CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,808 vulnerabilities with CWE-74
CVE-2024-21797 CRITICAL
Wavlink AC3000 M33A8.V5030.210505 - Authenticated Remote Code Execution via adm.cgi set_TR069()
CVSS 9.1
CVE-2024-13204 MEDIUM
kurniaramadhan E-Commerce-PHP 1.0 - SQL Injection
CVSS 5.5
CVE-2024-13194 MEDIUM
Sucms 1.0 - SQL Injection via /admin/admin_members.php uid Parameter
CVSS 6.3
CVE-2024-13193 MEDIUM
semcms < 4.8 - SQL Injection in Image Library Management Page
CVSS 6.3
CVE-2024-13190 MEDIUM
ZeroWdd myblog 1.0 - XML Injection via BlogMapper.xml findBlogList/getTotalBlogs Argument
CVSS 6.3
CVE-2024-13187 MEDIUM
Kingsoft WPS Office 6.14.0 - Code Injection
CVSS 5.3
CVE-2024-13093 MEDIUM
code-projects Job Recruitment 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13092 MEDIUM
Job Recruitment 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13085 HIGH
PHPGurukul Land Record System 1.0 - SQL Injection
CVSS 7.3
CVE-2024-13084 MEDIUM
PHPGurukul Land Record System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13079 MEDIUM
PHPGurukul Land Record System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13078 MEDIUM
PHPGurukul Land Record System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13072 MEDIUM
1000 Projects Beauty Parlour Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13070 MEDIUM
CodeAstro Online Food Ordering System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13039 MEDIUM
Simple Chat System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13038 HIGH
CodeAstro Simple Loan Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2024-13037 MEDIUM
1000 Projects Attendance Tracking Management System 1.0 - SQL Injection via course_id
CVSS 6.3
CVE-2024-13036 MEDIUM
code-projects Chat System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13035 MEDIUM
Code-projects Chat System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13025 MEDIUM
Codezips College Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13024 MEDIUM
Codezips Blood Bank Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13020 MEDIUM
code-projects Chat System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13016 MEDIUM
PHPGurukul Maid Hiring Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13014 MEDIUM
PHPGurukul Maid Hiring Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-13008 MEDIUM
Responsive Hotel Site 1.0 - SQL Injection
CVSS 6.3
Details
Vulnerabilities 4,808
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits