CWE-77— Command Injection
The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.— MITRE CWE catalog
3,892 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-77page 61 of 78
- CVE-2025-52688CRITICALCVSS 9.8EG 9.82025-07-16
Successful exploitation of the vulnerability could allow an attacker to inject commands with root privileges on the access point, potentially leading to the loss of confidentiality, integrity, availability, and full control of the access p…
- CVE-2025-52690HIGHCVSS 8.1EG 8.12025-07-16
Successful exploitation of the vulnerability could allow an attacker to execute arbitrary commands as root, potentially leading to the loss of confidentiality, integrity, availability, and full control of the access point.
- CVE-2025-52903HIGHCVSS 8.0EG 8.02025-06-26
File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In versions on the 2.x branch prior to 2.33.10, the Command Execution feature of File Browse…
- CVE-2025-52904HIGHCVSS 8.0EG 8.02025-06-26
File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In versions of the web application on the 2.x branch, all users have a scope assigned, and t…
- CVE-2025-52995HIGHCVSS 8.0EG 8.02025-06-30
File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to version 2.33.10, the implementation of the allowlist is erroneous, allowing a user …
- CVE-2025-5306CRITICALCVSS 9.8EG 9.82025-06-27
Improper Neutralization of Special Elements in the Netflow directory field may allow OS command injection. This issue affects Pandora FMS 774 through 778
- CVE-2025-53098HIGHCVSS 8.1EG 8.12025-06-27
Roo Code is an AI-powered autonomous coding agent. The project-specific MCP configuration for the Roo Code agent is stored in the `.roo/mcp.json` file within the VS Code workspace. Because the MCP configuration format allows for execution …
- CVE-2025-53104CRITICALCVSS 9.1EG 9.12025-07-01
gluestack-ui is a library of copy-pasteable components & patterns crafted with Tailwind CSS (NativeWind). Prior to commit e6b4271, a command injection vulnerability was discovered in the discussion-to-slack.yml GitHub Actions workflow. Unt…
- CVE-2025-53107HIGHCVSS 7.5EG 7.52025-07-01
@cyanheads/git-mcp-server is an MCP server designed to interact with Git repositories. Prior to version 2.1.5, there is a command injection vulnerability caused by the unsanitized use of input parameters within a call to child_process.exec…
- CVE-2025-53355HIGHCVSS 7.5EG 7.52025-07-08
MCP Server Kubernetes is an MCP Server that can connect to a Kubernetes cluster and manage it. A command injection vulnerability exists in the mcp-server-kubernetes MCP Server. The vulnerability is caused by the unsanitized use of input pa…
- CVE-2025-53372HIGHCVSS 7.5EG 7.52025-07-08
node-code-sandbox-mcp is a Node.js–based Model Context Protocol server that spins up disposable Docker containers to execute arbitrary JavaScript. Prior to 1.3.0, a command injection vulnerability exists in the node-code-sandbox-mcp MCP …
- CVE-2025-53773HIGHCVSS 7.8EG 7.82025-08-12
Improper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio allows an unauthorized attacker to execute code locally.
- CVE-2025-53774MEDIUMCVSS 6.5EG 6.52025-08-07
Microsoft 365 Copilot BizChat Information Disclosure Vulnerability
- CVE-2025-53787HIGHCVSS 8.2EG 8.22025-08-07
Microsoft 365 Copilot BizChat Information Disclosure Vulnerability
- CVE-2025-53832HIGHCVSS 7.5EG 7.52025-07-21
Lara Translate MCP Server is a Model Context Protocol (MCP) Server for Lara Translate API. Versions 0.0.11 and below contain a command injection vulnerability which exists in the @translated/lara-mcp MCP Server. The vulnerability is caused…
- CVE-2025-54073HIGHCVSS 7.5EG 7.52025-07-18
mcp-package-docs is an MCP (Model Context Protocol) server that provides LLMs with efficient access to package documentation across multiple programming languages and language server protocol (LSP) capabilities. A command injection vulnera…
- CVE-2025-54100HIGHCVSS 7.8EG 7.82025-12-09
Improper neutralization of special elements used in a command ('command injection') in Windows PowerShell allows an unauthorized attacker to execute code locally.
- CVE-2025-54131MEDIUMCVSS 6.4EG 6.42025-08-01
Cursor is a code editor built for programming with AI. In versions below 1.3, an attacker can bypass the allow list in auto-run mode with a backtick (`) or $(cmd). If a user has swapped Cursor from its default settings (requiring approval …
- CVE-2025-54377HIGHCVSS 7.8EG 7.82025-07-23
Roo Code is an AI-powered autonomous coding agent that lives in users' editors. In versions 3.23.18 and below, RooCode does not validate line breaks (\n) in its command input, allowing potential bypass of the allow-list mechanism. The proj…
- CVE-2025-5438HIGHCVSS 8.8EG 6.32025-06-02
A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been declared as critical. Affected by this vulnerability is the function WPS of the fil…
- CVE-2025-5439HIGHCVSS 8.8EG 6.32025-06-02
A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been rated as critical. Affected by this issue is the function verifyFacebookLike of the…
- CVE-2025-54393MEDIUMCVSS 5.4EG 5.42025-08-07
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows Static Code Injection. Authenticated users can obtain administrative access.
- CVE-2025-5440HIGHCVSS 8.8EG 6.32025-06-02
A vulnerability classified as critical has been found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function NTP of the file /goform/NTP. The manipula…
- CVE-2025-5441CRITICALCVSS 9.8EG 6.32025-06-02
A vulnerability classified as critical was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function setDeviceURL of the file /goform…
- CVE-2025-54416CRITICALCVSS 9.1EG 9.12025-07-26
tj-actions/branch-names is a Github actions repository that contains workflows to retrieve branch or tag names with support for all events. In versions 8.2.1 and below, a critical vulnerability has been identified in the tj-actions/branch-…
- CVE-2025-5442CRITICALCVSS 9.8EG 6.32025-06-02
A vulnerability, which was classified as critical, has been found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This issue affects the function RP_pingGatewayByBBS of …
- CVE-2025-54424HIGHCVSS 8.1EG 8.12025-08-01
1Panel is a web interface and MCP Server that manages websites, files, containers, databases, and LLMs on a Linux server. In versions 2.0.5 and below, the HTTPS protocol used for communication between the Core and Agent endpoints has incom…
- CVE-2025-5443CRITICALCVSS 9.8EG 6.32025-06-02
A vulnerability, which was classified as critical, was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected is the function wirelessAdvancedHidden of the file …
- CVE-2025-5444CRITICALCVSS 9.8EG 6.32025-06-02
A vulnerability has been found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001 and classified as critical. Affected by this vulnerability is the function RP_UpgradeFWByBB…
- CVE-2025-5445CRITICALCVSS 9.8EG 6.32025-06-02
A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001 and classified as critical. Affected by this issue is the function RP_checkFWByBBS of the file /…
- CVE-2025-5446CRITICALCVSS 9.8EG 6.32025-06-02
A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been classified as critical. This affects the function RP_checkCredentialsByBBS of the f…
- CVE-2025-5447CRITICALCVSS 9.8EG 6.32025-06-02
A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been declared as critical. This vulnerability affects the function ssid1MACFilter of the…
- CVE-2025-54564HIGHCVSS 7.8EG 7.82025-08-01
uploadsm in ChargePoint Home Flex 5.5.4.13 does not validate a user-controlled string for bz2 decompression, which allows command execution as the nobody user.
- CVE-2025-54782HIGHCVSS 8.8EG 8.82025-08-02
Nest is a framework for building scalable Node.js server-side applications. In versions 0.2.0 and below, a critical Remote Code Execution (RCE) vulnerability was discovered in the @nestjs/devtools-integration package. When enabled, the pac…
- CVE-2025-5492HIGHCVSS 8.8EG 6.32025-06-03
A vulnerability has been found in D-Link DI-500WF-WT up to 20250511 and classified as critical. Affected by this vulnerability is the function sub_456DE8 of the file /msp_info.htm?flag=cmd of the component /usr/sbin/jhttpd. The manipulatio…
- CVE-2025-54964HIGHCVSS 8.4EG 5.12025-10-23
An issue was discovered in BAE SOCET GXP before 4.6.0.2. An attacker with the ability to interact with the GXP Job Service may inject arbitrary executables. If the Job Service is configured for local-only access, this may allow for privile…
- CVE-2025-5502CRITICALCVSS 9.8EG 6.32025-06-03
A vulnerability, which was classified as critical, has been found in TOTOLINK X15 1.0.0-B20230714.1105. Affected by this issue is the function formMapReboot of the file /boafrm/formMapReboot. The manipulation of the argument deviceMacAddr …
- CVE-2025-5504MEDIUMCVSS 6.3EG 6.32025-06-03
A vulnerability has been found in TOTOLINK X2000R 1.0.0-B20230726.1108 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formWsc. The manipulation of the argument peerRptPin leads to command injection.…
- CVE-2025-55125HIGHCVSS 7.8EG 7.82026-01-08
This vulnerability allows a Backup or Tape Operator to perform remote code execution (RCE) as root by creating a malicious backup configuration file.
- CVE-2025-5515MEDIUMCVSS 6.3EG 6.32025-06-03
A vulnerability, which was classified as critical, has been found in TOTOLINK X2000R 1.0.0-B20230726.1108. Affected by this issue is some unknown functionality of the file /boafrm/formMapDel. The manipulation of the argument devicemac1 lea…
- CVE-2025-55227HIGHCVSS 8.8EG 8.82025-09-09
Improper neutralization of special elements used in a command ('command injection') in SQL Server allows an authorized attacker to elevate privileges over a network.
- CVE-2025-5525HIGHCVSS 8.1EG 5.62025-06-03
A vulnerability was found in Jrohy trojan up to 2.15.3. It has been declared as critical. This vulnerability affects the function LogChan of the file trojan/util/linux.go. The manipulation of the argument c leads to os command injection. T…
- CVE-2025-55283CRITICALCVSS 9.1EG 9.12025-08-18
aiven-db-migrate is an Aiven database migration tool. Prior to 1.0.7, there is a privilege escalation vulnerability that allows elevation to superuser inside PostgreSQL databases during a migration from an untrusted source server. The vuln…
- CVE-2025-55294CRITICALCVSS 9.8EG 9.82025-08-19
screenshot-desktop allows capturing a screenshot of your local machine. This vulnerability is a command injection issue. When user-controlled input is passed into the format option of the screenshot function, it is interpolated into a shel…
- CVE-2025-55319HIGHCVSS 8.8EG 8.82025-09-12
Ai command injection in Agentic AI and Visual Studio Code allows an unauthorized attacker to execute code over a network.
- CVE-2025-55372MEDIUMCVSS 5.3EG 5.32025-09-02
An arbitrary file upload vulnerability in Beakon Application before v5.4.3 allows attackers to execute arbitrary code via uploading a crafted file.
- CVE-2025-55590MEDIUMCVSS 6.5EG 6.52025-08-18
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain an command injection vulnerability via the component bupload.html.
- CVE-2025-55591CRITICALCVSS 9.8EG 9.82025-08-18
TOTOLINK-A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability in the devicemac parameter in the formMapDel endpoint.
- CVE-2025-55637CRITICALCVSS 9.8EG 6.52025-08-22
Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 was discovered to contain a command injection vulnerability via the setddns_pip_system() function.
- CVE-2025-5571HIGHCVSS 8.8EG 6.32025-06-04
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been classified as critical. Affected is the function setSystemAdmin of the file /setSystemAdmin. The manipulation of the argument AdminID leads to os command injection. It is po…
Map vulnerabilities like CWE-77 to your infrastructure
EchelonGraph correlates every CVE — across CWE-77 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →