CWE-74— Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection)
The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.— MITRE CWE catalog
5,082 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-74page 15 of 102
- CVE-2021-40658MEDIUMCVSS 4.8EG 4.82022-06-14
Textpattern 4.8.7 is affected by a HTML injection vulnerability through “Content>Write>Body”.
- CVE-2021-41084HIGHCVSS 8.7EG 8.72021-09-21
http4s is an open source scala interface for HTTP. In affected versions http4s is vulnerable to response-splitting or request-splitting attacks when untrusted user input is used to create any of the following fields: Header names (`Header.…
- CVE-2021-41128CRITICALCVSS 9.1EG 9.12021-10-06
Hygeia is an application for collecting and processing personal and case data in connection with communicable diseases. In affected versions all CSV Exports (Statistics & BAG MED) contain a CSV Injection Vulnerability. Users of the system …
- CVE-2021-41163CRITICALCVSS 10.0EG 10.02021-10-20
Discourse is an open source platform for community discussion. In affected versions maliciously crafted requests could lead to remote code execution. This resulted from a lack of validation in subscribe_url values. This issue is patched in…
- CVE-2021-41170CRITICALCVSS 9.8EG 9.82021-11-08
neoan3-apps/template is a neoan3 minimal template engine. Versions prior to 1.1.1 have allowed for passing in closures directly into the template engine. As a result values that are callable are executed by the template engine. The issue a…
- CVE-2021-41232HIGHCVSS 8.1EG 8.12021-11-02
Thunderdome is an open source agile planning poker tool in the theme of Battling for points. In affected versions there is an LDAP injection vulnerability which affects instances with LDAP authentication enabled. The provided username is n…
- CVE-2021-41276MEDIUMCVSS 6.7EG 6.72021-12-15
Tuleap is a Libre and Open Source tool for end to end traceability of application and system developments. In affected versions Tuleap does not sanitize properly the search filter built from the ldap_id attribute of a user during the daily…
- CVE-2021-41282HIGHCVSS 8.8EG 9.02022-03-01
diag_routes.php in pfSense 2.5.2 allows sed data injection. Authenticated users are intended to be able to view data about the routes set in the firewall. The data is retrieved by executing the netstat utility, and then its output is parse…
- CVE-2021-41314HIGHCVSS 8.8EG 8.82021-09-16
Certain NETGEAR smart switches are affected by a \n injection in the web UI's password field, which - due to several faulty aspects of the authentication scheme - allows the attacker to create (or overwrite) a file with specific content (e…
- CVE-2021-41390HIGHCVSS 8.0EG 8.02021-09-17
In Ericsson ECM before 18.0, it was observed that Security Provider Endpoint in the User Profile Management Section is vulnerable to CSV Injection.
- CVE-2021-41392CRITICALCVSS 9.8EG 9.82021-09-17
static/main-preload.js in Boost Note through 0.22.0 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal Electron AP…
- CVE-2021-41437MEDIUMCVSS 6.5EG 6.52022-09-26
An HTTP response splitting attack in web application in ASUS RT-AX88U before v3.0.0.4.388.20558 allows an attacker to craft a specific URL that if an authenticated victim visits it, the URL will give access to the cloud storage of the atta…
- CVE-2021-4181HIGHCVSS 7.5EG 7.52021-12-30
Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
- CVE-2021-4182HIGHCVSS 7.5EG 7.52021-12-30
Crash in the RFC 7468 dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
- CVE-2021-41825MEDIUMCVSS 5.3EG 5.32021-10-08
Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter.
- CVE-2021-4183MEDIUMCVSS 5.5EG 5.52021-12-30
Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file
- CVE-2021-4186MEDIUMCVSS 6.3EG 7.52021-12-30
Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
- CVE-2021-41862CRITICALCVSS 9.8EG 9.82021-10-02
AviatorScript through 5.2.7 allows code execution via an expression that is encoded with Byte Code Engineering Library (BCEL).
- CVE-2021-42117LOWCVSS 3.5EG 5.42021-11-30
Insufficient Input Validation in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version <= 7.1.27 allows an authenticated remote attacker with Object Modification privileges to insert arbitrary HTML withou…
- CVE-2021-4227MEDIUMCVSS 5.3EG 5.32024-01-16
The ark-commenteditor WordPress plugin through 2.15.6 does not properly sanitise or encode the comments when in Source editor, allowing attackers to inject an iFrame in the page and thus load arbitrary content from any page to the comment …
- CVE-2021-4245MEDIUMCVSS 5.5EG 5.52022-12-15
A vulnerability classified as problematic has been found in chbrown rfc6902. This affects an unknown part of the file pointer.ts. The manipulation leads to improperly controlled modification of object prototype attributes ('prototype pollu…
- CVE-2021-42561HIGHCVSS 8.8EG 8.82022-01-12
An issue was discovered in CALDERA 2.8.1. When activated, the Human plugin passes the unsanitized name parameter to a python "os.system" function. This allows attackers to use shell metacharacters (e.g., backticks "``" or dollar parenthesi…
- CVE-2021-42663MEDIUMCVSS 4.3EG 4.32021-11-05
An HTML injection vulnerability exists in Sourcecodester Online Event Booking and Reservation System in PHP/MySQL via the msg parameter to /event-management/index.php. An attacker can leverage this vulnerability in order to change the visi…
- CVE-2021-43038HIGHCVSS 8.8EG 8.82021-12-06
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The wguest account could execute commands by injecting into PostgreSQL trigger functions. This allowed privilege escalation from the wguest user to the postgres us…
- CVE-2021-43097HIGHCVSS 7.2EG 7.22022-03-28
A Server-side Template Injection (SSTI) vulnerability exists in bbs 5.3 in TemplateManageAction.javawhich could let a malicoius user execute arbitrary code.
- CVE-2021-43185CRITICALCVSS 9.8EG 9.82021-11-09
JetBrains YouTrack before 2021.3.23639 is vulnerable to Host header injection.
- CVE-2021-43269HIGHCVSS 8.8EG 8.82022-01-20
In Code42 app before 8.8.0, eval injection allows an attacker to change a device’s proxy configuration to use a malicious proxy auto-config (PAC) file, leading to arbitrary code execution. This affects Incydr Basic, Advanced, and Gov F1;…
- CVE-2021-43350CRITICALCVSS 9.8EG 9.82021-11-11
An unauthenticated Apache Traffic Control Traffic Ops user can send a request with a specially-crafted username to the POST /login endpoint of any API version to inject unsanitized content into the LDAP filter.
- CVE-2021-43437HIGHCVSS 8.8EG 8.82021-12-20
In sourcecodetester Engineers Online Portal as of 10-21-21, an attacker can manipulate the Host header as seen by the web application and cause the application to behave in unexpected ways. Very often multiple websites are hosted on the sa…
- CVE-2021-43439CRITICALCVSS 9.8EG 9.82021-12-20
RCE in Add Review Function in iResturant 1.0 Allows remote attacker to execute commands remotely
- CVE-2021-43441MEDIUMCVSS 5.3EG 5.32021-12-20
An HTML Injection Vulnerability in iOrder 1.0 allows the remote attacker to execute Malicious HTML codes via the signup form
- CVE-2021-43782MEDIUMCVSS 6.7EG 6.72021-12-15
Tuleap is a Libre and Open Source tool for end to end traceability of application and system developments. This is a follow up to GHSA-887w-pv2r-x8pm/CVE-2021-41276, the initial fix was incomplete. Tuleap does not sanitize properly the sea…
- CVE-2021-43818HIGHCVSS 8.2EG 8.22021-12-13
lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets certain crafted script content pass through, as well as script content in SVG files embedded using data URIs. …
- CVE-2021-43837HIGHCVSS 8.4EG 8.42021-12-16
vault-cli is a configurable command-line interface tool (and python library) to interact with Hashicorp Vault. In versions before 3.0.0 vault-cli features the ability for rendering templated values. When a secret starts with the prefix `!t…
- CVE-2021-43852HIGHCVSS 8.8EG 8.82022-01-04
OroPlatform is a PHP Business Application Platform. In affected versions by sending a specially crafted request, an attacker could inject properties into existing JavaScript language construct prototypes, such as objects. Later this inject…
- CVE-2021-43929MEDIUMCVSS 6.5EG 5.42022-02-07
Improper neutralization of special elements in output used by a downstream component ('Injection') vulnerability in work flow management in Synology DiskStation Manager (DSM) before 7.0.1-42218-2 allows remote authenticated users to inject…
- CVE-2021-43961MEDIUMCVSS 4.3EG 4.32022-03-17
Sonatype Nexus Repository Manager 3.36.0 allows HTML Injection.
- CVE-2021-44042CRITICALCVSS 9.8EG 9.82021-12-14
An issue was discovered in UiPath Assistant 21.4.4. User-controlled data supplied to the --process-start argument of the URI handler for uipath-assistant:// is not correctly encoded, resulting in attacker-controlled content being injected …
- CVE-2021-44530CRITICALCVSS 9.8EG 9.82022-01-14
An injection vulnerability exists in a third-party library used in UniFi Network Version 6.5.53 and earlier (Log4J CVE-2021-44228) allows a malicious actor to control the application.
- CVE-2021-44537HIGHCVSS 7.8EG 7.82022-01-15
ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.
- CVE-2021-44550CRITICALCVSS 9.8EG 9.82022-02-24
An Incorrect Access Control vulnerability exists in CoreNLP 4.3.2 via the classifier in NERServlet.java (lines 158 and 159).
- CVE-2021-44832MEDIUMCVSS 6.6EG 6.62021-12-28
Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an at…
- CVE-2021-45092CRITICALCVSS 9.8EG 9.82021-12-16
Thinfinity VirtualUI before 3.0 has functionality in /lab.html reachable by default that could allow IFRAME injection via the vpath parameter.
- CVE-2021-45655MEDIUMCVSS 6.9EG 6.82021-12-26
NETGEAR R6400 devices before 1.0.1.70 are affected by server-side injection.
- CVE-2021-45656HIGHCVSS 7.1EG 7.82021-12-26
Certain NETGEAR devices are affected by server-side injection. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, R6020 before 1.0.0.48, R6080 before 1.0.0.48, R6050 before 1.0.1.26, JR6150 before 1.0.1.26, R6120 before 1.0.0.66, …
- CVE-2021-45657HIGHCVSS 7.1EG 7.82021-12-26
Certain NETGEAR devices are affected by server-side injection. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, R6020 before 1.0.0.48, R6080 before 1.0.0.48, R6050 before 1.0.1.26, JR6150 before 1.0.1.26, R6120 before 1.0.0.66, …
- CVE-2021-45658HIGHCVSS 7.1EG 7.12021-12-26
Certain NETGEAR devices are affected by server-side injection. This affects D7800 before 1.0.1.58, DM200 before 1.0.0.66, EX2700 before 1.0.1.56, EX6150v2 before 1.0.1.86, EX6100v2 before 1.0.1.86, EX6200v2 before 1.0.1.78, EX6250 before 1…
- CVE-2021-45659HIGHCVSS 7.1EG 7.82021-12-26
Certain NETGEAR devices are affected by server-side injection. This affects RBK40 before 2.5.1.16, RBR40 before 2.5.1.16, RBS40 before 2.5.1.16, RBK20 before 2.5.1.16, RBR20 before 2.5.1.16, RBS20 before 2.5.1.16, RBK50 before 2.5.1.16, RB…
- CVE-2021-45660HIGHCVSS 7.1EG 7.82021-12-26
Certain NETGEAR devices are affected by server-side injection. This affects RBK40 before 2.5.1.16, RBR40 before 2.5.1.16, RBS40 before 2.5.1.16, RBK20 before 2.5.1.16, RBR20 before 2.5.1.16, RBS20 before 2.5.1.16, RBK50 before 2.5.1.16, RB…
- CVE-2021-45661HIGHCVSS 7.1EG 7.82021-12-26
Certain NETGEAR devices are affected by server-side injection. This affects RBK40 before 2.5.1.16, RBR40 before 2.5.1.16, RBS40 before 2.5.1.16, RBK20 before 2.5.1.16, RBR20 before 2.5.1.16, RBS20 before 2.5.1.16, RBK50 before 2.5.1.16, RB…
Map vulnerabilities like CWE-74 to your infrastructure
EchelonGraph correlates every CVE — across CWE-74 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →