Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2682

2682 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-1369 MicroWord eScan Antivirus USB Password os command injection — eScan Antivirus 4.5 Medium2025-02-17
CVE-2025-1339 TOTOLINK X18 cstecgi.cgi setL2tpdConfig os command injection — X18 6.3 Medium2025-02-16
CVE-2024-5461 Command or parameter injection via unique embedded switch SNMP commands. — Brocade Fabric OS 9.9 -2025-02-15
CVE-2024-55904 IBM DevOps Deploy / IBM UrbanCode Deploy command injection — UrbanCode Deploy 7.2 High2025-02-14
CVE-2025-25067 mySCADA myPRO Manager OS Command Injection — myPRO Manager 9.8 Critical2025-02-13
CVE-2025-1229 olajowon Loggrove page os command injection — Loggrove 6.3 Medium2025-02-12
CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability in OpenConfig Plugin — PAN-OS OpenConfig Plugin 7.2 -2025-02-12
CVE-2025-1244 Emacs: shell injection vulnerability in gnu emacs via custom "man" uri scheme 8.8 High2025-02-12
CVE-2024-40584 Fortinet多款产品 操作系统命令注入漏洞 — FortiAnalyzer 6.8 High2025-02-11
CVE-2024-50567 Fortinet FortiWeb 操作系统命令注入漏洞 — FortiWeb 6.8 High2025-02-11
CVE-2024-50569 Fortinet FortiWeb 操作系统命令注入漏洞 — FortiWeb 6.3 Medium2025-02-11
CVE-2024-47908 Ivanti CSA 操作系统命令注入漏洞 — Cloud Services Application 9.1 Critical2025-02-11
CVE-2024-8684 OS Command Injection vulnerability in Revolution Pi — Revolution Pi 8.3 High2025-02-10
CVE-2025-24366 Insufficient sanitization of user provided rsync command in SFTPGo — sftpgo 7.5 High2025-02-07
CVE-2024-51450 IBM Security Verify Directory Command Execution — Security Verify Directory 9.1 Critical2025-02-06
CVE-2025-20029 BIG-IP iControl REST and tmsh vulnerability — BIG-IP 8.8 High2025-02-05
CVE-2025-24971 OS Command Injection endpoint '/upload/init' parameter 'filename' (RCE) in DumpDrop — DumbDrop 9.8 -2025-02-04
CVE-2024-23690 EOL Netgear FVS336v3 Telnet Configuration Backup Command Injection — FVS336Gv3 7.2 High2025-02-04
CVE-2024-40891 Zyxel VMG4325-B10A 操作系统命令注入漏洞 — VMG4325-B10A firmware 8.8 High2025-02-04
CVE-2024-40890 Zyxel VMG4325-B10A 操作系统命令注入漏洞 — VMG4325-B10A firmware 8.8 High2025-02-04
CVE-2025-0680 New Rock Technologies Cloud Connected Devices has a Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. — OM500 IP-PBX 9.8 Critical2025-01-30
CVE-2025-20061 mySCADA myPRO Manager OS Command Injection — myPRO Manager 9.8 Critical2025-01-29
CVE-2025-20014 mySCADA myPRO Manager OS Command Injection — myPRO Manager 9.8 Critical2025-01-29
CVE-2025-0798 MicroWorld eScan Antivirus Quarantine rtscanner os command injection — eScan Antivirus 8.1 High2025-01-29
CVE-2025-24480 FactoryTalk® View Machine Editon - Remote Code Execution — FactoryTalk® View Machine Edition 9.8 -2025-01-28
CVE-2025-22604 Cacti has Authenticated RCE via multi-line SNMP responses — cacti 9.1 Critical2025-01-27
CVE-2025-22606 Coolify Command Injection Vulnerability in Project Name — coolify 8.8 -2025-01-24
CVE-2025-22605 Coolify OS Command Injection Vulnerability in SSH Command Generation — coolify 9.9 -2025-01-24
CVE-2025-23237 I-O Data Device UD-LT2 操作系统命令注入漏洞 — UD-LT2 7.8 -2025-01-22
CVE-2025-20617 I-O Data Device UD-LT2 操作系统命令注入漏洞 — UD-LT2 6.7 -2025-01-22

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2682 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.