Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3267

3267 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-49844 Improper Input Validation in Automotive — Snapdragon 7.8 High2025-05-06
CVE-2024-45579 Improper Input Validation in Camera Driver — Snapdragon 7.8 High2025-05-06
CVE-2024-45577 Improper Input Validation in Camera Driver — Snapdragon 7.8 High2025-05-06
CVE-2025-46340 Misskey CSS Style Injection Vulnerability In `MkUrlPreview` — misskey 7.2 High2025-05-05
CVE-2024-13943 Tesla Model S Iris Modem QCMAP_ConnectionManager Improper Input Validation Sandbox Escape Vulnerability — Model S 8.8AIHighAI2025-04-30
CVE-2025-30391 Microsoft Dynamics Information Disclosure Vulnerability — Dynamics 365 Customer Service 8.1 High2025-04-30
CVE-2025-22235 Spring Boot EndpointRequest.to() creates wrong matcher if actuator endpoint is not exposed — Spring Boot 7.3 High2025-04-28
CVE-2025-46574 ZTE GoldenDB Database product has an input validation vulnerability — GoldenDB 4.1 Medium2025-04-27
CVE-2025-26413 Apache Kvrocks: The server was crashed by the negative offset — Apache Kvrocks 7.5 -2025-04-22
CVE-2025-3837 Improper Input Validation vulnerability in the End of Life (EOL) OVA based connect component — OVA based Connect 9.8 -2025-04-21
CVE-2025-26477 Dell ECS 输入验证错误漏洞 — ECS 4.3 Medium2025-04-17
CVE-2025-32077 XSSes in Extension:SimpleCalendar — Mediawiki - Extension:SimpleCalendar 6.1AIMediumAI2025-04-11
CVE-2025-32079 Saving the right content to MediaWiki:GrowthMentors.json can take down the site — Mediawiki - GrowthExperiments 7.5AIHighAI2025-04-11
CVE-2025-32076 Evil regex used to process user-provided data in VisualData — Mediawiki - Visual Data Extension 7.5AIHighAI2025-04-11
CVE-2025-32073 System message XSS in HTMLTags — Mediawiki - HTML Tags 6.1AIMediumAI2025-04-11
CVE-2025-32075 IP and user agent leaks in Extension:Tabs — Mediawiki - Tabs Extension 9.8AICriticalAI2025-04-11
CVE-2025-32067 i18n XSS vulnerability in message growthexperiments — Mediawiki - Growth Experiments Extension 6.1AIMediumAI2025-04-11
CVE-2025-32069 Wikitext stored XSS on filepages due to dangerous WBMI serialization — Mediawiki - Wikibase Media Info Extension 6.1AIMediumAI2025-04-11
CVE-2025-32070 XSSes in AJAXPoll — Mediawiki - AJAX Poll Extension 6.1AIMediumAI2025-04-11
CVE-2025-32071 Wikibase CommonsInlineImageFormatter: i18n XSS — Mediawiki - Wikidata Extension 6.1AIMediumAI2025-04-11
CVE-2023-43037 IBM Maximo Application Suite improper access control — Maximo Application Suite 6.5 Medium2025-04-10
CVE-2025-30649 Junos OS: MX240, MX480, MX960 with SPC3: An attacker sending specific packets will cause a CPU utilization DoS. — Junos OS 7.5 High2025-04-09
CVE-2025-30648 Junos OS and Junos OS Evolved: Receipt of a specifically malformed DHCP packet causes jdhcpd process to crash — Junos OS 7.4 High2025-04-09
CVE-2025-31672 Apache POI: parsing OOXML based files (xlsx, docx, etc.), poi-ooxml could read unexpected data if underlying zip has duplicate zip entry names — Apache POI 7.5 -2025-04-09
CVE-2025-2223 Schneider Electric ConneXium Network Manager 输入验证错误漏洞 — ConneXium Network Manager 7.8 High2025-04-09
CVE-2025-30293 ColdFusion | Improper Input Validation (CWE-20) — ColdFusion 6.8 Medium2025-04-08
CVE-2025-30294 ColdFusion | Improper Input Validation (CWE-20) — ColdFusion 6.8 Medium2025-04-08
CVE-2025-24446 ColdFusion | Improper Input Validation (CWE-20) — ColdFusion 9.1 Critical2025-04-08
CVE-2025-24062 Microsoft DWM Core Library Elevation of Privilege Vulnerability — Windows 10 Version 21H2 7.8 High2025-04-08
CVE-2025-24060 Microsoft DWM Core Library Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2025-04-08

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3267 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.