CWE-77: Command Injection

This CVE describes an OS command injection vulnerability in TOTOLINK X5000R routers. Attackers can exploit the 'exportOvpn' function via the web inter...

This vulnerability allows remote attackers to execute arbitrary operating system commands on systems running TykoDev cherry-studio-TykoFork 0.1. Attac...

This CVE describes an OS command injection vulnerability in DesktopCommanderMCP versions up to 0.2.13. Attackers can remotely execute arbitrary operat...

This CVE describes an OS command injection vulnerability in DesktopCommanderMCP up to version 0.2.13. Attackers can execute arbitrary commands on the ...

This CVE describes an OS command injection vulnerability in D-Link DI-7001 MINI routers through the /upgrade_filter.asp file's path parameter. Attacke...

This CVE describes a remote command injection vulnerability in wenkucms versions up to 3.4. Attackers can execute arbitrary operating system commands ...

This vulnerability allows remote attackers to execute arbitrary operating system commands via command injection in the OAuth Server Discovery componen...

This CVE describes an OS command injection vulnerability in D-Link routers' web interface. Attackers can execute arbitrary commands remotely by manipu...

This vulnerability allows remote attackers to execute arbitrary operating system commands on Tenda AC9 and AC15 routers through command injection in t...

This CVE describes an OS command injection vulnerability in D-Link routers' jhttpd component via the usb_paswd.asp file. Attackers can execute arbitra...

This CVE describes a remote command injection vulnerability in MiczFlor RPi-Jukebox-RFID versions up to 2.8.0. Attackers can execute arbitrary operati...

This CVE describes an OS command injection vulnerability in LB-LINK BL-X26 routers version 1.2.8. Attackers can remotely execute arbitrary commands on...

This CVE describes a remote command injection vulnerability in multiple Linksys RE-series Wi-Fi range extender models. Attackers can execute arbitrary...

This CVE describes an OS command injection vulnerability in DCN DCME-720 web management backend. Attackers can execute arbitrary commands on affected ...

This CVE describes an OS command injection vulnerability in Linksys RE series range extenders. Attackers can remotely execute arbitrary commands by ma...

This CVE describes a remote command injection vulnerability in multiple Linksys RE-series range extenders. Attackers can execute arbitrary operating s...

This CVE describes a remote command injection vulnerability in Linksys RE series range extenders. Attackers can execute arbitrary operating system com...

This CVE describes an OS command injection vulnerability in Linksys WiFi range extenders that allows remote attackers to execute arbitrary commands on...

This CVE describes a command injection vulnerability in Linksys range extender firmware that allows remote attackers to execute arbitrary operating sy...

This critical vulnerability in SkyworkAI DeepResearchAgent allows remote attackers to execute arbitrary operating system commands through command inje...

This critical vulnerability allows remote attackers to execute arbitrary operating system commands through command injection in the Model Context Prot...

This critical vulnerability in Netgear D6400 routers allows remote attackers to execute arbitrary operating system commands via command injection in t...

This critical vulnerability in TOTOLINK N200RE routers allows remote attackers to execute arbitrary operating system commands by manipulating the Host...

This critical vulnerability in Belkin F9K1122 routers allows remote attackers to execute arbitrary operating system commands via command injection in ...

CVE-2025-7081 is a critical OS command injection vulnerability in Belkin F9K1122 routers that allows remote attackers to execute arbitrary commands by...

This critical vulnerability in TOTOLINK CA300-PoE routers allows remote attackers to execute arbitrary operating system commands by manipulating time ...

This critical vulnerability in TOTOLINK CA300-PoE routers allows remote attackers to execute arbitrary operating system commands by manipulating the F...

This critical vulnerability allows remote attackers to execute arbitrary operating system commands on TOTOLINK A3002R routers by manipulating the wlan...

This critical vulnerability in Linksys RE series range extenders allows remote attackers to execute arbitrary operating system commands via command in...

This critical vulnerability in Linksys wireless range extenders allows remote attackers to execute arbitrary operating system commands via command inj...

This critical vulnerability in Linksys WiFi range extenders allows remote attackers to execute arbitrary operating system commands by manipulating the...

A critical OS command injection vulnerability in Linksys RE series WiFi extenders allows remote attackers to execute arbitrary commands on affected de...

This CVE describes a command injection vulnerability in Tenda W20E routers that allows attackers to execute arbitrary commands on the device. Attacker...

This CVE describes a command injection vulnerability in TOTOLINK CA300-POE routers that allows attackers to execute arbitrary system commands via a cr...

This CVE describes a command injection vulnerability in Tenda W20E routers that allows attackers to execute arbitrary commands on the device. Attacker...

This CVE describes a command injection vulnerability in TOTOLINK CA600-PoE routers that allows attackers to execute arbitrary commands via the fwUrl p...

This command injection vulnerability in TOTOLINK CP900 routers allows attackers to execute arbitrary system commands by manipulating the hour or minut...

This CVE describes a command injection vulnerability in TOTOLINK CP900 routers that allows attackers to execute arbitrary system commands through the ...

This CVE describes a command injection vulnerability in TOTOLINK CP900 routers that allows attackers to execute arbitrary system commands via the File...

CVE-2024-46089 is a remote code execution vulnerability in 74cms background interface apiadmin that allows attackers to execute arbitrary code on affe...

This critical vulnerability in OpenManus allows remote attackers to execute arbitrary operating system commands through the Python execution component...

This critical vulnerability in AMTT Hotel Broadband Operation System 1.0 allows remote attackers to execute arbitrary operating system commands via co...

This CVE describes a command injection vulnerability in Linksys E5600 routers where an attacker can execute arbitrary commands via the pt["count"] par...

This CVE describes a critical OS command injection vulnerability in Oiwtech OIW-2431APGN-HP wireless access points. Attackers can remotely execute arb...

This critical vulnerability in TOTOLINK EX1800T routers allows remote attackers to execute arbitrary operating system commands through command injecti...

This critical vulnerability in TOTOLINK EX1800T routers allows remote attackers to execute arbitrary operating system commands via command injection i...

This critical vulnerability in hzmanyun Education and Training System allows remote attackers to execute arbitrary operating system commands via comma...

This CVE describes a critical OS command injection vulnerability in LB-LINK AC1900 routers. Attackers can remotely execute arbitrary commands on affec...

This critical vulnerability in TOTOLINK X18 routers allows remote attackers to execute arbitrary operating system commands by manipulating the 'enable...

This CVE describes a command injection vulnerability in Linksys E7350 routers where an attacker can execute arbitrary commands via the ifname paramete...