CWE-74— Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection)
The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.— MITRE CWE catalog
5,082 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-74page 16 of 102
- CVE-2021-45818MEDIUMCVSS 6.1EG 6.12021-12-30
SAFARI Montage 8.7.32 is affected by a CRLF injection vulnerability which can lead to HTTP response splitting.
- CVE-2021-46063CRITICALCVSS 9.1EG 9.12022-02-18
MCMS v5.2.5 was discovered to contain a Server Side Template Injection (SSTI) vulnerability via the Template Management module.
- CVE-2022-0391HIGHCVSS 7.5EG 7.52022-02-09
A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator (URL) strings into components. The issue involves how the urlparse method does not sanitize input and allows characte…
- CVE-2022-0581MEDIUMCVSS 6.3EG 7.52022-02-14
Crash in the CMS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file
- CVE-2022-0582MEDIUMCVSS 6.3EG 9.82022-02-14
Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file
- CVE-2022-1074MEDIUMCVSS 4.3EG 5.42022-03-29
A vulnerability has been found in TEM FLEX-1085 1.6.0 and classified as problematic. Using the input <h1>HTML Injection</h1> in the WiFi settings of the dashboard leads to html injection.
- CVE-2022-1287MEDIUMCVSS 6.5EG 9.82022-04-09
A vulnerability classified as critical was found in School Club Application System 1.0. This vulnerability affects a request to the file /scas/classes/Users.php?f=save_user. The manipulation with a POST request leads to privilege escalatio…
- CVE-2022-1509CRITICALCVSS 9.9EG 8.82022-04-28
Command Injection Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.12. An authenticated remote attacker with low privileges can execute arbitrary code under root context.
- CVE-2022-20001HIGHCVSS 7.8EG 7.82022-03-14
fish is a command line shell. fish version 3.1.0 through version 3.3.1 is vulnerable to arbitrary code execution. git repositories can contain per-repository configuration that change the behavior of git, including running arbitrary comman…
- CVE-2022-20693MEDIUMCVSS 4.7EG 7.22022-04-15
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. An attacker…
- CVE-2022-20718MEDIUMCVSS 5.5EG 7.22022-04-15
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying …
- CVE-2022-20719MEDIUMCVSS 5.5EG 7.22022-04-15
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying …
- CVE-2022-20772MEDIUMCVSS 4.7EG 5.32022-11-04
A vulnerability in Cisco Email Security Appliance (ESA) and Cisco Secure Email and Web Manager could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. This vulnerability is due to the failure of the…
- CVE-2022-21663MEDIUMCVSS 6.6EG 6.62022-01-06
WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. On a multisite, users with Super Admin role can bypass explicit/additional hardening under certain conditions through object i…
- CVE-2022-21705HIGHCVSS 7.2EG 7.22022-02-23
Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. In affected versions user input was not properly sanitized before rendering. An authenticated user with the permissions to create, modify and delete website pages…
- CVE-2022-22344MEDIUMCVSS 6.1EG 6.12022-03-14
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.14.3 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable s…
- CVE-2022-22360HIGHCVSS 8.8EG 8.82022-07-19
IBM Sterling Partner Engagement Manager 6.1.2, 6.2, and Cloud/SasS 22.2 could allow a remote authenticated attacker to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability and could …
- CVE-2022-22411MEDIUMCVSS 6.5EG 6.52022-08-10
IBM Spectrum Scale Data Access Services (DAS) 5.1.3.1 could allow an authenticated user to insert code which could allow the attacker to manipulate cluster resources due to excessive permissions. IBM X-Force ID: 223016.
- CVE-2022-22975MEDIUMCVSS 6.6EG 6.62022-05-11
An issue was discovered in the Pinniped Supervisor with either LADPIdentityProvider or ActiveDirectoryIdentityProvider resources. An attack would involve the malicious user changing the common name (CN) of their user entry on the LDAP or A…
- CVE-2022-23064HIGHCVSS 8.8EG 8.82022-05-02
In Snipe-IT, versions v3.0-alpha to v5.3.7 are vulnerable to Host Header Injection. By sending a specially crafted host header in the reset password request, it is possible to send password reset links to users which once clicked lead to a…
- CVE-2022-23068MEDIUMCVSS 5.4EG 5.42022-05-18
ToolJet versions v0.6.0 to v1.10.2 are vulnerable to HTML injection where an attacker can inject malicious code inside the first name and last name field while inviting a new user which will be reflected in the invitational e-mail.
- CVE-2022-23614HIGHCVSS 8.8EG 8.82022-02-04
Twig is an open source template language for PHP. When in a sandbox mode, the `arrow` parameter of the `sort` filter must be a closure to avoid attackers being able to run arbitrary PHP functions. In affected versions this constraint was n…
- CVE-2022-23616HIGHCVSS 8.8EG 8.82022-02-09
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions it's possible for an unprivileged user to perform a remote code execution by injecting a groovy script in her own…
- CVE-2022-23701MEDIUMCVSS 5.3EG 5.32022-02-24
A potential remote host header injection security vulnerability has been identified in HPE Integrated Lights-Out 4 (iLO 4) firmware version(s): Prior to 2.60. This vulnerability could be remotely exploited to allow an attacker to supply in…
- CVE-2022-23721LOWCVSS 3.8EG 3.82023-04-25
PingID integration for Windows login prior to 2.9 does not handle duplicate usernames, which can lead to a username collision when two people with the same username are provisioned onto the same machine at different times.
- CVE-2022-24039CRITICALCVSS 9.0EG 9.02022-05-10
A vulnerability has been identified in Desigo PXC4 (All versions < V02.20.142.10-10884), Desigo PXC5 (All versions < V02.20.142.10-10884). The “addCell” JavaScript function fails to properly sanitize user-controllable input before incl…
- CVE-2022-24300CRITICALCVSS 9.8EG 9.82022-02-02
Minetest before 5.4.0 allows attackers to add or modify arbitrary meta fields of the same item stack as saved user input, aka ItemStack meta injection.
- CVE-2022-24442CRITICALCVSS 9.8EG 9.82022-02-25
JetBrains YouTrack before 2021.4.40426 was vulnerable to SSTI (Server-Side Template Injection) via FreeMarker templates.
- CVE-2022-24760CRITICALCVSS 10.0EG 10.02022-03-12
Parse Server is an open source http web server backend. In versions prior to 4.10.7 there is a Remote Code Execution (RCE) vulnerability in Parse Server. This vulnerability affects Parse Server in the default configuration with MongoDB. Th…
- CVE-2022-24832HIGHCVSS 8.2EG 8.22022-04-11
GoCD is an open source a continuous delivery server. The bundled gocd-ldap-authentication-plugin included with the GoCD Server fails to correctly escape special characters when using the username to construct LDAP queries. While this does …
- CVE-2022-24838MEDIUMCVSS 5.3EG 5.32022-04-11
Nextcloud Calendar is a calendar application for the nextcloud framework. SMTP Command Injection in Appointment Emails via Newlines: as newlines and special characters are not sanitized in the email value in the JSON request, a malicious a…
- CVE-2022-24888MEDIUMCVSS 4.3EG 4.32022-04-27
Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. Prior to versions 20.0.14.4, 21.0.8, 22.2.4, and 23.0.1, it is possible to create files and folders that have leading and trailing \n, \r, \t,…
- CVE-2022-24989CRITICALCVSS 9.8EG 9.82023-08-20
TerraMaster NAS through 4.2.30 allows remote WAN attackers to execute arbitrary code as root via the raidtype and diskstring parameters for PHP Object Instantiation to the api.php?mobile/createRaid URI. (Shell metacharacters can be placed …
- CVE-2022-25167CRITICALCVSS 9.8EG 9.82022-06-14
Apache Flume versions 1.4.0 through 1.9.0 are vulnerable to a remote code execution (RCE) attack when a configuration uses a JMS Source with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. This issue is …
- CVE-2022-25337CRITICALCVSS 9.8EG 9.82022-02-18
Ibexa DXP ezsystems/ezpublish-kernel 7.5.x before 7.5.26 and 1.3.x before 1.3.12 allows injection attacks via image filenames.
- CVE-2022-25366HIGHCVSS 7.8EG 7.82022-02-19
Cryptomator through 1.6.5 allows DYLIB injection because, although it has the flag 0x1000 for Hardened Runtime, it has the com.apple.security.cs.disable-library-validation and com.apple.security.cs.allow-dyld-environment-variables entitlem…
- CVE-2022-25420CRITICALCVSS 9.8EG 9.82022-03-29
NTT Resonant Incorporated goo blog App Web Application 1.0 is vulnerable to CLRF injection. This vulnerability allows attackers to execute arbitrary code via a crafted HTTP request.
- CVE-2022-26134CRITICALCVSS 9.8EG 9.8⚠ KEV2022-06-03
In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions …
- CVE-2022-26205CRITICALCVSS 9.8EG 9.82022-03-27
Marky commit 3686565726c65756e was discovered to contain a remote code execution (RCE) vulnerability via the Display text fields. This vulnerability allows attackers to execute arbitrary code via injection of a crafted payload.
- CVE-2022-26654HIGHCVSS 7.5EG 7.52022-07-17
Pexip Infinity before 27.3 allows remote attackers to force a software abort via HTTP.
- CVE-2022-27336CRITICALCVSS 9.8EG 9.82022-04-27
Seacms v11.6 was discovered to contain a remote code execution (RCE) vulnerability via the component /admin/weixin.php.
- CVE-2022-27858HIGHCVSS 7.4EG 9.82022-11-08
CSV Injection vulnerability in Activity Log Team Activity Log <= 2.8.3 on WordPress.
- CVE-2022-27924HIGHCVSS 7.5EG 9.0⚠ KEV2022-04-21
Zimbra Collaboration (aka ZCS) 8.8.15 and 9.0 allows an unauthenticated attacker to inject arbitrary memcache commands into a targeted instance. These memcache commands becomes unescaped, causing an overwrite of arbitrary cached entries.
- CVE-2022-28345HIGHCVSS 7.5EG 7.52022-04-15
The Signal app before 5.34 for iOS allows URI spoofing via RTLO injection. It incorrectly renders RTLO encoded URLs beginning with a non-breaking space, when there is a hash character in the URL. This technique allows a remote unauthentica…
- CVE-2022-29166HIGHCVSS 8.0EG 8.02022-05-05
matrix-appservice-irc is a Node.js IRC bridge for Matrix. The vulnerability in node-irc allows an attacker to manipulate a Matrix user into executing IRC commands by having them reply to a maliciously crafted message. The vulnerability has…
- CVE-2022-29171MEDIUMCVSS 6.6EG 6.62022-05-06
Sourcegraph is a fast and featureful code search and navigation engine. Versions before 3.38.0 are vulnerable to Remote Code Execution in the gitserver service. The Gitolite code host integration with Phabricator allows Sourcegraph site ad…
- CVE-2022-29269MEDIUMCVSS 6.5EG 6.52022-06-29
In Nagios XI through 5.8.5, in the schedule report function, an authenticated attacker is able to inject HTML tags that lead to the reformatting/editing of emails from an official email address.
- CVE-2022-29631HIGHCVSS 7.5EG 7.52022-06-06
Jodd HTTP v6.0.9 was discovered to contain multiple CLRF injection vulnerabilities via the components jodd.http.HttpRequest#set and `jodd.http.HttpRequest#send. These vulnerabilities allow attackers to execute Server-Side Request Forgery (…
- CVE-2022-29816LOWCVSS 2.8EG 3.32022-04-28
In JetBrains IntelliJ IDEA before 2022.1 HTML injection into IDE messages was possible
- CVE-2022-2992CRITICALCVSS 9.9EG 9.02022-10-17
A vulnerability in GitLab CE/EE affecting all versions from 11.10 prior to 15.1.6, 15.2 to 15.2.4, 15.3 to 15.3.2 allows an authenticated user to achieve remote code execution via the Import from GitHub API endpoint.
Map vulnerabilities like CWE-74 to your infrastructure
EchelonGraph correlates every CVE — across CWE-74 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →