CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,808 vulnerabilities with CWE-74
CVE-2025-4297 HIGH
PHPGurukul Men Salon Management System 2.0 - SQL Injection
CVSS 7.3
CVE-2025-4283 HIGH
SourceCodester/oretnom23 Stock Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4267 MEDIUM
SourceCodester/oretnom23 Stock Management System 1.0 - SQL Injection
CVSS 4.7
CVE-2025-4266 HIGH
PHPGurukul Notice Board System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4265 HIGH
PHPGurukul Emergency Ambulance Hiring Portal 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4264 HIGH
PHPGurukul Emergency Ambulance Hiring Portal 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4263 HIGH
PHPGurukul Online DJ Booking Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4262 HIGH
PHPGurukul Online DJ Booking Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4261 MEDIUM
GAIR-NLP factool <3f3914bc090b644be044b7e0005113c135d8b20f - Code I...
CVSS 5.3
CVE-2025-4250 HIGH
Nero Social Networking Site 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4249 HIGH
PHPGurukul e-Diary Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4248 MEDIUM
SourceCodester Simple To-Do List System 1.0 - SQL Injection
CVSS 6.3
CVE-2025-4247 MEDIUM
SourceCodester Simple To-Do List System 1.0 - SQL Injection
CVSS 6.3
CVE-2025-4244 MEDIUM
code-projects Online Bus Reservation System 1.0 - SQL Injection
CVSS 6.3
CVE-2025-4243 MEDIUM
code-projects Online Bus Reservation System 1.0 - SQL Injection
CVSS 6.3
CVE-2025-4242 HIGH
PHPGurukul Online Birth Certificate System 2.0 - SQL Injection
CVSS 7.3
CVE-2025-4241 HIGH
PHPGurukul Teacher Subject Allocation Management System 1.0 - SQL I...
CVSS 7.3
CVE-2025-4226 HIGH
PHPGurukul/Campcodes Cyber Cafe Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4218 MEDIUM
Handrew BrowserPilot <0.2.51 - Code Injection
CVSS 5.3
CVE-2025-4214 HIGH
PHPGuruku Online DJ Booking Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4213 HIGH
PHPGurukul Online Birth Certificate System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-4197 MEDIUM
code-projects Patient Record Management System 1.0 - SQL Injection via edit_xpatient.php lastname Parameter
CVSS 6.3
CVE-2025-4196 MEDIUM
SourceCodester Patient Record Management System 1.0 - SQL Injection via birthing.php comp_id Parameter
CVSS 6.3
CVE-2025-4195 HIGH
Gym Management System 1.0 - SQL Injection via umember_id Parameter in /ajax.php
CVSS 7.3
CVE-2025-4193 HIGH
itsourcecode Restaurant Management System 1.0 - SQL Injection via Category Parameter in category_update.php
CVSS 7.3
Details
Vulnerabilities 4,808
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits