Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 16.824 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 182 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Search results for: OS Command Injection

Displaying 1 - 25 results out of 193

Pentest-Tools.com Vulnerabilities
Name	Detectable with	Detection added	CVSSv3	EPSS Score	EPSS Percentile	Exploitable with Sniper
Group-Office < 26.0.5 - Remote Code Execution CVE-2026-25512	Network Scanner	Mar 3, 2026	Critical(9.9)	0.21	0.96	No
Cisco IOS Software iox Command Injection Vulnerability (cisco-sa-20160921-iox) CVE-2016-6414	Network Scanner	Feb 25, 2026	High(7.8)	0.01	0.45	No
Ivanti Endpoint Manager Mobile - Remote Code Execution CVE-2026-1281	Network Scanner	Feb 17, 2026	Critical(9.8)	0.74	0.99	Yes
NUUO Camera <=20250203 - OS Command Injection CVE-2025-1338	Network Scanner	Feb 12, 2026	Critical(7.3)	0.17	0.95	No
VMware NSX SD-WAN Edge - Command Injection CVE-2018-6961	Network Scanner	Jan 7, 2026	High(8.1)	0.94	1	No
Acmailer - Improper Access Control to OS Command Injection CVE-2021-20617	Network Scanner	Dec 19, 2025	Critical(9.8)	0.52	0.98	No
Mitel 6000 - OS Command Injection CVE-2025-47188	Network Scanner	Dec 10, 2025	Medium(6.5)	0.04	0.88	No
React Native Community CLI development server - Remote Code Execution CVE-2025-11953	Network Scanner	Nov 18, 2025	Critical(9.8)	0.09	0.93	Yes
motionEye <= 0.43.1b4 OS Command Injection Vulnerability CVE-2025-60787	Network Scanner	Nov 12, 2025	Medium(7.2)	0.66	0.99	No
Fortinet FortiSIEM - OS Command Injection CVE-2024-23108	Network Scanner	Oct 30, 2025	Critical(10)	0.91	1	No
Enigma NMS < 65.0.0 - Authenticated OS Command Injection CVE-2019-16072	Network Scanner	Oct 24, 2025	Critical(9.8)	0.9	1	No
St. Joe ERP system - SQL Injection CVE-2024-13979	Network Scanner	Oct 19, 2025	Critical(9.8)	0.1	0.93	No
IPeakCMS 3.5 - SQL Injection CVE-2021-3018	Network Scanner	Oct 16, 2025	Critical(9.8)	0.8	1	No
ASUSTOR ADM 3.1.0.RFQ3 - SQL Injection CVE-2018-11511	Network Scanner	Oct 6, 2025	Critical(9.8)	0.24	0.96	No
Dell UnityVSA < 5.5 - Remote Command Injection CVE-2025-36604	Network Scanner	Oct 5, 2025	Critical(9.8)	0.14	0.95	No
Western Digital My Cloud Multiple Products 5.x < 5.31.108 OS Command Injection Vulnerability (WDC-25006) CVE-2025-30247	Network Scanner	Oct 1, 2025	N/A	0.02	0.83	No
Hoverfly <= 1.11.3 - Remote Code Execution CVE-2025-54123	Network Scanner	Sep 18, 2025	Critical(9.8)	0.63	0.99	No
FXC AE1021 / AE1021PE <= 2.0.9 OS Command Injection Vulnerability CVE-2023-49897	Network Scanner	Aug 25, 2025	High(8.8)	0.25	0.97	No
EnGenius EnShare IoT Gigabit Cloud Service 1.4.11 Root Remote Code Execution CVE-2025-34035	Network Scanner	Aug 20, 2025	Critical(10)	0.1	0.93	No
Shenzhen Aitemi M300 Wi-Fi Repeater – Unauthenticated Remote Command Execution via `time` Parameter CVE-2025-34152	Network Scanner	Aug 20, 2025	Critical	0.14	0.95	No
Fortinet FortiSIEM - OS Command Injection CVE-2025-25256	Network Scanner	Aug 18, 2025	Critical(9.8)	0.45	0.98	No
Zeroshell 3.9.3 - Command Injection CVE-2020-29390	Network Scanner	Jul 17, 2025	Critical(9.8)	0.91	1	No
Wing FTP Server <= 7.4.3 - Remote Code Execution CVE-2025-47812	Network Scanner	Jul 4, 2025	Critical(9.8)	0.93	1	No
WeiYe-Jing datax-web <= 2.1.2 - OS Command Injection CVE-2023-7116	Network Scanner	Jun 24, 2025	Medium(6.3)	0.54	0.98	No
Tenda AC15 AC1900 version 15.03.05.19 - Command Injection CVE-2020-10987	Network Scanner	Jun 15, 2025	Critical(9.8)	0.94	1	No

Vulnerability & Exploit Database

One of EMEA's fastest-growing tech companies

Independently audited company-wide ISMS

50,000+ security folks are here. Are you?

Security leaders trust what they can prove