Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3267

3267 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-6709 Pre-Authentication Denial of Service Vulnerability in MongoDB Server's OIDC Authentication — MongoDB Server 7.5 High2025-06-26
CVE-2025-6703 transport/fc.rs: panic attempting to send MAX_DATA with value larger max varint — neqo 7.5 -2025-06-26
CVE-2025-6444 ServiceStack GetErrorResponse Improper Input Validation NTLM Relay Vulnerability — ServiceStack 7.5AIHighAI2025-06-25
CVE-2025-52894 OpenBao Vulnerable to Unauthenticated Rekey Operation Cancellation — openbao 7.5AIHighAI2025-06-25
CVE-2025-52569 GitHub.jl lacks validation for user-provided fields — GitHub.jl 8.1AIHighAI2025-06-25
CVE-2025-50178 GitForge.jl lacks validation for user provided fields — GitForge.jl 8.1AIHighAI2025-06-25
CVE-2025-52568 NeKernal Multiple Memory Corruption Vulnerabilities in mkfs.hefs — nekernel 9.8AICriticalAI2025-06-24
CVE-2025-6547 On Node.js < 3, pbkdf2 silently disregards Uint8Array input, returning static keys 7.5 -2025-06-23
CVE-2025-6545 pbkdf2 silently returns predictable uninitialized/zero-filled memory for non-normalized or unimplemented algos supported by Node.js 7.5 -2025-06-23
CVE-2025-4563 Nodes can bypass dynamic resource allocation authorization checks — Kubernetes 2.7 Low2025-06-23
CVE-2025-6240 Profisee Path Traversal Vulnerability — Profisee 8.1AIHighAI2025-06-18
CVE-2025-1088 Very long unicode dashboard title or panel name can hang the frontend — Grafana 2.7 Low2025-06-18
CVE-2025-4613 Client side RCE in Google Web Designer App — Web Designer App 8.8AIHighAI2025-06-12
CVE-2025-47096 Adobe Experience Manager | Improper Input Validation (CWE-20) — Adobe Experience Manager 3.5 Low2025-06-10
CVE-2025-0052 FlashBlade DOS Vulnerability — FlashBlade 7.5AIHighAI2025-06-10
CVE-2025-0051 FlashArray DOS Vulnerability — FlashArray 7.5AIHighAI2025-06-10
CVE-2025-47968 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability — Microsoft AutoUpdate for Mac 7.8 High2025-06-10
CVE-2025-47171 Microsoft Outlook Remote Code Execution Vulnerability — Microsoft 365 Apps for Enterprise 6.7 Medium2025-06-10
CVE-2025-4680 upKeeper Instant Privilege Access 安全漏洞 — upKeeper Instant Privilege Access 9.1AICriticalAI2025-06-10
CVE-2025-3116 Schneider Electric Modicon Controllers 输入验证错误漏洞 — Modicon Controllers M241/M251 6.5 Medium2025-06-10
CVE-2025-3898 Schneider Electric Modicon Controllers 输入验证错误漏洞 — Modicon Controllers M241/M251 6.5 Medium2025-06-10
CVE-2025-1041 Avaya Call Management System RCE vulnerability — Avaya Call Management System 9.9 Critical2025-06-10
CVE-2025-0037 AMD Versal Adaptive SoC 输入验证错误漏洞 — Platform Loader and Manager (PLM) 6.6 Medium2025-06-09
CVE-2025-27242 Ssecurity_component_manager has an improper input vulnerability — OpenHarmony 3.3 Low2025-06-08
CVE-2025-27131 kernel_liteos_m has an improper input vulnerability — OpenHarmony 6.1 Medium2025-06-08
CVE-2025-1701 Local Privilege Escalation in MIM Admin Service — MIM Admin Service 7.5AIHighAI2025-06-04
CVE-2025-5455 Possible denial of service when passing malformed data in a URL to qDecodeDataUrl — Qt 6.5 -2025-06-02
CVE-2025-48944 vLLM Tool Schema allows DoS via Malformed pattern and type Fields — vllm 6.5 Medium2025-05-30
CVE-2025-4635 Remote Code Execution — Airpointer 6.6 Medium2025-05-30
CVE-2025-48490 Laravel Rest Api has a Search Validation Bypass — laravel-rest-api 9.1AICriticalAI2025-05-30

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3267 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.