Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-74

CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,792 vulnerabilities with CWE-74

CVE-2026-10184 HIGH

SourceCodester Hospitals Patient Records Management System Users.php delete sql injection

CVE-2026-10182 MEDIUM

TRENDnet TEW-432BRP formWlanSetup command injection

CVE-2026-10180 MEDIUM

TRENDnet TEW-432BRP formSysCmd command injection

CVE-2026-10178 HIGH

code-projects Online Music Site AdminEditAlbum.php sql injection

CVE-2026-10176 MEDIUM

Aider-AI Aider Code Generation Workflow sql injection

CVE-2026-10175 MEDIUM

Aider-AI Aider Architect Mode auth.py editor_coder.run code injection

CVE-2026-10171 MEDIUM

code-projects Online Music Site AdminUpdateAlbum.php sql injection

CVE-2026-10170 MEDIUM

code-projects Visitor Management System phone_0.php sql injection

CVE-2026-10166 MEDIUM

Edimax BR-6478AC POST Request formWlbasic command injection

CVE-2026-10155 MEDIUM

Bdtask Multi-Store Inventory Management System Accounts Report Accounts.php accounts_report_search sql injection

CVE-2026-10127 MEDIUM

Edimax BR-6478AC POST Request formStaDrvSetup command injection

CVE-2026-10111 HIGH

sambitraj STUDENT-MANAGEMENT-SYSTEM Login Page sql injection

CVE-2026-10110 HIGH

code-projects Student Details Management System index.php sql injection

CVE-2026-10061 MEDIUM

TRENDnet TEW-432BRP formWPS command injection

CVE-2026-10060 MEDIUM

TRENDnet TEW-432BRP formSetRoute command injection

CVE-2026-45344 HIGH

LinkAce: Setup database password newline injection enables pre-auth RCE on uninitialized instances

CVE-2026-9607 MEDIUM

itsourcecode Courier Management System parcel_list.php sql injection

CVE-2026-9606 HIGH

itsourcecode Courier Management System manage_user.php sql injection

CVE-2026-9584 HIGH

code-projects Project Management System Login chk.php sql injection

CVE-2026-9575 HIGH

itsourcecode Student Transcript Processing System index.php sql injection

CVE-2026-9574 HIGH

itsourcecode Student Transcript Processing System trans.php sql injection

CVE-2026-9573 HIGH

itsourcecode Student Transcript Processing System index.php sql injection

CVE-2026-9568 MEDIUM

ThingsBoard YAML provision getGatewayDockerComposeFile code injection

CVE-2026-9552 HIGH

Das Parking Management System 停车场管理系统 Search API Endpoint sql injection

CVE-2026-9551 HIGH

Das Parking Management System 停车场管理系统 API Endpoint ExportParkingRecords xp_cmdshell sql injection

Previous Page 6 of 192 Next

Details

Vulnerabilities 4,792

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy