Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-74

CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,808 vulnerabilities with CWE-74

CVE-2024-12479 MEDIUM

cjbi wetech-cms 1.0/1.1/1.2 - SQL Injection via searchTopicByKeyword Function

CVE-2024-12360 MEDIUM

Online Class and Exam Scheduling System 1.0 - SQL Injection via class_update.php id Parameter

CVE-2024-12351 MEDIUM

JFinalCMS 1.0 - SQL Injection via ContentModel findPage Function

CVE-2024-12350 MEDIUM

JFinalCMS 1.0 - Remote Code Execution via Template Handler Content Argument

CVE-2024-12234 HIGH

1000 Projects Beauty Parlour Management System 1.0 - SQL Injection via /admin/edit-customer-detailed.php Name Parameter

CVE-2024-12231 HIGH

CodeZips Project Management System 1.0 - SQL Injection via Email Parameter

CVE-2024-12230 HIGH

PHPGurukul Complaint Management System 1.0 - SQL Injection via Subcategory Category Parameter

CVE-2024-12229 HIGH

PHPGurukul Complaint Management System 1.0 - SQL Injection via search Parameter in complaint-search.php

CVE-2024-12228 HIGH

PHPGurukul Complaint Management System 1.0 - SQL Injection via User Search Parameter

CVE-2024-12188 HIGH

1000 Projects Library Management System 1.0 - SQL Injection via stu.php useri Parameter

CVE-2024-12187 HIGH

1000 Projects Library Management System 1.0 - SQL Injection via showbook.php q Parameter

CVE-2024-12007 MEDIUM

code-projects Farmacia 1.0 - SQL Injection via /visualizar-produto.php id Parameter

CVE-2024-11998 MEDIUM

farmacia 1.0 - SQL Injection via /visualizer-forneccedor.chp id Parameter

CVE-2024-11970 HIGH

Concert Ticket Ordering System 1.0 - SQL Injection

CVE-2024-11968 MEDIUM

code-projects Farmacia <1.0 - SQL Injection

CVE-2024-11967 HIGH

PHPGurukul Complaint Management 1.0 - SQL Injection

CVE-2024-11966 HIGH

PHPGurukul Complaint Management 1.0 - SQL Injection

CVE-2024-11965 HIGH

PHPGurukul Complaint Management 1.0 - SQL Injection

CVE-2024-11964 HIGH

PHPGurukul Complaint Management 1.0 - SQL Injection

CVE-2024-11963 MEDIUM

code-projects Responsive Hotel Site 1.0 - SQL Injection

CVE-2024-11962 HIGH

Simple Car Rental System 1.0 - SQL Injection

CVE-2024-53860 HIGH

sp-php-email-handler <1.0.0 - Info Disclosure

CVE-2024-11819 HIGH

1000 Projects Portfolio Management System MCA 1.0 - SQL Injection

CVE-2024-11818 HIGH

PHPGurukul User Registration & Login and User Management System 1.0 - SQL Injection via Email Parameter in Signup

CVE-2024-11817 HIGH

PHPGurukul User Registration & Login and User Management System 1.0 - SQL Injection via Username Parameter

Previous Page 147 of 193 Next

Details

Vulnerabilities 4,808

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy