CWE-707

Improper Neutralization

The product does not ensure or incorrectly ensures that structured messages or data are well-formed and that certain security properties are met before being read from an upstream component or sent to a downstream component.

251 vulnerabilities with CWE-707
CVE-2022-3789 MEDIUM
Tim Campus Confession Wall - SQL Injection via share.php post_id Parameter
CVSS 5.5
CVE-2022-3783 LOW
node-red-dashboard < 3.2.0 - Cross-Site Scripting in ui_text Format Handler
CVSS 3.5
CVE-2022-3733 MEDIUM
Web-Based Student Clearance System - SQL Injection via Admin/edit-admin.php id Parameter
CVSS 5.0
CVE-2022-3732 MEDIUM
ehoney - SQL Injection via /api/v1/bait/set Payload Parameter
CVSS 6.3
CVE-2022-3731 MEDIUM
ehoney - SQL Injection via /api/v1/attack/token Payload Parameter
CVSS 6.3
CVE-2022-3730 MEDIUM
ehoney - SQL Injection via /api/v1/attack/falco Payload Parameter
CVSS 6.3
CVE-2022-3729 MEDIUM
ehoney - SQL Injection via AttackIP Parameter
CVSS 6.3
CVE-2022-3716 LOW
SourceCodester Online Medicine Ordering System 1.0 - Cross-Site Scripting via User List Page Parameters
CVSS 3.5
CVE-2022-3714 MEDIUM
SourceCodester Online Medicine Ordering System 1.0 - SQL Injection via admin/?page=orders/view_order id Parameter
CVSS 5.0
CVE-2022-3704 LOW
Ruby on Rails - Cross-Site Scripting in Table Template
CVSS 3.5
CVE-2022-3673 LOW
Sanitization Management System 1.0 - Cross-Site Scripting via Message Parameter
CVSS 3.5
CVE-2022-3672 LOW
Sanitization Management System 1.0 - Cross-Site Scripting via SystemSettings.php Name/Shortname Argument
CVSS 3.5
CVE-2022-3587 LOW
SourceCodester Simple Cold Storage Management System 1.0 - XSS
CVSS 3.5
CVE-2022-3584 MEDIUM
SourceCodester Canteen Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2022-3583 HIGH
SourceCodester Canteen Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2022-3581 LOW
SourceCodester Cashier Queuing System 1.0 - XSS
CVSS 2.4
CVE-2022-3580 LOW
SourceCodester Cashier Queuing System 1.0.1 - XSS
CVSS 2.4
CVE-2022-3579 MEDIUM
SourceCodester Cashier Queuing System 1.0 - SQL Injection
CVSS 6.3
CVE-2022-3548 LOW
SourceCodester Simple Cold Storage Management System 1.0 - XSS
CVSS 2.4
CVE-2022-3547 LOW
SourceCodester Simple Cold Storage Management System 1.0 - XSS
CVSS 2.4
CVE-2022-3546 LOW
SourceCodester Simple Cold Storage Management System 1.0 - XSS
CVSS 2.4
CVE-2022-3519 LOW
SourceCodester Sanitization Management System 1.0 - XSS
CVSS 2.4
CVE-2022-3518 LOW
SourceCodester Sanitization Management System 1.0 - XSS
CVSS 2.4
CVE-2022-3505 LOW
SourceCodester Sanitization Management System - XSS
CVSS 3.5
CVE-2022-3504 MEDIUM
SourceCodester Sanitization Management System - SQL Injection
CVSS 6.3
Details
Vulnerabilities 251
Links
MITRE CWE Entry Search this CWE With Exploits