Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-74

CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,792 vulnerabilities with CWE-74

CVE-2026-9544 HIGH

Shenzhen Sixun Software Sixun Shanghui Group Business Management System PayConfig sql injection

CVE-2026-9542 MEDIUM

CodeAstro Leave Management System add_staff.php sql injection

CVE-2026-9528 HIGH

itsourcecode Electronic Judging System delete_judge.php sql injection

CVE-2026-9526 HIGH

itsourcecode Electronic Judging System edit_team.php sql injection

CVE-2026-9525 HIGH

itsourcecode Electronic Judging System edit_judge.php sql injection

CVE-2026-9524 MEDIUM

xianrendzw EasyReport REST Endpoint execute sql injection

CVE-2026-9523 HIGH

Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform getCalcmeterDetailDayListTree sql injection

CVE-2026-9474 HIGH

yashpokharna2555 StudentManagementSystem studentdel.php confirm_logged_in sql injection

CVE-2026-9470 HIGH

yashpokharna2555 StudentManagementSystem student_trans.php confirm_logged_in sql injection

CVE-2026-9469 HIGH

yashpokharna2555 StudentManagementSystem success.php sql injection

CVE-2026-9465 HIGH

Tiandy Easy7 Integrated Management Platform GetDBDataEx.jsp sql injection

CVE-2026-9453 HIGH

FoundDream miniclawd SkillsLoader skills-loader.ts which command injection

CVE-2026-9451 MEDIUM

code-projects Employee Management System applyleaveprocess.php sql injection

CVE-2026-9450 MEDIUM

code-projects Employee Management System psubmit.php sql injection

CVE-2026-9449 MEDIUM

code-projects Employee Management System changepassemp.php sql injection

CVE-2026-9447 HIGH

SourceCodester Simple POS and Inventory System search.php sql injection

CVE-2026-9446 MEDIUM

SourceCodester Simple POS and Inventory System edit_customer.php sql injection

CVE-2026-9444 MEDIUM

SourceCodester Simple POS and Inventory System GET Parameter deleteproduct.php delete sql injection

CVE-2026-9441 MEDIUM

Edimax BR-6478AC POST Request formiNICbasic command injection

CVE-2026-9440 MEDIUM

Edimax BR-6478AC POST Request formAccept command injection

CVE-2026-9439 MEDIUM

Edimax BR-6675nD stainfo command injection

CVE-2026-9423 MEDIUM

Edimax BR-6675nD POST Request mp command injection

CVE-2026-9422 HIGH

KLiK SocialMediaWebsite HTTP POST Request Parameter injection

CVE-2026-9420 MEDIUM

KLiK SocialMediaWebsite HTTP GET Request Parameter injection

CVE-2026-9411 MEDIUM

SourceCodester Indian Invoicing System Invoice Generation IGST_Invoice.php sql injection

Previous Page 7 of 192 Next

Details

Vulnerabilities 4,792

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy