Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-74

CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,795 vulnerabilities with CWE-74

CVE-2025-11402 MEDIUM

SourceCodester Hotel and Lodge Management System 1.0 - SQL Injection

CVE-2025-11401 MEDIUM

SourceCodester Hotel and Lodge Management System 1.0 - SQL Injection

CVE-2025-11400 MEDIUM

SourceCodester Hotel and Lodge Management System 1.0 - SQL Injection

CVE-2025-11399 MEDIUM

SourceCodester Hotel and Lodge Management System 1.0 - SQL Injection

CVE-2025-11397 HIGH

SourceCodester Hotel and Lodge Management System 1.0 - SQL Injection

CVE-2025-11396 HIGH

Simple Food Ordering System 1.0 - SQL Injection

CVE-2025-11359 MEDIUM

Simple Banking System 1.0 - SQL Injection

CVE-2025-11358 MEDIUM

Code-projects Simple Banking System 1.0 - SQL Injection

CVE-2025-11357 MEDIUM

Simple Banking System 1.0 - SQL Injection

CVE-2025-11350 HIGH

Campcodes Online Apartment Visitor Management System 1.0 - SQL Injection via fromdate/todate Parameter

CVE-2025-11349 HIGH

Campcodes Online Apartment Visitor Management System 1.0 - SQL Injection via searchdata Parameter

CVE-2025-11348 HIGH

Campcodes Online Apartment Visitor Management System 1.0 - SQL Injection via Username Parameter

CVE-2025-11344 MEDIUM

ILIAS <= 8.23/9.13/10.1 - Remote Code Execution in Certificate Import Handler

CVE-2025-11343 HIGH

code-projects Student Crud Operation <3.3 - SQL Injection

CVE-2025-11342 MEDIUM

Code-projects Online Course Registration 1.0 - SQL Injection

CVE-2025-11335 MEDIUM

D-Link DI-7100G C1 <20250928 - Command Injection

CVE-2025-11334 HIGH

Campcodes Online Apartment Visitor Management System 1.0 - SQL Injection via editid Parameter

CVE-2025-11331 MEDIUM

ideacms < 1.8 - Remote Command Injection via Website Name Handler

CVE-2025-11330 MEDIUM

PHPGurukul Beauty Parlour Management System 1.1 - SQL Injection

CVE-2025-11329 HIGH

Code-Projects Online Course Registration <1.0 - SQL Injection

CVE-2025-11319 MEDIUM

nahiduddinahammed Hospital-Management-System-Website <e6562429e14b2...

CVE-2025-11317 HIGH

Tipray Data Leakage Prevention System 1.0 - SQL Injection

CVE-2025-11316 HIGH

Tipray Data Leakage Prevention System 1.0 - SQL Injection

CVE-2025-11315 HIGH

Tipray Data Leakage Prevention System 1.0 - SQL Injection

CVE-2025-11314 HIGH

Tipray Data Leakage Prevention System 1.0 - SQL Injection

Previous Page 60 of 192 Next

Details

Vulnerabilities 4,795

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy