Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-74

CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,807 vulnerabilities with CWE-74

CVE-2025-6094 MEDIUM

qianfox FoxCMS <1.2.5 - SQL Injection

CVE-2025-6009 MEDIUM

kiCode111 like-girl <5.2.0 - SQL Injection

CVE-2025-6008 MEDIUM

kiCode111 like-girl <5.2.0 - SQL Injection

CVE-2025-6007 MEDIUM

kiCode111 like-girl 5.2.0 - SQL Injection

CVE-2025-6006 MEDIUM

kiCode111 like-girl 5.2.0 - SQL Injection

CVE-2025-6005 MEDIUM

kiCode111 like-girl 5.2.0 - SQL Injection

CVE-2025-32711 CRITICAL

Microsoft 365 Copilot - Ai Command Injection

CVE-2025-5980 HIGH

Restaurant Order System 1.0 - SQL Injection via tabidNoti Parameter

CVE-2025-5979 HIGH

School Fees Payment System 1.0 - SQL Injection via ID Parameter in /branch.php

CVE-2025-5977 HIGH

School Fees Payment System 1.0 - SQL Injection via sSortDir_0 Parameter in datatable.php

CVE-2025-5971 MEDIUM

School Fees Payment System 1.0 - SQL Injection via ajx.php name_startsWith Parameter

CVE-2025-5913 HIGH

PHPGurukul Vehicle Record Management System 1.0 - SQL Injection via searchinputdata Parameter

CVE-2025-5881 MEDIUM

code-projects Chat System <= 1.0 - SQL Injection via Confirm Password cid Parameter

CVE-2025-5860 HIGH

PHPGurukul Maid Hiring Management System 1.0 - SQL Injection

CVE-2025-5859 MEDIUM

PHPGurukul Nipah Virus Testing Management System 1.0 - SQL Injection

CVE-2025-5858 MEDIUM

PHPGurukul Nipah Virus Testing Management System 1.0 - SQL Injection

CVE-2025-5857 MEDIUM

Code-projects Patient Record Management System 1.0 - SQL Injection

CVE-2025-5856 HIGH

PHPGurukul BP Monitoring Management System 1.0 - SQL Injection

CVE-2025-5838 MEDIUM

PHPGurukul Employee Record Management System 1.3 - SQL Injection

CVE-2025-5837 MEDIUM

PHPGurukul Employee Record Management System 1.3 - SQL Injection

CVE-2025-5836 MEDIUM

Tenda AC9 15.03.02.13 - Command Injection

CVE-2025-5784 MEDIUM

PHPGurukul Employee Record Management System 1.3 - SQL Injection via emp3ctc Parameter in myexp.php

CVE-2025-5783 MEDIUM

PHPGurukul Employee Record Management System 1.3 - SQL Injection via emp3workduration Parameter

CVE-2025-5782 MEDIUM

PHPGurukul Employee Record Management System 1.3 - SQL Injection via Reset Password New Password Parameter

CVE-2025-5780 MEDIUM

code-projects Patient Record Management System 1.0 - SQL Injection via view_dental.php itr_no Parameter

Previous Page 103 of 193 Next

Details

Vulnerabilities 4,807

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy