CWE-77— Command Injection
The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.— MITRE CWE catalog
3,889 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-77page 60 of 78
- CVE-2025-4747MEDIUMCVSS 6.3EG 6.32025-05-16
A vulnerability was found in Bohua NetDragon Firewall 1.0 and classified as critical. This issue affects some unknown processing of the file /systemstatus/ip_status.php. The manipulation of the argument subnet leads to command injection. T…
- CVE-2025-47959HIGHCVSS 7.1EG 7.12025-06-13
Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an authorized attacker to execute code over a network.
- CVE-2025-4849MEDIUMCVSS 6.3EG 6.32025-05-18
A vulnerability was found in TOTOLINK N300RH 6.1c.1390_B20191101. It has been rated as critical. Affected by this issue is the function CloudACMunualUpdateUserdata of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument url lead…
- CVE-2025-48492HIGHCVSS 8.8EG 8.82025-05-30
GetSimple CMS is a content management system. In versions starting from 3.3.16 to 3.3.21, an authenticated user with access to the Edit component can inject arbitrary PHP into a component file and execute it via a crafted query string, res…
- CVE-2025-4850MEDIUMCVSS 6.3EG 6.32025-05-18
A vulnerability classified as critical has been found in TOTOLINK N300RH 6.1c.1390_B20191101. This affects the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument plugin_name leads to command injec…
- CVE-2025-4851MEDIUMCVSS 6.3EG 6.32025-05-18
A vulnerability classified as critical was found in TOTOLINK N300RH 6.1c.1390_B20191101. This vulnerability affects the function setUploadUserData of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument FileName leads to command…
- CVE-2025-48936HIGHCVSS 8.1EG 8.12025-05-30
Zitadel is open-source identity infrastructure software. Prior to versions 2.70.12, 2.71.10, and 3.2.2, a potential vulnerability exists in the password reset mechanism. ZITADEL utilizes the Forwarded or X-Forwarded-Host header from incomi…
- CVE-2025-48978HIGHCVSS 7.5EG 7.52025-08-21
An Improper Input Validation in EdgeMAX EdgeSwitch (Version 1.11.0 and earlier) could allow a Command Injection by a malicious actor with access to EdgeSwitch adjacent network. Affected Products: EdgeMAX EdgeSwitch (Version 1.11.0 an…
- CVE-2025-48979LOWCVSS 3.4EG 3.42025-08-29
An Improper Input Validation in UISP Application could allow a Command Injection by a malicious actor with High Privileges and local access.
- CVE-2025-49823NONECVSS 0.0EG 0.02025-06-17
(conda) Constructor is a tool which allows constructing an installer for a collection of conda packages. Prior to version 3.11.3, shell installer scripts process the installation prefix (user_prefix) using an eval statement, which executes…
- CVE-2025-49833CRITICALCVSS 9.8EG 9.82025-07-15
GPT-SoVITS-WebUI is a voice conversion and text-to-speech webUI. In versions 20250228v3 and prior, there is a command injection vulnerability in the webui.py open_slice function. slice_opt_root and slice-inp-path takes user input, which is…
- CVE-2025-49834CRITICALCVSS 9.8EG 9.82025-07-15
GPT-SoVITS-WebUI is a voice conversion and text-to-speech webUI. In versions 20250228v3 and prior, there is a command injection vulnerability in webui.py open_denoise function. denoise_inp_dir and denoise_opt_dir take user input, which is …
- CVE-2025-49835CRITICALCVSS 9.8EG 9.82025-07-15
GPT-SoVITS-WebUI is a voice conversion and text-to-speech webUI. In versions 20250228v3 and prior, there is a command injection vulnerability in webui.py open_asr function. asr_inp_dir (and a number of other variables) takes user input, wh…
- CVE-2025-49836CRITICALCVSS 9.8EG 9.82025-07-15
GPT-SoVITS-WebUI is a voice conversion and text-to-speech webUI. In versions 20250228v3 and prior, there is a command injection vulnerability in webui.py change_label function. path_list takes user input, which is passed to the change_labe…
- CVE-2025-4999MEDIUMCVSS 6.3EG 6.32025-05-20
A vulnerability was found in Linksys FGW3000-AH and FGW3000-HK up to 1.0.17.000000 and classified as critical. Affected by this issue is the function sub_4153FC of the file /cgi-bin/sysconf.cgi of the component HTTP POST Request Handler. T…
- CVE-2025-5000CRITICALCVSS 9.8EG 6.32025-05-20
A vulnerability was found in Linksys FGW3000-AH and FGW3000-HK up to 1.0.17.000000. It has been classified as critical. This affects the function control_panel_sw of the file /cgi-bin/sysconf.cgi of the component HTTP POST Request Handler.…
- CVE-2025-5030HIGHCVSS 8.1EG 5.02025-05-21
A vulnerability was found in Ackites KillWxapkg up to 2.4.1. It has been declared as critical. This vulnerability affects the function processFile of the file internal/unpack/unpack.go of the component wxapkg File Parser. The manipulation …
- CVE-2025-50428CRITICALCVSS 9.8EG 9.82025-08-27
In RaspAP raspap-webgui 3.3.2 and earlier, a command injection vulnerability exists in the includes/hostapd.php script. The vulnerability is due to improper sanitizing of user input passed via the interface parameter.
- CVE-2025-50461MEDIUMCVSS 6.5EG 6.52025-08-19
A deserialization vulnerability exists in Volcengine's verl 3.0.0, specifically in the scripts/model_merger.py script when using the "fsdp" backend. The script calls torch.load() with weights_only=False on user-supplied .pt files, allowing…
- CVE-2025-50515MEDIUMCVSS 6.5EG 6.52025-08-14
An issue was discovered in phome Empirebak 2010 in ebak2008/upload/class/config.php allowing attackers to execute arbitrary code when the config file was loaded.
- CVE-2025-50526CRITICALCVSS 9.8EG 9.82025-12-23
Netgear EX8000 V1.0.0.126 was discovered to contain a command injection vulnerability via the switch_status function.
- CVE-2025-50688MEDIUMCVSS 6.5EG 6.52025-08-05
A command injection vulnerability exists in TwistedWeb (version 14.0.0) due to improper input sanitization in the file upload functionality. An attacker can exploit this vulnerability by sending a specially crafted HTTP PUT request to uplo…
- CVE-2025-50722CRITICALCVSS 9.8EG 9.82025-08-25
Insecure Permissions vulnerability in sparkshop v.1.1.7 allows a remote attacker to execute arbitrary code via the Common.php component
- CVE-2025-50755MEDIUMCVSS 6.5EG 6.52025-09-02
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_cmd function via the command parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
- CVE-2025-50756CRITICALCVSS 9.8EG 9.82025-07-14
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_adm function via the newpass parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
- CVE-2025-50757MEDIUMCVSS 6.5EG 6.52025-09-02
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_adm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
- CVE-2025-50817MEDIUMCVSS 5.4EG 5.42025-08-14
A vulnerability in the Python-Future 1.0.0 module allows for arbitrary code execution via the unintended import of a file named test.py. When the module is loaded, it automatically imports test.py, if present in the same directory or in th…
- CVE-2025-50891HIGHCVSS 7.2EG 6.52025-08-19
The server-side backend for Adform Site Tracking before 2025-08-28 allows attackers to inject HTML or execute arbitrary code via cookie hijacking. NOTE: a customer does not need to take any action to update locally installed software (such…
- CVE-2025-50989CRITICALCVSS 9.1EG 8.82025-08-27
OPNsense before 25.1.8 contains an authenticated command injection vulnerability in its Bridge Interface Edit endpoint (interfaces_bridge_edit.php). The span POST parameter is concatenated into a system-level command without proper sanitiz…
- CVE-2025-5106HIGHCVSS 7.3EG 7.32025-05-23
A vulnerability was found in Fujian Kelixun 1.0. It has been classified as critical. This affects an unknown part of the file /app/fax/fax_view.php of the component Filename Handler. The manipulation of the argument fax_file leads to os co…
- CVE-2025-5113HIGHCVSS 8.6EG 8.62025-06-02
The Diviotec professional series exposes a web interface. One endpoint is vulnerable to arbitrary command injection and hardcoded passwords are used.
- CVE-2025-5126HIGHCVSS 8.8EG 8.82025-05-24
A vulnerability was found in Teledyne FLIR AX8 up to 1.46.16. This vulnerability affects the function setDataTime of the file \usr\www\application\models\settingsregional.php. Performing manipulation of the argument year/month/day/hour/min…
- CVE-2025-5139HIGHCVSS 8.1EG 7.32025-05-25
A vulnerability was found in Qualitor 8.20/8.24. It has been rated as critical. Affected by this issue is some unknown functionality of the file /html/ad/adconexaooffice365/request/testaConexaoOffice365.php of the component Office 365-type…
- CVE-2025-5145MEDIUMCVSS 6.3EG 6.32025-05-25
A vulnerability, which was classified as critical, was found in Netcore NBR1005GPEV2, B6V2, COVER5, NAP830, NAP930, NBR100V2, NBR200V2 and POWER13 up to 20250508. This affects an unknown part of the file /www/cgi-bin/ of the component Quer…
- CVE-2025-51459MEDIUMCVSS 6.5EG 6.52025-07-22
File Upload vulnerability in agent.hub.controller.refresh_plugins in eosphoros-ai DB-GPT 0.7.0 allows remote attackers to execute arbitrary code via a malicious plugin ZIP file uploaded to the /v1/personal/agent/upload endpoint, interactin…
- CVE-2025-5146MEDIUMCVSS 6.3EG 6.32025-05-25
A vulnerability has been found in Netcore NBR1005GPEV2, B6V2, COVER5, NAP830, NAP930, NBR100V2 and NBR200V2 up to 20250508 and classified as critical. This vulnerability affects the function passwd_set of the file /usr/bin/routerd of the c…
- CVE-2025-5147MEDIUMCVSS 6.3EG 6.32025-05-25
A vulnerability was found in Netcore NBR1005GPEV2, NBR200V2 and B6V2 up to 20250508 and classified as critical. This issue affects the function tools_ping of the file /usr/bin/network_tools. The manipulation of the argument url leads to co…
- CVE-2025-51472MEDIUMCVSS 6.5EG 6.52025-07-22
Code Injection in AgentTemplate.eval_agent_config in TransformerOptimus SuperAGI 0.0.14 allows remote attackers to execute arbitrary Python code via malicious values in agent template configurations such as the goal, constraints, or instru…
- CVE-2025-51650MEDIUMCVSS 5.6EG 5.62025-07-14
An arbitrary file upload vulnerability in the component /controller/PicManager.php of FoxCMS v1.2.6 allows attackers to execute arbitrary code via uploading a crafted template file.
- CVE-2025-51818MEDIUMCVSS 5.4EG 6.52025-08-21
MCCMS 2.7.0 is vulnerable to Arbitrary file deletion in the Backups.php component. This allows an attacker to execute arbitrary commands
- CVE-2025-52046CRITICALCVSS 9.8EG 9.82025-07-17
Totolink A3300R V17.0.0cu.596_B20250515 was found to contain a command injection vulnerability in the sub_4197C0 function via the mac and desc parameters. This vulnerability allows unauthenticated attackers to execute arbitrary commands vi…
- CVE-2025-52053CRITICALCVSS 9.8EG 9.82025-09-15
TOTOLINK X6000R V9.4.0cu.1360_B20241207 was found to contain a command injection vulnerability in the sub_417D74 function via the file_name parameter. This vulnerability allows unauthenticated attackers to execute arbitrary commands via a …
- CVE-2025-52284MEDIUMCVSS 6.5EG 6.52025-07-29
Totolink X6000R V9.4.0cu.1360_B20241207 was found to contain a command injection vulnerability in the sub_4184C0 function via the tz parameter. This vulnerability allows unauthenticated attackers to execute arbitrary commands via a crafted…
- CVE-2025-52337MEDIUMCVSS 6.5EG 6.52025-08-19
An authenticated arbitrary file upload vulnerability in the Content Explorer feature of LogicData eCommerce Framework v5.0.9.7000 allows attackers to execute arbitrary code via uploading a crafted file.
- CVE-2025-52365HIGHCVSS 7.8EG 7.82026-03-03
A command injection vulnerability in the szc script of the ccurtsinger/stabilizer repository allows remote attackers to execute arbitrary system commands via unsanitized user input passed to os.system(). The vulnerability arises from impro…
- CVE-2025-52377MEDIUMCVSS 5.4EG 5.42025-07-15
Command injection vulnerability in Nexxt Solutions NCM-X1800 Mesh Router versions UV1.2.7 and below, allowing authenticated attackers to execute arbitrary commands on the device. The vulnerability is present in the web management interface…
- CVE-2025-52483CRITICALCVSS 9.8EG 9.82025-06-25
Registrator is a GitHub app that automates creation of registration pull requests for julia packages to the General registry. Prior to version 1.9.5, if the clone URL returned by GitHub is malicious (or can be injected using upstream vulne…
- CVE-2025-5264MEDIUMCVSS 4.8EG 4.82025-05-27
Due to insufficient escaping of the newline character in the “Copy as cURL” feature, an attacker could trick a user into using this command, potentially leading to local code execution on the user's system. This vulnerability was fixed…
- CVE-2025-5265MEDIUMCVSS 4.8EG 4.82025-05-27
Due to insufficient escaping of the ampersand character in the “Copy as cURL” feature, an attacker could trick a user into using this command, potentially leading to local code execution on the user's system. *This bug only affects Fir…
- CVE-2025-52687LOWCVSS 2.4EG 2.42025-07-16
Successful exploitation of the vulnerability could allow an attacker with administrator credentials for the access point to inject malicious JavaScript into the payload of web traffics, potentially leading to session hijacking and denial-o…
Map vulnerabilities like CWE-77 to your infrastructure
EchelonGraph correlates every CVE — across CWE-77 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →