Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-74

CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,792 vulnerabilities with CWE-74

CVE-2026-11514 MEDIUM

itsourcecode Hospital Management System addpatient.php sql injection

CVE-2026-11513 MEDIUM

itsourcecode Hospital Management System adminaccount.php sql injection

CVE-2026-11511 LOW

Bolt CMS HTML Attribute TextType.php HTML injection

CVE-2026-11510 MEDIUM

CodeAstro Leave Management System add_leave.php sql injection

CVE-2026-11509 MEDIUM

CodeAstro Leave Management System search_staff_for_updation.php sql injection

CVE-2026-11508 MEDIUM

CodeAstro Leave Management System search_staff_to_assign_pc.php sql injection

CVE-2026-11507 MEDIUM

CodeAstro Leave Management System delete_leave_type.php sql injection

CVE-2026-11506 MEDIUM

CodeAstro Leave Management System search_staff_for_deletion.php sql injection

CVE-2026-11501 HIGH

SourceCodester Hospitals Patient Records Management System Master.php save_patient sql injection

CVE-2026-11495 MEDIUM

CodeAstro Ingredients Stock Management System add_stock.php sql injection

CVE-2026-11490 HIGH

code-projects Online Music Site Search.php sql injection

CVE-2026-11489 HIGH

code-projects Online Music Site AdminDeleteAlbum.php sql injection

CVE-2026-11488 HIGH

code-projects Simple Flight Ticket Booking System POST Parameter checkUser.php sql injection

CVE-2026-11487 MEDIUM

Neovim View Branch secure.lua M.read command injection

CVE-2026-11486 HIGH

SourceCodester Class and Exam Timetabling System archive1.php sql injection

CVE-2026-11485 HIGH

SourceCodester Class and Exam Timetabling System archive2.php sql injection

CVE-2026-11484 HIGH

SourceCodester Class and Exam Timetabling System archive3.php sql injection

CVE-2026-11483 HIGH

SourceCodester Class and Exam Timetabling System archive4.php sql injection

CVE-2026-11482 HIGH

SourceCodester Class and Exam Timetabling System archive5.php sql injection

CVE-2026-11480 MEDIUM

Chengdu Everbrite Network Technology BeikeShop Admin Design Builder Endpoint admin.php sql injection

CVE-2026-11475 MEDIUM

Kushan2k student-management-system Certificate Verification Endpoint GradeController.php getStatus sql injection

CVE-2026-11473 MEDIUM

jflyfox jfinal_cms AdvicefeedbackController.java list sql injection

CVE-2026-11472 HIGH

SourceCodester Class and Exam Timetabling System index1.php sql injection

CVE-2026-11471 HIGH

SourceCodester Class and Exam Timetabling System index2.php sql injection

CVE-2026-11457 HIGH

erzhongxmu JeeWMS JimuReport test-connection Endpoint testConnection injection

Previous Page 2 of 192 Next

Details

Vulnerabilities 4,792

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy