CWE-78— OS Command Injection
The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.— MITRE CWE catalog
5,858 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-78page 97 of 118
- CVE-2025-59741CRITICALCVSS 9.8EG 9.82025-10-02
Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute operating system commands on the server by sending a POST request. The relationship between parameter and assigned…
- CVE-2025-59831HIGHCVSS 8.8EG 8.82025-09-25
git-commiters is a Node.js function module providing committers stats for their git repository. Prior to version 0.1.2, there is a command injection vulnerability in git-commiters. This vulnerability manifests with the library's primary ex…
- CVE-2025-59834CRITICALCVSS 9.8EG 9.82025-09-25
ADB MCP Server is a MCP (Model Context Protocol) server for interacting with Android devices through ADB. In versions 0.1.0 and prior, the MCP Server is written in a way that is vulnerable to command injection vulnerability attacks as part…
- CVE-2025-59844HIGHCVSS 7.7EG 7.72025-09-26
SonarQube Server and Cloud is a static analysis solution for continuous code quality and security inspection. A command injection vulnerability exists in SonarQube GitHub Action in version 4.0.0 to before version 6.0.0 when workflows pass …
- CVE-2025-60006MEDIUMCVSS 5.3EG 5.32025-10-09
Multiple instances of an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in the CLI of Juniper Networks Junos OS Evolved could be used to elevate privileges and/or execute unauthor…
- CVE-2025-60013MEDIUMCVSS 4.6EG 5.72025-10-15
When a highly-privileged, authenticated attacker attempts to initialize the rSeries FIPS module using a password with special shell metacharacters, arbitrary system commands may be executed, and the FIPS hardware security module (HSM) may …
- CVE-2025-60017HIGHCVSS 8.2EG 8.22025-09-26
Unitree Go2, G1, H1, and B2 devices through 2025-09-20 allow root OS command injection via the hostapd_restart.sh wifi_ssid or wifi_pass parameter (within restart_wifi_ap and restart_wifi_sta).
- CVE-2025-60738CRITICALCVSS 9.8EG 7.52025-11-20
An issue in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before Logic Version v6.00 - 2025_07_21 and before allows a remote attacker to execute arbitrary code via the ping.php component does not perform secure filtering on IP p…
- CVE-2025-60787HIGHCVSS 7.2EG 7.22025-10-03
MotionEye v0.43.1b4 and before is vulnerable to OS Command Injection in configuration parameters such as image_file_name. Unsanitized user input is written to Motion configuration files, allowing remote authenticated attackers with admin a…
- CVE-2025-60803CRITICALCVSS 9.8EG 9.82025-10-24
Antabot White-Jotter up to commit 9bcadc was discovered to contain an unauthenticated remote code execution (RCE) vulnerability via the component /api/aaa;/../register.
- CVE-2025-60957CRITICALCVSS 9.9EG 9.92025-10-06
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive …
- CVE-2025-60959HIGHCVSS 8.2EG 8.22025-10-06
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to gain sensitive information.
- CVE-2025-60960HIGHCVSS 8.2EG 8.22025-10-06
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive …
- CVE-2025-60962HIGHCVSS 8.2EG 8.22025-10-06
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to gain sensitive information, and possibly other unspecified impacts.
- CVE-2025-60963HIGHCVSS 8.2EG 8.22025-10-06
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive …
- CVE-2025-60964CRITICALCVSS 9.1EG 9.12025-10-06
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, gain sensitive info…
- CVE-2025-60965CRITICALCVSS 9.1EG 9.12025-10-06
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, gain sensitive info…
- CVE-2025-6102HIGHCVSS 8.8EG 8.82025-06-16
A vulnerability classified as critical was found in Wifi-soft UniBox Controller up to 20250506. Affected by this vulnerability is an unknown functionality of the file /authentication/logout.php. The manipulation of the argument mac_address…
- CVE-2025-6103HIGHCVSS 8.8EG 8.82025-06-16
A vulnerability, which was classified as critical, has been found in Wifi-soft UniBox Controller up to 20250506. Affected by this issue is some unknown functionality of the file /billing/test_accesscodelogin.php. The manipulation of the ar…
- CVE-2025-6104HIGHCVSS 8.8EG 8.82025-06-16
A vulnerability, which was classified as critical, was found in Wifi-soft UniBox Controller up to 20250506. This affects an unknown part of the file /billing/pms_check.php. The manipulation of the argument ipaddress leads to os command inj…
- CVE-2025-61045CRITICALCVSS 9.8EG 9.82025-10-01
TOTOLINK X18 V9.1.0cu.2053_B20230309 was discovered to contain a command injection vulnerability via the mac parameter in the setEasyMeshAgentCfg function.
- CVE-2025-61304CRITICALCVSS 9.8EG 9.82025-11-05
OS command injection vulnerability in Dynatrace ActiveGate ping extension up to 1.016 via crafted ip address.
- CVE-2025-61591HIGHCVSS 8.8EG 8.82025-10-03
Cursor is a code editor built for programming with AI. In versions 1.7 and below, when MCP uses OAuth authentication with an untrusted MCP server, an attacker can impersonate a malicious MCP server and return crafted, maliciously injected …
- CVE-2025-6181HIGHCVSS 8.5EG 8.52025-08-20
The StrongDM Windows service incorrectly handled input validation. Authenticated attackers could potentially exploit this leading to privilege escalation.
- CVE-2025-6183HIGHCVSS 7.0EG 7.02025-08-20
The StrongDM macOS client incorrectly processed JSON-formatted messages. Attackers could potentially modify macOS system configuration by crafting a malicious JSON message.
- CVE-2025-6193MEDIUMCVSS 5.9EG 5.92025-06-20
A command injection vulnerability was discovered in the TrustyAI Explainability toolkit. Arbitrary commands placed in certain fields of a LMEValJob custom resource (CR) may be executed in the LMEvalJob pod's terminal. This issue can be exp…
- CVE-2025-62193CRITICALCVSS 9.8EG 9.82026-01-15
Sites running NOAA PMEL Live Access Server (LAS) are vulnerable to remote code execution via specially crafted requests that include PyFerret expressions. By leveraging a SPAWN command, a remote, unauthenticated attacker can execute arbitr…
- CVE-2025-6225MEDIUMCVSS 6.9EG 6.92026-01-07
Kieback&Peter Neutrino-GLT product is used for building management. It's web component "SM70 PHWEB" is vulnerable to shell command injection via login form. The injected commands would execute with low privileges. The vulnerability has be…
- CVE-2025-62354CRITICALCVSS 9.8EG 9.82025-11-26
Improper neutralization of special elements used in an OS command ('command injection') in Cursor allows an unauthorized attacker to execute commands that are outside of those specified in the allowlist, resulting in arbitrary code executi…
- CVE-2025-62703HIGHCVSS 8.8EG 8.82025-11-25
Fugue is a unified interface for distributed computing that lets users execute Python, Pandas, and SQL code on Spark, Dask, and Ray with minimal rewrites. In version 0.9.2 and prior, there is a remote code execution vulnerability by pickle…
- CVE-2025-62713HIGHCVSS 7.2EG 7.22025-10-23
Kottster is a self hosted Node.js admin panel. From versions 3.2.0 to before 3.3.2, Kottster contains a pre-authentication remote code execution (RCE) vulnerability when running in development mode. This affects development mode only, prod…
- CVE-2025-62801HIGHCVSS 7.8EG 7.82025-10-28
FastMCP is the standard framework for building MCP applications. Versions prior to 2.13.0, a command-injection vulnerability lets any attacker who can influence the server_name field of an MCP execute arbitrary OS commands on Windows hosts…
- CVE-2025-6299MEDIUMCVSS 4.7EG 4.72025-06-20
A vulnerability classified as critical has been found in TOTOLINK N150RT 3.4.0-B20190525. This affects an unknown part of the file /boa/formWSC. The manipulation of the argument targetAPSsid leads to os command injection. It is possible to…
- CVE-2025-63261HIGHCVSS 7.8EG 7.82026-03-20
AWStats 8.0 is vulnerable to Command Injection via the open function
- CVE-2025-63334CRITICALCVSS 9.8EG 9.82025-11-05
PocketVJ CP PocketVJ-CP-v3 pvj version 3.9.1 contains an unauthenticated remote code execution vulnerability in the submit_opacity.php component. The application fails to sanitize user input in the opacityValue POST parameter before passin…
- CVE-2025-63408HIGHCVSS 7.8EG 5.12025-11-18
Local Agent DVR versions thru 6.6.1.0 are vulnerable to directory traversal that allows an unauthenticated local attacker to gain access to sensitive information, cause a server-side forgery request (SSRF), or execute OS commands.
- CVE-2025-63414CRITICALCVSS 10.0EG 10.02025-12-16
A Path Traversal vulnerability in the Allsky WebUI version v2024.12.06_06 allows an unauthenticated remote attacker to achieve arbitrary command execution. By sending a crafted HTTP request to the /html/execute.php endpoint with a maliciou…
- CVE-2025-63705HIGHCVSS 8.8EG 8.82026-05-07
NPM package node-ts-ocr 1.0.15 is vulnerable to OS Command Injection via the invokeImageOcr function in src/index.js.
- CVE-2025-63916HIGHCVSS 8.1EG 6.52025-11-17
MyScreenTools v2.2.1.0 contains a critical OS command injection vulnerability in the GIF compression tool. The application fails to properly sanitize user-supplied file paths before passing them to cmd.exe, allowing attackers to execute ar…
- CVE-2025-63932HIGHCVSS 7.3EG 7.32025-11-19
D-Link Router DIR-868L A1 FW106KRb01.bin has an unauthenticated remote code execution vulnerability in the cgibin binary. The HNAP service provided by cgibin does not filter the HTTP SOAPAction header field. The unauthenticated remote atta…
- CVE-2025-64091HIGHCVSS 8.6EG 8.62026-01-09
This vulnerability allows authenticated attackers to execute commands via the NTP-configuration of the device.
- CVE-2025-64106HIGHCVSS 8.8EG 8.82025-11-04
Cursor is a code editor built for programming with AI. In versions 1.7.28 and below, an input validation flaw in Cursor's MCP server installation enables specially crafted deep-links to bypass the standard security warnings and conceal exe…
- CVE-2025-64109HIGHCVSS 8.8EG 8.82025-11-05
Cursor is a code editor built for programming with AI. In versions and below, a vulnerability in the Cursor CLI Beta allowed an attacker to achieve remote code execution through the MCP (Model Context Protocol) server mechanism by uploadin…
- CVE-2025-64111CRITICALCVSS 9.8EG 9.82026-02-06
Gogs is an open source self-hosted Git service. In version 0.13.3 and prior, due to the insufficient patch for CVE-2024-56731, it's still possible to update files in the .git directory and achieve remote command execution. This issue has b…
- CVE-2025-64120HIGHCVSS 8.8EG 8.82026-01-02
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Nuvation Energy Multi-Stack Controller (MSC) allows OS Command Injection.This issue affects Multi-Stack Controller (MSC): from 2.3.…
- CVE-2025-64124HIGHCVSS 8.8EG 8.82026-01-03
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Nuvation Energy Multi-Stack Controller (MSC) allows OS Command Injection.This issue affects Multi-Stack Controller (MSC): before 2.…
- CVE-2025-64126CRITICALCVSS 10.0EG 10.02025-11-26
An OS command injection vulnerability exists due to improper input validation. The application accepts a parameter directly from user input without verifying it is a valid IP address or filtering potentially malicious characters. This c…
- CVE-2025-64127CRITICALCVSS 10.0EG 10.02025-11-26
An OS command injection vulnerability exists due to insufficient sanitization of user-supplied input. The application accepts parameters that are later incorporated into OS commands without adequate validation. This could allow an unaut…
- CVE-2025-64128CRITICALCVSS 10.0EG 10.02025-11-26
An OS command injection vulnerability exists due to incomplete validation of user-supplied input. Validation fails to enforce sufficient formatting rules, which could permit attackers to append arbitrary data. This could allow an unauth…
- CVE-2025-64140HIGHCVSS 8.8EG 8.82025-10-29
Jenkins Azure CLI Plugin 0.9 and earlier does not restrict which commands it executes on the Jenkins controller, allowing attackers with Item/Configure permission to execute arbitrary shell commands.
Map vulnerabilities like CWE-78 to your infrastructure
EchelonGraph correlates every CVE — across CWE-78 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →