Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-74

CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,808 vulnerabilities with CWE-74

CVE-2025-4723 HIGH

Placement Management System 1.0 - SQL Injection via all_student.php Delete Parameter

CVE-2025-4722 HIGH

Placement Management System 1.0 - SQL Injection via Name Parameter in edit_profile.php

CVE-2025-4721 HIGH

Placement Management System 1.0 - SQL Injection via ID Parameter in drive.php

CVE-2025-4719 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via cid Parameter in Cash Transaction Page

CVE-2025-4718 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via customer_add.php last Parameter

CVE-2025-4717 HIGH

PHPGurukul Company Visitor Management System 2.0 - SQL Injection via fullname Parameter

CVE-2025-4716 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via prod_name Parameter

CVE-2025-4715 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via cid Parameter in view_application.php

CVE-2025-4714 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via Reprint Page sid Parameter

CVE-2025-4713 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via Print Page SID Parameter

CVE-2025-4712 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via cid Parameter in Account Summary Page

CVE-2025-4711 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via prod_name Parameter

CVE-2025-4710 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via Transaction Page CID Parameter

CVE-2025-4709 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via /pages/transaction_del.php ID Parameter

CVE-2025-4708 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via discount Parameter in sales_add.php

CVE-2025-4707 HIGH

Campcodes Sales and Inventory System 1.0 - SQL Injection via prod_name Parameter

CVE-2025-4706 HIGH

projectworlds Online Examination System 1.0 - SQL Injection via Visit_year Parameter

CVE-2025-4705 HIGH

PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection via viewid Parameter

CVE-2025-4704 HIGH

PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection via editid Parameter

CVE-2025-4703 HIGH

PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection via Admin Profile Contact Number Parameter

CVE-2025-4702 HIGH

PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection via catename Parameter

CVE-2025-4699 HIGH

PHPGurukul Apartment Visitors Management System 1.0 - SQL Injection

CVE-2025-4698 HIGH

PHPGurukul Directory Management System 2.0 - SQL Injection

CVE-2025-4697 HIGH

PHPGurukul Directory Management System 2.0 - SQL Injection

CVE-2025-4696 MEDIUM

PHPGurukul/Campcodes Cyber Cafe Management System 1.0 - SQL Injection

Previous Page 115 of 193 Next

Details

Vulnerabilities 4,808

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy