Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,953)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-5030 1Ackites 1Killwxapkg Jun 20, 2025 May 21, 2025 2.3 LOW· v4 8.1 HIGH· v3 5.1 MEDIUM· v2 A vulnerability was found in Ackites KillWxapkg up to 2.4.1. It has been declared as critical. This vulnerability affects the function processFile of the file internal/unpack/unpack.go of the component wxapkg File Parser...Show more A vulnerability was found in Ackites KillWxapkg up to 2.4.1. It has been declared as critical. This vulnerability affects the function processFile of the file internal/unpack/unpack.go of the component wxapkg File Parser. The manipulation leads to os command injection. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-48204 - - May 21, 2025 May 21, 2025 N/A· v4 6.8 MEDIUM· v3 N/A· v2 The ns_backup extension through 13.0.0 for TYPO3 allows command injection.
CVE-2024-42922 1Aapanel 1Aapanel Jun 25, 2025 May 21, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 AAPanel v7.0.7 was discovered to contain an OS command injection vulnerability.
CVE-2025-27804 - - Nov 3, 2025 May 21, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Several OS command injection vulnerabilities exist in the device firmware in the /var/salia/mqtt.php script. By publishing a specially crafted message to a certain MQTT topic arbitrary OS commands can be executed with ro...Show more Several OS command injection vulnerabilities exist in the device firmware in the /var/salia/mqtt.php script. By publishing a specially crafted message to a certain MQTT topic arbitrary OS commands can be executed with root permissions.Show less
CVE-2025-44882 1Wavlink 1Wl Wn579a3 Firmware May 30, 2025 May 20, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A command injection vulnerability in the component /cgi-bin/firewall.cgi of Wavlink WL-WN579A3 v1.0 allows attackers to execute arbitrary commands via a crafted input.
CVE-2025-44880 1Wavlink 1Wl Wn579a3 Firmware May 30, 2025 May 20, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A command injection vulnerability in the component /cgi-bin/adm.cgi of Wavlink WL-WN579A3 v1.0 allows attackers to execute arbitrary commands via a crafted input.
CVE-2025-41225 - - May 21, 2025 May 20, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 The vCenter Server contains an authenticated command-execution vulnerability. A malicious actor with privileges to create or modify alarms and run script action may exploit this issue to run arbitrary commands on the vCe...Show more The vCenter Server contains an authenticated command-execution vulnerability. A malicious actor with privileges to create or modify alarms and run script action may exploit this issue to run arbitrary commands on the vCenter Server.Show less
CVE-2024-6486 1Orangelab 1Imagemagick Engine Jun 11, 2025 May 15, 2025 N/A· v4 7.2 HIGH· v3 N/A· v2 The ImageMagick Engine ImageMagick Engine WordPress plugin before 1.7.11 for WordPress is vulnerable to OS Command Injection via the "cli_path" parameter. This allows authenticated attackers, with administrator-level per...Show more The ImageMagick Engine ImageMagick Engine WordPress plugin before 1.7.11 for WordPress is vulnerable to OS Command Injection via the "cli_path" parameter. This allows authenticated attackers, with administrator-level permission to execute arbitrary OS commands on the server leading to remote code execution.Show less
CVE-2025-32002 - - May 16, 2025 May 15, 2025 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in I-O DATA network attached hard disk 'HDL-T Series' firmware Ver.1.21 and earlier when 'Remote Link3 function' is...Show more Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in I-O DATA network attached hard disk 'HDL-T Series' firmware Ver.1.21 and earlier when 'Remote Link3 function' is enabled. If exploited, a remote unauthenticated attacker may execute an arbitrary OS command.Show less
CVE-2025-47782 - - May 16, 2025 May 14, 2025 8.9 HIGH· v4 N/A· v3 N/A· v2 motionEye is an online interface for the software motion, a video surveillance program with motion detection. In versions 0.43.1b1 through 0.43.1b3, using a constructed (camera) device path with the `add`/`add_camera` mo...Show more motionEye is an online interface for the software motion, a video surveillance program with motion detection. In versions 0.43.1b1 through 0.43.1b3, using a constructed (camera) device path with the `add`/`add_camera` motionEye web API allows an attacker with motionEye admin user credentials to execute any command within a non-interactive shell as motionEye run user, `motion` by default. The vulnerability has been patched with motionEye v0.43.1b4. As a workaround, apply the patch manually.Show less
CVE-2025-24022 1Combodo 1Itop Jan 16, 2026 May 14, 2025 N/A· v4 8.5 HIGH· v3 N/A· v2 iTop is an web based IT Service Management tool. Prior to versions 2.7.12, 3.1.3, and 3.2.1, server code execution is possible through the frontend of iTop's portal. This is fixed in versions 2.7.12, 3.1.3 and 3.2.1.
CVE-2025-43562 1Adobe 1Coldfusion May 19, 2025 May 13, 2025 N/A· v4 9.1 CRITICAL· v3 N/A· v2 ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could result in arbitrary code exe...Show more ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could leverage this vulnerability to bypass security mechanisms and execute code. Exploitation of this issue does not require user interaction and scope is changed.Show less
CVE-2025-45858 1Totolink 1A3002r Firmware May 23, 2025 May 13, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability via the FUN_00459fdc function.
CVE-2025-40582 1Siemens 1Scalance Lpe9403 Firmware May 30, 2025 May 13, 2025 8.5 HIGH· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions with SINEMA Remote Connect Edge Client installed). Affected devices do not properly sanitize configuration parameters. This coul...Show more A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions with SINEMA Remote Connect Edge Client installed). Affected devices do not properly sanitize configuration parameters. This could allow a non-privileged local attacker to execute root commands on the device.Show less
CVE-2025-26389 1Siemens 2Ozw672 Firmware Ozw772 Firmware Oct 6, 2025 May 13, 2025 10.0 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 A vulnerability has been identified in OZW672 (All versions < V8.0), OZW772 (All versions < V8.0). The web service in affected devices does not sanitize the input parameters required for the `exportDiagramPage` endpoint....Show more A vulnerability has been identified in OZW672 (All versions < V8.0), OZW772 (All versions < V8.0). The web service in affected devices does not sanitize the input parameters required for the `exportDiagramPage` endpoint. This could allow an unauthenticated remote attacker to execute arbitrary code with root privileges.Show less
CVE-2025-47203 - - May 17, 2025 May 7, 2025 N/A· v4 4.5 MEDIUM· v3 N/A· v2 dbclient in Dropbear SSH before 2025.88 allows command injection via an untrusted hostname argument, because a shell is used.
CVE-2025-32821 1Sonicwall 6Sma 100 Firmware Sma 200 FirmwareSma 210 Firmware+3 more May 19, 2025 May 7, 2025 N/A· v4 7.2 HIGH· v3 N/A· v2 A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN admin privileges can with admin privileges can inject shell command arguments to upload a file on the appliance.
CVE-2025-20213 1Cisco 1Catalyst Sd Wan Manager Aug 4, 2025 May 7, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. To exp...Show more A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. To exploit this vulnerability, the attacker must have valid read-only credentials with CLI access on the affected system. This vulnerability is due to improper access controls on files that are on the local file system. An attacker could exploit this vulnerability by running a series of crafted commands on the local file system of an affected device. A successful exploit could allow the attacker to overwrite arbitrary files on the affected device and gain privileges of the root user. To exploit this vulnerability, an attacker would need to have CLI access as a low-privilege user.Show less
CVE-2025-20194 1Cisco 1Ios Xe Jul 11, 2025 May 7, 2025 N/A· v4 5.4 MEDIUM· v3 N/A· v2 A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged, remote attacker to perform an injection attack against an affected device. This vulnerabili...Show more A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged, remote attacker to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web-based management interface. A successful exploit could allow the attacker to read limited files from the underlying operating system or clear the syslog and licensing logs on the affected device.Show less
CVE-2025-20193 1Cisco 1Ios Xe Jul 11, 2025 May 7, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged, remote attacker to perform an injection attack against an affected device.r This vulnerabilit...Show more A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged, remote attacker to perform an injection attack against an affected device.r This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web-based management interface. A successful exploit could allow the attacker to read files from the underlying operating system.Show less

Previous 1...798081...298 Next