerability in SonarQube Scan Action — sonarqube-scan-action 8.8 -2025-09-26
CVE-2025-35027 Unitree Multiple Robotic Products Command Injection — Go2 7.3 High2025-09-26
CVE-2025-60017 Unitree多款产品 安全漏洞 — Go2 8.2 High2025-09-26
CVE-2025-11005 TOTOLINK X6000R Unauthenticated Command Injection Vulnerability — X6000R 9.8AICriticalAI2025-09-25
CVE-2025-34227 Nagios XI < 2026R1 Configuration Wizard Authenticated Command Injection — Nagios XI 8.8AIHighAI2025-09-25
CVE-2025-43943 Dell Cloud Disaster Recovery 操作系统命令注入漏洞 — Cloud Disaster Recovery 6.7 Medium2025-09-25
CVE-2025-27262 Ericsson Indoor Connect 8855 - Improper Neutralization of Special Elements used in an OS Command Vulnerability — Indoor Connect 8855 9.8AICriticalAI2025-09-25
CVE-2025-52906 TOTOLINK X6000R Command Injection Vulnerability — X6000R 9.8AICriticalAI2025-09-24
CVE-2025-59534 CryptoLib command Injection vulnerability in initialize_kerberos_keytab_file_login() — CryptoLib 7.3 High2025-09-23

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2682 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.