CWE-74

High likelihood

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Parent: CWE-707 - Improper Neutralization

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

4,806 vulnerabilities with CWE-74
CVE-2025-7539 HIGH
code-projects Online Appointment Booking System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7537 HIGH
Campcodes Sales & Inventory System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7536 HIGH
Campcodes Sales and Inventory System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7535 HIGH
Campcodes Sales and Inventory System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7534 HIGH
PHPGurukul Student Result Management System 2.0 - SQL Injection
CVSS 7.3
CVE-2025-7533 HIGH
Job Diary 1.0 - SQL Injection via job_id Parameter in view-details.php
CVSS 7.3
CVE-2025-7525 MEDIUM
TOTOLINK T6 4.1.5cu.748_B20211015 - Command Injection
CVSS 6.3
CVE-2025-7524 MEDIUM
TOTOLINK T6 4.1.5cu.748_B20211015 - Command Injection
CVSS 6.3
CVE-2025-7522 MEDIUM
PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection
CVSS 6.3
CVE-2025-7521 HIGH
PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection
CVSS 7.3
CVE-2025-7520 MEDIUM
PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection
CVSS 6.3
CVE-2025-7517 HIGH
code-projects Online Appointment Booking System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7516 HIGH
code-projects Online Appointment Booking System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7515 HIGH
code-projects Online Appointment Booking System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7514 HIGH
code-projects Modern Bag 1.0 - SQL Injection via /admin/contact-list.php idStatus Parameter
CVSS 7.3
CVE-2025-7513 HIGH
code-projects Modern Bag 1.0 - SQL Injection via /admin/slideupdate.php idSlide Parameter
CVSS 7.3
CVE-2025-7512 HIGH
code-projects Modern Bag 1.0 - SQL Injection via Contact Name Parameter
CVSS 7.3
CVE-2025-7511 MEDIUM
code-projects Chat System 1.0 - SQL Injection
CVSS 6.3
CVE-2025-7510 HIGH
code-projects Modern Bag 1.0 - SQL Injection via namepro Parameter
CVSS 7.3
CVE-2025-7509 HIGH
code-projects Modern Bag 1.0 - SQL Injection via idSlide Parameter
CVSS 7.3
CVE-2025-7508 HIGH
code-projects Modern Bag 1.0 - SQL Injection
CVSS 7.3
CVE-2025-7492 MEDIUM
PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection
CVSS 6.3
CVE-2025-7491 MEDIUM
PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection
CVSS 6.3
CVE-2025-7490 MEDIUM
PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection
CVSS 6.3
CVE-2025-7489 MEDIUM
PHPGurukul Vehicle Parking Management System 1.13 - SQL Injection
CVSS 6.3
Details
Vulnerabilities 4,806
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits