CWE-74: Injection

This critical SQL injection vulnerability in the 1000 Projects Attendance Tracking Management System 1.0 allows remote attackers to execute arbitrary ...

This critical SQL injection vulnerability in Codezips E-Commerce Website 1.0 allows remote attackers to manipulate the email parameter in /login.php, ...

This critical SQL injection vulnerability in Codezips E-Commerce Site 1.0 allows attackers to manipulate database queries through the email parameter ...

CVE-2024-12788 is a critical SQL injection vulnerability in Codezips Technical Discussion Forum 1.0 that allows remote attackers to execute arbitrary ...

This critical SQL injection vulnerability in 1000 Projects Attendance Tracking Management System 1.0 allows attackers to execute arbitrary SQL command...

This critical SQL injection vulnerability in the 1000 Projects Attendance Tracking Management System 1.0 allows attackers to manipulate database queri...

This critical SQL injection vulnerability in Codezips Technical Discussion Forum 1.0 allows attackers to manipulate database queries through the Usern...

This critical SQL injection vulnerability in CodeZips Project Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the ...

This critical SQL injection vulnerability in PHPGurukul Complaint Management System 1.0 allows attackers to execute arbitrary SQL commands through the...

This critical SQL injection vulnerability in PHPGurukul Complaint Management System 1.0 allows attackers to manipulate database queries through the se...

This critical SQL injection vulnerability in 1000 Projects Library Management System 1.0 allows remote attackers to execute arbitrary SQL commands via...

This critical SQL injection vulnerability in Concert Ticket Ordering System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'mai...

This critical SQL injection vulnerability in PHPGurukul Complaint Management System 1.0 allows remote attackers to execute arbitrary SQL commands via ...

This critical SQL injection vulnerability in PHPGurukul Complaint Management System 1.0 allows remote attackers to execute arbitrary SQL commands via ...

This critical SQL injection vulnerability in Simple Car Rental System 1.0 allows attackers to execute arbitrary SQL commands through the uname paramet...

This critical SQL injection vulnerability in PHPGurukul User Registration & Login and User Management System 1.0 allows remote attackers to execute ar...

This critical SQL injection vulnerability in 1000 Projects Portfolio Management System MCA 1.0 allows remote attackers to execute arbitrary SQL comman...

A critical SQL injection vulnerability in Codezips E-Commerce Site 1.0 allows attackers to execute arbitrary SQL commands via the keywords parameter i...

This critical SQL injection vulnerability in Beauty Parlour Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'n...

This critical SQL injection vulnerability in Simple Car Rental System 1.0 allows attackers to execute arbitrary SQL commands by manipulating parameter...

This critical SQL injection vulnerability in Beauty Parlour Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the pa...

This critical SQL injection vulnerability in Beauty Parlour Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 's...

This critical SQL injection vulnerability in Bookstore Management System 1.0 allows attackers to execute arbitrary SQL commands via the 'unm' paramete...

This critical SQL injection vulnerability in the Beauty Parlour Management System 1.0 allows attackers to manipulate database queries via the email pa...

This critical SQL injection vulnerability in Job Recruitment 1.0 allows remote attackers to execute arbitrary SQL commands via the 'e' parameter in re...

This critical SQL injection vulnerability in Beauty Parlour Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'n...

This critical SQL injection vulnerability in Job Recruitment 1.0 allows attackers to manipulate database queries through the email parameter in /login...

This critical SQL injection vulnerability in Job Recruitment 1.0 allows attackers to manipulate database queries through the email parameter in /index...

This critical SQL injection vulnerability in 1000 Projects Bookstore Management System 1.0 allows remote attackers to execute arbitrary SQL commands v...

CVE-2024-10995 is a critical SQL injection vulnerability in Codezips Hospital Appointment System 1.0 that allows remote attackers to execute arbitrary...

This critical SQL injection vulnerability in Codezips Hospital Appointment System 1.0 allows remote attackers to execute arbitrary SQL commands via th...

This critical SQL injection vulnerability in E-Health Care System 1.0 allows remote attackers to execute arbitrary SQL commands via the email paramete...

This critical SQL injection vulnerability in the Bookstore Management System 1.0 allows attackers to manipulate login credentials to execute arbitrary...

This critical SQL injection vulnerability in E-Health Care System 1.0 allows remote attackers to execute arbitrary SQL commands by manipulating the 'i...

This vulnerability in Symfony's runtime component allows attackers to manipulate the application's environment or debug mode by sending specially craf...

This critical SQL injection vulnerability in Bookstore Management System 1.0 allows attackers to execute arbitrary SQL commands through the search.php...

A critical SQL injection vulnerability exists in Codezips Hospital Appointment System 1.0 through the /doctorAction.php file's Name parameter. This al...

This critical SQL injection vulnerability in Codezips Pet Shop Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the...

This CVE describes an SQL injection vulnerability in the School Log Management System 1.0 by SourceCodester/Campcodes. Attackers can exploit the login...

CVE-2023-51664 is a command injection vulnerability in the tj-actions/changed-files GitHub Action that allows attackers to execute arbitrary commands ...

This is a cross-site scripting (XSS) vulnerability in Go's html/template package where angle brackets in CSS contexts aren't properly escaped. It affe...

This vulnerability allows a malicious app to bypass device admin settings through unclear UI in Android's AppSwitchPreference component. It enables lo...

CVE-2021-29502 is an injection vulnerability in the WarnSystem plugin for Red Discord bot that allows any user to access sensitive information by craf...

This CVE allows malicious or compromised Flatpak applications to escape their sandbox and execute arbitrary code on the host Linux system. The vulnera...

This CVE describes a command injection vulnerability in Wavlink WL-NU516U1 routers that allows remote attackers to execute arbitrary commands on affec...

This CVE-2026-2615 is a command injection vulnerability in Wavlink WL-NU516U1 routers that allows remote attackers to execute arbitrary commands on af...

This vulnerability allows remote attackers to execute arbitrary commands on UTT 进取 521G devices by injecting malicious input into the password par...

This vulnerability allows remote attackers to execute arbitrary commands on UTT HiPER 810 routers by injecting malicious input into the Isp_Name param...

This CVE describes a command injection vulnerability in D-Link DWR-M921 routers via the USSD configuration endpoint. Attackers can execute arbitrary c...

This vulnerability allows remote attackers to execute arbitrary commands on UTT HiPER 810 routers by injecting malicious input into the password param...