CWE-74
High likelihoodImproper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.
4,516 vulnerabilities with CWE-74
CVE-2026-5814
HIGH
PHPGurukul Online Course Registration check_availability.php sql injection
CVSS 7.3
CVE-2026-5813
HIGH
PHPGurukul Online Course Registration check_availability.php sql injection
CVSS 7.3
CVE-2026-5805
HIGH
code-projects Easy Blog Site contact_us.php sql injection
CVSS 7.3
CVE-2026-5739
HIGH
PowerJob OpenAPI Endpoint addWorkflowNode GroovyEvaluator.evaluate code injection
CVSS 7.3
CVE-2026-5736
HIGH
PowerJob detailPlus Endpoint InstanceController.java sql injection
CVSS 7.3
CVE-2026-35515
MEDIUM
@nestjs/core Improperly Neutralizes Special Elements in Output Used by a Downstream Component ('Injection')
CVSS 6.1
CVE-2026-5719
MEDIUM
itsourcecode Construction Management System borrowedtool.php sql injection
CVSS 6.3
CVE-2026-5681
MEDIUM
itsourcecode sanitize or validate this input Parameter borrowedequip.php sql injection
CVSS 6.3
CVE-2026-5675
MEDIUM
itsourcecode Construction Management System Parameter borrowed_tool.php sql injection
CVSS 6.3
CVE-2026-5672
HIGH
code-projects Simple IT Discussion Forum Parameter edit-category.php sql injection
CVSS 7.3
CVE-2026-5669
HIGH
Cyber-III Student-Management-System Parameter login.php sql injection
CVSS 7.3
CVE-2026-5665
HIGH
code-projects Online FIR System Login checklogin.php sql injection
CVSS 7.3
CVE-2026-5660
MEDIUM
itsourcecode Construction Management System Parameter borrowed_equip.php sql injection
CVSS 6.3
CVE-2026-5649
MEDIUM
code-projects Online Application System for Admission Endpoint admsnform.php sql injection
CVSS 6.3
CVE-2026-5648
HIGH
code-projects Simple Laundry System Parameter userfinishregister.php sql injection
CVSS 7.3
CVE-2026-5646
HIGH
code-projects Easy Blog Site login.php sql injection
CVSS 7.3
CVE-2026-5645
HIGH
projectworlds Car Rental System Parameter pay.php sql injection
CVSS 7.3
CVE-2026-5641
MEDIUM
PHPGurukul Online Shopping Portal Project Parameter update-image1.php sql injection
CVSS 6.3
CVE-2026-5640
MEDIUM
PHPGurukul Online Shopping Portal Project Parameter update-image2.php sql injection
CVSS 6.3
CVE-2026-5639
MEDIUM
PHPGurukul Online Shopping Portal Project Parameter update-image3.php sql injection
CVSS 6.3
CVE-2026-5637
HIGH
projectworlds Car Rental System Parameter message_admin.php sql injection
CVSS 7.3
CVE-2026-5636
MEDIUM
PHPGurukul Online Shopping Portal Project Parameter cancelorder.php sql injection
CVSS 6.3
CVE-2026-5635
MEDIUM
PHPGurukul Online Shopping Portal Project Parameter categorywise-products.php sql injection
CVSS 6.3
CVE-2026-5634
HIGH
projectworlds Car Rental Project Parameter book_car.php sql injection
CVSS 7.3
CVE-2026-5631
HIGH
assafelovic gpt-researcher ws Endpoint server_utils.py extract_command_data code injection
CVSS 7.3
Details
Vulnerabilities
4,516
Exploit Likelihood
High