Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2682

2682 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-8234 Zyxel NWA1100-N 操作系统命令注入漏洞 — NWA1100-N firmware 7.5 High2024-08-30
CVE-2024-43804 OS Command Injection via Port Scan Functionality in Roxy-WI — roxy-wi 8.8 High2024-08-29
CVE-2024-20289 Cisco NX-OS Software Command Injection Vulnerability — Cisco NX-OS Software 4.4 Medium2024-08-28
CVE-2023-26315 Xiaomi router has a command injection vulnerability after authorization — Router AX9000 6.5 Medium2024-08-26
CVE-2024-8077 TOTOLINK AC1200 T8 setTracerouteCfg os command injection — AC1200 T8 6.3 Medium2024-08-22
CVE-2024-8075 TOTOLINK AC1200 T8 setDiagnosisCfg os command injection — AC1200 T8 6.3 Medium2024-08-22
CVE-2024-7448 Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability — AXIOM 8.0AIHighAI2024-08-21
CVE-2020-11847 Vulnerability in sshrelay in privileged access manager provides full system access. — Privileged Access Manager 8.2 High2024-08-21
CVE-2024-39401 Adobe Commerce | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78) — Adobe Commerce 8.4 High2024-08-14
CVE-2024-39402 Adobe Commerce | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78) — Adobe Commerce 8.4 High2024-08-14
CVE-2024-7728 CAYIN Technology CMS - OS Command Injection — CMS-SE(22.04) 7.2 High2024-08-14
CVE-2022-27486 Fortinet FortiDDoS 操作系统命令注入漏洞 — FortiDDoS 5.9 Medium2024-08-13
CVE-2024-40893 Firewalla BTLE Authenticated Command Injection — Box Software 6.8 Medium2024-08-12
CVE-2024-6917 RCE in Veribilim Software's Veribase Order Management — Veribase Order Management 8.8AIHighAI2024-08-12
CVE-2024-42167 Command Injection in Organisationname — FIWARE Keyrock 9.1 Critical2024-08-12
CVE-2024-42166 Command Injection in Applicationname — FIWARE Keyrock 9.1 Critical2024-08-12
CVE-2024-42370 Litestar repository vulnerable to Environment Variable injection in `docs-preview.yml` workflow — litestar 8.3 High2024-08-09
CVE-2024-3659 Command injection in KAON AR2140 routers — AR2140 7.2AIHighAI2024-08-08
CVE-2024-7580 Alien Technology ALR-F800 system.html os command injection — ALR-F800 6.3 Medium2024-08-07
CVE-2024-7579 Alien Technology ALR-F800 File Name upgrade.cgi popen os command injection — ALR-F800 6.3 Medium2024-08-07
CVE-2024-7470 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface vpn_template_style.php sslvpn_config_mod os command injection — MSG1200 6.3 Medium2024-08-05
CVE-2024-7469 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_vpn_web_custom.php sslvpn_config_mod os command injection — MSG1200 6.3 Medium2024-08-05
CVE-2024-7468 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_service_manage.php sslvpn_config_mod os command injection — MSG1200 6.3 Medium2024-08-05
CVE-2024-7467 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_ip_network.php sslvpn_config_mod os command injection — MSG1200 6.3 Medium2024-08-05
CVE-2024-41956 Soft Serve allows arbitrary code execution by crafting git-lfs requests — soft-serve 8.1 High2024-08-01
CVE-2024-7357 D-Link DIR-600 soap.cgi soapcgi_main os command injection — DIR-600 6.3 Medium2024-08-01
CVE-2024-39607 ELECOM WRC-X6000XS-G、WRC-X1500GS-B、WRC-X1500GSA-B 安全漏洞 — WRC-X1500GS-B 7.2AIHighAI2024-08-01
CVE-2024-5670 Softnext Mail SQR Expert and Mail Archiving Expert - OS Command Injection — SN OS 12.1 9.8 Critical2024-07-29
CVE-2024-7175 TOTOLINK A3600R cstecgi.cgi setDiagnosisCfg os command injection — A3600R 6.3 Medium2024-07-29
CVE-2024-7171 TOTOLINK A3600R cstecgi.cgi NTPSyncWithHost os command injection — A3600R 6.3 Medium2024-07-28

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2682 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.