CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,806 vulnerabilities with CWE-74
CVE-2025-7904 MEDIUM
itsourcecode Insurance Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2025-7894 MEDIUM
Onyx < 0.29.1 - SQL Injection via generate_simple_sql Function
CVSS 6.3
CVE-2025-7888 MEDIUM
TDuckCloud tduck-platform 5.1 - SQL Injection
CVSS 6.3
CVE-2025-7886 HIGH
pmTicket Project-Management-Software <2ef379da2075f4761a2c9029cf91d...
CVSS 7.3
CVE-2025-7883 HIGH
Eluktronics Control Center 5.23.51.41 - Command Injection
CVSS 7.8
CVE-2025-7873 MEDIUM
MetaCRM < 6.4.2 - SQL Injection via mcc_login.jsp workerid Parameter
CVSS 6.3
CVE-2025-7861 HIGH
Church Donation System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7860 HIGH
Church Donation System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7859 HIGH
Church Donation System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7838 HIGH
Campcodes Online Movie Theater Seat Reservation System 1.0 - SQL Injection via /admin/manage_seat.php ID Parameter
CVSS 7.3
CVE-2025-7836 MEDIUM
D-Link DIR-816L <2.06B01 - Command Injection
CVSS 6.3
CVE-2025-7833 HIGH
Church Donation System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7832 HIGH
Church Donation System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7831 HIGH
Church Donation System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7830 HIGH
Church Donation System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7829 HIGH
Church Donation System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7814 HIGH
Food Ordering Review System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7801 HIGH
BossSoft CRM 6.0 - SQL Injection via cstid Parameter in HNDCBas_customPrmSearchDtl.jsp
CVSS 7.3
CVE-2025-7798 MEDIUM
Beijing Shenzhou Shihan Technology Multimedia Integrated Business D...
CVSS 6.3
CVE-2025-7765 HIGH
code-projects Online Appointment Booking System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7764 HIGH
code-projects Online Appointment Booking System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7757 HIGH
PHPGurukul Land Record System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7754 MEDIUM
Patient Record Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2025-7753 HIGH
code-projects Online Appointment Booking System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7752 HIGH
code-projects Online Appointment Booking System 1.0 - SQL Injection
CVSS 7.3
Details
Vulnerabilities 4,806
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits