CWE-74— Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection)
4,605 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-74page 1 of 93
- CVE-2004-1157NONECVSS 0.0EG 0.02005-01-10
Opera 7.x up to 7.54, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using …
- CVE-2004-2570NONECVSS 0.0EG 0.02004-12-31
Opera before 7.54 allows remote attackers to modify properties and methods of the location object and execute Javascript to read arbitrary files from the client's local filesystem or display a false URL to the user.
- CVE-2005-3007NONECVSS 0.0EG 0.02005-09-21
Opera before 8.50 allows remote attackers to spoof the content type of files via a filename with a trailing "." (dot), which might allow remote attackers to trick users into processing dangerous content.
- CVE-2005-3056CRITICALCVSS 9.8EG 9.82019-11-01
TWiki allows arbitrary shell command execution via the Include function
- CVE-2005-3750NONECVSS 0.0EG 0.02005-11-22
Opera before 8.51 on Linux and Unix systems allows remote attackers to execute arbitrary code via shell metacharacters (backticks) in a URL that another product provides in a command line argument when launching Opera.
- CVE-2008-0456NONECVSS 0.0EG 0.02008-01-25
CRLF injection vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated user…
- CVE-2009-1781NONECVSS 0.0EG 0.02009-05-22
Static code injection vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to inject arbitrary PHP code into phpre_config.php via the form_aula parameter.
- CVE-2010-3668HIGHCVSS 7.5EG 7.52019-11-04
TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows Header Injection in the secure download feature jumpurl.
- CVE-2010-4654HIGHCVSS 7.8EG 7.82019-11-13
poppler before 0.16.3 has malformed commands that may cause corruption of the internal stack.
- CVE-2010-4658MEDIUMCVSS 5.3EG 5.32020-02-07
statusnet through 2010 allows attackers to spoof syslog messages via newline injection attacks.
- CVE-2011-2538HIGHCVSS 7.2EG 7.22019-10-29
Cisco Video Communications Server (VCS) before X7.0.3 contains a command injection vulnerability which allows remote, authenticated attackers to execute arbitrary commands.
- CVE-2011-2717CRITICALCVSS 9.8EG 9.82019-11-27
The DHCPv6 client (dhcp6c) as used in the dhcpv6 project through 2011-07-25 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message.
- CVE-2011-2805NONECVSS 0.0EG 0.02011-08-03
Google Chrome before 13.0.782.107 allows remote attackers to bypass the Same Origin Policy and conduct script injection attacks via unspecified vectors.
- CVE-2011-2855NONECVSS 0.0EG 0.02011-09-19
Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to …
- CVE-2011-3624MEDIUMCVSS 5.3EG 5.32019-11-26
Various methods in WEBrick::HTTPRequest in Ruby 1.9.2 and 1.8.7 and earlier do not validate the X-Forwarded-For, X-Forwarded-Host and X-Forwarded-Server headers in requests, which might allow remote attackers to inject arbitrary text into …
- CVE-2011-4558HIGHCVSS 7.2EG 7.22020-01-27
Tiki 8.2 and earlier allows remote administrators to execute arbitrary PHP code via crafted input to the regexres and regex parameters.
- CVE-2012-0070HIGHCVSS 7.5EG 7.52020-01-15
spamdyke prior to 4.2.1: STARTTLS reveals plaintext
- CVE-2012-1495CRITICALCVSS 9.8EG 9.82020-01-27
install/index.php in WebCalendar before 1.2.5 allows remote attackers to execute arbitrary code via the form_single_user_login parameter.
- CVE-2012-1496HIGHCVSS 8.8EG 8.82020-01-27
Local file inclusion in WebCalendar before 1.2.5.
- CVE-2012-2931HIGHCVSS 7.2EG 7.22020-01-09
PHP code injection in TinyWebGallery before 1.8.8 allows remote authenticated users with admin privileges to inject arbitrary code into the .htusers.php file.
- CVE-2012-4196NONECVSS 0.0EG 0.02012-10-29
Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 allow remote attackers to bypass the Same Origin Policy and read the Location objec…
- CVE-2013-1437CRITICALCVSS 9.8EG 9.82020-01-28
Eval injection vulnerability in the Module-Metadata module before 1.000015 for Perl allows remote attackers to execute arbitrary Perl code via the $Version value.
- CVE-2013-2010CRITICALCVSS 9.8EG 9.82020-02-12
WordPress W3 Total Cache Plugin 0.9.2.8 has a Remote PHP Code Execution Vulnerability
- CVE-2013-2095CRITICALCVSS 9.8EG 9.82019-12-10
rubygem-openshift-origin-controller: API can be used to create applications via cartridge_cache.rb URI.prase() to perform command injection
- CVE-2013-2678HIGHCVSS 8.1EG 8.12020-02-04
Cisco Linksys E4200 1.0.05 Build 7 routers contain a Local File Include Vulnerability which could allow remote attackers to obtain sensitive information or execute arbitrary code by sending a crafted URL request to the apply.cgi script usi…
- CVE-2013-3212HIGHCVSS 8.1EG 8.12020-01-28
vtiger CRM 5.4.0 and earlier contain local file-include vulnerabilities in 'customerportal.php' which allows remote attackers to view files and execute local script code.
- CVE-2013-3214CRITICALCVSS 9.8EG 9.82020-01-28
vtiger CRM 5.4.0 and earlier contain a PHP Code Injection Vulnerability in 'vtigerolservice.php'.
- CVE-2013-3628HIGHCVSS 8.8EG 9.02020-02-07
Zabbix 2.0.9 has an Arbitrary Command Execution Vulnerability
- CVE-2013-4144CRITICALCVSS 9.8EG 9.82022-06-30
There is an object injection vulnerability in swfupload plugin for wordpress.
- CVE-2013-4318MEDIUMCVSS 5.4EG 5.42019-12-26
File injection vulnerability in Ruby gem Features 0.3.0 allows remote attackers to inject malicious html in the /tmp directory.
- CVE-2013-4486CRITICALCVSS 9.8EG 9.82019-12-03
Zanata 3.0.0 through 3.1.2 has RCE due to EL interpolation in logging
- CVE-2013-6435NONECVSS 0.0EG 0.02014-12-16
Race condition in RPM 4.11.1 and earlier allows remote attackers to execute arbitrary code via a crafted RPM file whose installation extracts the contents to temporary files before validating the signature, as demonstrated by installing a …
- CVE-2013-6501NONECVSS 0.0EG 0.02015-03-30
The default soap.wsdl_cache_dir setting in (1) php.ini-production and (2) php.ini-development in PHP through 5.6.7 specifies the /tmp directory, which makes it easier for local users to conduct WSDL injection attacks by creating a file und…
- CVE-2013-7070CRITICALCVSS 9.8EG 9.82019-12-31
The handle_request function in lib/HTTPServer.pm in Monitorix before 3.3.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the URI.
- CVE-2013-7324MEDIUMCVSS 5.3EG 5.32020-02-17
Webkit-GTK 2.x (any version with HTML5 audio/video support based on GStreamer) allows remote attackers to trigger unexpectedly high sound volume via malicious javascript. NOTE: this WebKit-GTK behavior complies with existing W3C standards …
- CVE-2013-7378CRITICALCVSS 9.8EG 9.82020-02-12
scripts/email.coffee in the Hubot Scripts module before 2.4.4 for Node.js allows remote attackers to execute arbitrary commands.
- CVE-2013-7380CRITICALCVSS 9.8EG 9.82020-01-10
The Etherpad Lite ep_imageconvert Plugin has a Remote Command Injection Vulnerability
- CVE-2013-7381CRITICALCVSS 9.8EG 9.82020-02-12
libnotify before 1.0.4 for Node.js allows remote attackers to execute arbitrary commands via unspecified characters in a call to libnotify.notify.
- CVE-2013-7487CRITICALCVSS 9.8EG 9.82020-03-21
On Swann DVR04B, DVR08B, DVR-16CIF, and DVR16B devices, raysharpdvr application has a vulnerable call to “system”, which allows remote attackers to execute arbitrary code via TCP port 9000.
- CVE-2014-10386MEDIUMCVSS 6.1EG 6.12019-08-22
The wp-live-chat-support plugin before 4.1.0 for WordPress has JavaScript injections.
- CVE-2014-10391MEDIUMCVSS 6.1EG 6.12019-08-22
The wp-support-plus-responsive-ticket-system plugin before 4.1 for WordPress has JavaScript injection.
- CVE-2014-10394MEDIUMCVSS 6.1EG 6.12019-08-22
The rich-counter plugin before 1.2.0 for WordPress has JavaScript injection via a User-Agent header.
- CVE-2014-2294CRITICALCVSS 9.8EG 9.82018-04-17
Open Web Analytics (OWA) before 1.5.7 allows remote attackers to conduct PHP object injection attacks via a crafted serialized object in the owa_event parameter to queue.php.
- CVE-2014-3700CRITICALCVSS 9.8EG 9.82019-11-21
eDeploy through at least 2014-10-14 has remote code execution due to eval() of untrusted data
- CVE-2014-4172CRITICALCVSS 9.8EG 9.82020-01-24
A URL parameter injection vulnerability was found in the back-channel ticket validation step of the CAS protocol in Jasig Java CAS Client before 3.3.2, .NET CAS Client before 1.0.2, and phpCAS before 1.3.3 that allow remote attackers to in…
- CVE-2014-4678CRITICALCVSS 9.8EG 9.82020-02-20
The safe_eval function in Ansible before 1.6.4 does not properly restrict the code subset, which allows remote attackers to execute arbitrary code via crafted instructions. NOTE: this vulnerability exists because of an incomplete fix for C…
- CVE-2014-4966CRITICALCVSS 9.8EG 9.82020-02-18
Ansible before 1.6.7 does not prevent inventory data with "{{" and "lookup" substrings, and does not prevent remote data with "{{" substrings, which allows remote attackers to execute arbitrary code via (1) crafted lookup('pipe') calls or …
- CVE-2014-4967CRITICALCVSS 9.8EG 9.82020-02-18
Multiple argument injection vulnerabilities in Ansible before 1.6.7 allow remote attackers to execute arbitrary code by leveraging access to an Ansible managed host and providing a crafted fact, as demonstrated by a fact with (1) a trailin…
- CVE-2014-4982CRITICALCVSS 9.8EG 9.82020-01-10
LPAR2RRD ≤ 4.53 and ≤ 3.5 has arbitrary command injection on the application server.
- CVE-2014-5083HIGHCVSS 8.8EG 8.82020-02-10
A Command Execution vulnerability exists in Sphider before 1.3.6 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5083 pertains to instances of fwrite in Sphid…
Map vulnerabilities like CWE-74 to your infrastructure
EchelonGraph correlates every CVE — across CWE-74 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →