Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3267

3267 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-2427 Rockwell Automation - Denial-of-service and Input Validation Vulnerabilities in PowerFlex® 527 — PowerFlex® 527 7.5 High2024-03-25
CVE-2024-2426 Rockwell Automation - Denial-of-service and Input Validation Vulnerabilities in PowerFlex® 527 — PowerFlex® 527 7.5 High2024-03-25
CVE-2024-2425 Rockwell Automation - Denial-of-service and Input Validation Vulnerabilities in PowerFlex® 527 — PowerFlex® 527 7.5 High2024-03-25
CVE-2024-29042 Translate Cache Poisoning Vulnerability — translate 5.3 Medium2024-03-22
CVE-2024-2443 Improper input validation vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Management Console — GitHub Enterprise Server 9.1 Critical2024-03-20
CVE-2024-2469 Remote Code Execution in GitHub Enterprise Server Allowed Administrators to gain SSH access to the appliance — Enterprise Server 8.0 High2024-03-20
CVE-2023-45177 IBM MQ denial of service — MQ 5.3 Medium2024-03-20
CVE-2024-23634 GeoServer arbitrary file renaming vulnerability in REST Coverage/Data Store API — geoserver 6.0 Medium2024-03-20
CVE-2023-51444 GeoServer arbitrary file upload vulnerability in REST Coverage Store API — geoserver 7.2 High2024-03-20
CVE-2024-24683 Apache Hop Engine: ID isn't escaped when generating HTML — Apache Hop Engine 8.2AIHighAI2024-03-19
CVE-2024-25942 Dell PowerEdge Server BIOS 输入验证错误漏洞 — PowerEdge Platform 4.4 Medium2024-03-19
CVE-2024-28855 ZITADEL vulnerable to improper HTML sanitization — zitadel 8.1 High2024-03-18
CVE-2023-7248 OpenText Vertica Management console might be prone to bypass via crafted requests — Vertica Management Console 5.0 Medium2024-03-15
CVE-2024-20318 Cisco IOS XR 安全漏洞 — Cisco IOS XR Software 7.4 High2024-03-13
CVE-2024-20327 Cisco ASR 9000 安全漏洞 — Cisco IOS XR Software 7.4 High2024-03-13
CVE-2024-0161 Dell PowerEdge Server BIOS 和 Dell Precision Rack BIOS 输入验证错误漏洞 — PowerEdge Platform 7.2 High2024-03-13
CVE-2024-24549 Apache Tomcat: HTTP/2 header handling DoS — Apache Tomcat 7.5AIHighAI2024-03-13
CVE-2024-1854 Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates <= 4.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns 6.4 Medium2024-03-13
CVE-2024-27894 Apache Pulsar: Pulsar Functions Worker Allows Unauthorized File Access and Unauthorized HTTP/HTTPS Proxying — Apache Pulsar 8.5 High2024-03-12
CVE-2024-26181 Windows Kernel Denial of Service Vulnerability — Windows 10 Version 1809 5.5 Medium2024-03-12
CVE-2024-26173 Windows Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2024-03-12
CVE-2024-26170 Windows Composite Image File System (CimFS) Elevation of Privilege Vulnerability — Windows Server 2022 7.8 High2024-03-12
CVE-2024-21448 Microsoft Teams for Android Information Disclosure Vulnerability — Microsoft Teams for Android 5.0 Medium2024-03-12
CVE-2024-26164 Microsoft Django Backend for SQL Server Remote Code Execution Vulnerability — SQL Server backend for Django 8.8 High2024-03-12
CVE-2024-26197 Windows Standards-Based Storage Management Service Denial of Service Vulnerability — Windows Server 2019 6.5 Medium2024-03-12
CVE-2024-26002 PHOENIX CONTACT: File ownership manipulation in CHARX Series — CHARX SEC-3000 7.8 High2024-03-12
CVE-2024-25999 PHOENIX CONTACT: Privilege escalation in the OCPP agent service — CHARX SEC-3000 8.4 High2024-03-12
CVE-2024-25997 PHOENIX CONTACT: Log injection in CHARX Series — CHARX SEC-3000 5.3 Medium2024-03-12
CVE-2024-25995 PHOENIX CONTACT: Remote code execution in CHARX Series — CHARX SEC-3000 9.8 Critical2024-03-12
CVE-2024-2339 Improper Input Validation in PostgreSQL Anonymizer 1.2 allows table owner to gain superuser privileges via masking rule — PostgreSQL Anonymizer 8.0 High2024-03-08

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3267 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.