Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-74 (输出中的特殊元素转义处理不恰当(注入)) — Vulnerability Class 375

375 vulnerabilities classified as CWE-74 (输出中的特殊元素转义处理不恰当(注入)). AI Chinese analysis included.

CWE-74 represents a critical input validation weakness where software constructs commands, data structures, or records using externally influenced input without properly neutralizing special elements. This flaw allows attackers to inject malicious syntax that alters the intended interpretation of the downstream component, leading to severe consequences such as unauthorized command execution, data manipulation, or system compromise. Exploitation typically occurs when user-supplied data is directly concatenated into queries or system calls without sanitization. To prevent this, developers must implement rigorous input validation, ensuring all external data is strictly checked against expected formats. Furthermore, utilizing parameterized queries, safe APIs, and context-specific encoding techniques ensures that special characters are treated as literal data rather than executable instructions, effectively neutralizing potential injection vectors before they reach the downstream processor.

MITRE CWE Description
The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.
Common Consequences (5)
ConfidentialityRead Application Data
Many injection attacks involve the disclosure of important information -- in terms of both data sensitivity and usefulness in further exploitation.
Access ControlBypass Protection Mechanism
In some cases, injectable code controls authentication; this may lead to a remote vulnerability.
OtherAlter Execution Logic
Injection attacks are characterized by the ability to significantly change the flow of a given process, and in some cases, to the execution of arbitrary code.
Integrity, OtherOther
Data injection attacks lead to loss of data integrity in nearly all cases as the control-plane data injected is always incidental to data recall or writing.
Non-RepudiationHide Activities
Often the actions performed by injected control code are unlogged.
Mitigations (2)
RequirementsProgramming languages and supporting technologies might be chosen which are not subject to these issues.
ImplementationUtilize an appropriate mix of allowlist and denylist parsing to filter control-plane syntax from all input.
Examples (2)
This example code intends to take the name of a user and list the contents of that user's home directory. It is subject to the first variant of OS command injection.
$userName = $_POST["user"]; $command = 'ls -l /home/' . $userName; system($command);
Bad · PHP
;rm -rf /
Attack
The following code segment reads the name of the author of a weblog entry, author, from an HTTP request and sets it in a cookie header of an HTTP response.
String author = request.getParameter(AUTHOR_PARAM); ... Cookie cookie = new Cookie("author", author); cookie.setMaxAge(cookieExpiration); response.addCookie(cookie);
Bad · Java
HTTP/1.1 200 OK ... Set-Cookie: author=Jane Smith ...
Result
CVE IDTitleCVSSSeverityPublished
CVE-2026-26002 OnDemand susceptible to malicious input when navigating to a directory. — ondemand 8.0AIHighAI2026-03-04
CVE-2026-25750 LangSmith Studio has URL Parameter Injection Vulnerability that Enables Token Theft via Malicious baseUrl — helm 8.9AIHighAI2026-03-04
CVE-2026-27148 Storybook Dev Server Vulnerable to WebSocket Hijacking — storybook 8.1AIHighAI2026-02-25
CVE-2026-27727 mchange-commons-java: Remote Code Execution via JNDI Reference Resolution — mchange-commons-java 8.8AIHighAI2026-02-25
CVE-2025-67733 Valkey Affected by RESP Protocol Injection via Lua error_reply — valkey 8.5 High2026-02-23
CVE-2026-2954 Dromara UJCMS ImportDataController import-channel importChanel injection — UJCMS 6.3 Medium2026-02-22
CVE-2026-27194 D-Tale affected by Remote Code Execution through the /save-column-filter endpoint — dtale 9.8 -2026-02-21
CVE-2026-27022 RediSearch Query Injection in @langchain/langgraph-checkpoint-redis — langgraphjs 6.5 Medium2026-02-20
CVE-2026-24764 OpenClaw has Remote Code Execution via System Prompt Injection in Slack Channel Descriptions — clawdbot 3.7 Low2026-02-19
CVE-2026-2019 Cart All In One For WooCommerce <= 1.1.21 - Authenticated (Administrator+) Code Injection via 'sc_assign_page' Setting — Cart All In One For WooCommerce 7.2 High2026-02-18
CVE-2026-2469 ImapEngine 安全漏洞 — directorytree/imapengine 7.6 High2026-02-14
CVE-2026-25814 NoSQL Injection Risk via Unsanitized Query Parameters — assessment-placipy 7.1AIHighAI2026-02-09
CVE-2026-25586 SandboxJS has a Sandbox Escape via Prototype Whitelist Bypass and Host Prototype Pollution — SandboxJS 10.0 Critical2026-02-06
CVE-2026-25520 SandboxJS has a Sandbox Escape — SandboxJS 10.0 Critical2026-02-06
CVE-2026-24043 jsPDF Affected by Stored XMP Metadata Injection (Spoofing & Integrity Violation) — jsPDF 7.6AIHighAI2026-02-02
CVE-2025-41083 Improper Neutralization in Altitude Communication Server — Altitude Communication Server 6.1AIMediumAI2026-01-26
CVE-2026-24010 Horilla has HTML Injection Issue that, with Phishing, Leads to Account Takeover — horilla 8.0AIHighAI2026-01-22
CVE-2026-24002 pyodide sandbox option is insecure — grist-core 9.1 Critical2026-01-22
CVE-2026-0865 wsgiref.headers.Headers allows header newline injection — CPython 4.7AIMediumAI2026-01-20
CVE-2026-22200 osTicket (1.18.x < 1.18.3, 1.17.x < 1.17.7) PDF Export Arbitrary File Read — osTicket 6.5AIMediumAI2026-01-12
CVE-2025-67746 Composer vulnerable to ANSI sequence injection — composer 8.1 -2025-12-30
CVE-2025-14674 aizuda snail-job QLExpressEngine.java QLExpressEngine.doEval injection — snail-job 6.3 Medium2025-12-14
CVE-2024-56840 Siemens RUGGEDCOM ROX II 注入漏洞 — RUGGEDCOM ROX MX5000 7.2 High2025-12-09
CVE-2024-56839 Siemens RUGGEDCOM ROX II 注入漏洞 — RUGGEDCOM ROX MX5000 7.2 High2025-12-09
CVE-2024-56838 Siemens RUGGEDCOM ROX II 注入漏洞 — RUGGEDCOM ROX MX5000 7.2 High2025-12-09
CVE-2024-56835 Siemens RUGGEDCOM ROX II 注入漏洞 — RUGGEDCOM ROX MX5000 8.8 High2025-12-09
CVE-2025-66025 Caido Improperly Handles External Links in Markdown — caido 4.3 Medium2025-11-26
CVE-2025-64428 DataEase DB2 JNDI Vulnerability — dataease 9.1 -2025-11-20
CVE-2025-13268 Dromara dataCompare JDBC URL DbconfigServiceImpl.java DbConfig injection — dataCompare 6.3 Medium2025-11-17
CVE-2025-64741 Zoom Workplace for Android - Improper Authorization Handling — Zoom Workplace for Android 8.1 High2025-11-13

Vulnerabilities classified as CWE-74 (输出中的特殊元素转义处理不恰当(注入)) represent 375 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.