Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-74

CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,516 vulnerabilities with CWE-74

CVE-2026-5620 MEDIUM

itsourcecode Construction Management System Parameter borrowed_equip_report.php sql injection

CVE-2026-5606 MEDIUM

PHPGurukul Online Shopping Portal Project Parameter order-details.php sql injection

CVE-2026-5596 MEDIUM

griptape-ai griptape SqlTool tool.py sql injection

CVE-2026-5594 MEDIUM

premAI-io premsql followup.py eval code injection

CVE-2026-5587 MEDIUM

wbbeyourself MAC-SQL Refiner Agent agents.py _execute_sql sql injection

CVE-2026-5586 MEDIUM

zhongyu09 openchatbi Multi-stage Text2SQL Workflow sql injection

CVE-2026-5584 HIGH

Fosowl agenticSeek query Endpoint PyInterpreter.py PyInterpreter.execute code injection

CVE-2026-5583 MEDIUM

PHPGurukul Online Shopping Portal Project Parameter my-profile.php sql injection

CVE-2026-5580 MEDIUM

CodeAstro Online Classroom Parameter addvideos.php sql injection

CVE-2026-5579 MEDIUM

CodeAstro Online Classroom Parameter updatedetailsfromfaculty.php sql injection

CVE-2026-5578 MEDIUM

CodeAstro Online Classroom Parameter addassessment.php sql injection

CVE-2026-5577 HIGH

Song-Li cross_browser details Endpoint uniquemachine_app.py sql injection

CVE-2026-5575 HIGH

SourceCodester/jkev Record Management System Login index.php sql injection

CVE-2026-5565 HIGH

code-projects Simple Laundry System Parameter delmemberinfo.php sql injection

CVE-2026-5564 HIGH

code-projects Simple Laundry System Parameter searchguest.php sql injection

CVE-2026-5563 MEDIUM

AutohomeCorp frostmourne Alarm Preview previewData httpTest sql injection

CVE-2026-5562 HIGH

provectus kafka-ui Endpoint testexecutions validateAccess code injection

CVE-2026-5561 MEDIUM

Campcodes Complete POS Management and Inventory System Environment Variable SettingsController.php injection

CVE-2026-5560 MEDIUM

PHPGurukul Online Shopping Portal Project Parameter payment-method.php sql injection

CVE-2026-5558 MEDIUM

PHPGurukul PHPGurukul Online Shopping Portal Project Parameter pending-orders.php sql injection

CVE-2026-5556 MEDIUM

badlogic pi-mono loader.ts discoverAndLoadExtensions code injection

CVE-2026-5555 HIGH

code-projects Concert Ticket Reservation System Parameter login.php sql injection

CVE-2026-5554 HIGH

code-projects Concert Ticket Reservation System Parameter process_search.php sql injection

CVE-2026-5553 MEDIUM

itsourcecode Online Cellphone System Parameter available.php sql injection

CVE-2026-5552 MEDIUM

PHPGurukul Online Shopping Portal Project Parameter sub-category.php sql injection

Previous Page 8 of 181 Next

Details

Vulnerabilities 4,516

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy