Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3267

3267 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-39509 Bosch IP cameras 安全漏洞 — Camera Firmware 7.2 High2023-12-18
CVE-2023-32728 Code injection in zabbix_agent2 smart.disk.get caused by smartctl plugin — Zabbix 4.6 Medium2023-12-18
CVE-2023-32727 Code execution vulnerability in icmpping — Zabbix 6.8 Medium2023-12-18
CVE-2023-46116 Remote Code Execution via insufficiently sanitized call to shell.openExternal — tutanota 9.3 Critical2023-12-15
CVE-2023-33217 Missing integrity check on upgrade package — SIGMA Lite & Lite + 4.9 Medium2023-12-15
CVE-2023-48608 Adobe Experience Manager | Improper Input Validation (CWE-20) — Adobe Experience Manager 3.5 Low2023-12-15
CVE-2023-6835 WSO2 API Manager 安全漏洞 — WSO2 API Manager 4.3 Medium2023-12-15
CVE-2023-48631 Denial of Service of regular expression in package @adobe/css-tools — Not a product 5.3 Medium2023-12-14
CVE-2023-25651 SQL Injection Vulnerability in Some ZTE Mobile Internet Products — Mobile Internet Products 4.3 Medium2023-12-14
CVE-2023-25650 Arbitrary File Download Vulnerability in ZTE ZXCLOUD iRAI — ZXCLOUD iRAI 6.5 Medium2023-12-14
CVE-2023-50709 Denial of service attack on the cube-api endpoint — cube 6.5 Medium2023-12-13
CVE-2023-50262 Dompdf possible DoS caused by infinite recursion when parsing SVG images — dompdf 5.3 Medium2023-12-13
CVE-2023-48634 ZDI-CAN-22175: Adobe After Effects AEP File Parsing Memory Corruption Remote Code Execution Vulnerability — After Effects 7.8 High2023-12-13
CVE-2023-6381 Improper input validation in Newsletter Software SuperMailer — Newsletter Software 3.3 Low2023-12-13
CVE-2023-35619 Microsoft Outlook for Mac Spoofing Vulnerability — Microsoft Office LTSC for Mac 2021 5.3 Medium2023-12-12
CVE-2023-46285 Siemens Opcenter Quality 输入验证错误漏洞 — Opcenter Execution Foundation 7.5 High2023-12-12
CVE-2023-49796 MindsDB Arbitrary File Write vulnerability — mindsdb 5.3 Medium2023-12-11
CVE-2023-48311 Any image allowed by default — dockerspawner 8.0 High2023-12-08
CVE-2023-5058 Phoenix SecureCore 输入验证错误漏洞 — SecureCore™ Technology™ 4 8.4 -2023-12-07
CVE-2023-39538 Failure when uploading a Logo image file — AptioV 7.5 High2023-12-06
CVE-2023-39539 Failure when uploading a Logo image file — AptioV 7.5 High2023-12-06
CVE-2023-49248 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.5AIMediumAI2023-12-06
CVE-2023-41268 Possible stack overflow due to insufficient input validation — Escargot 5.3 Medium2023-12-06
CVE-2023-40053 HTML injection Vulnerability in Serv-U 15.4 — Serv-U 5.0 Medium2023-12-06
CVE-2023-5188 WAGO Improper Input Validation in IEC61850 Server / Telecontrol — Telecontrol Configurator 7.5 High2023-12-05
CVE-2023-33042 Improper Input Validation in Modem — Snapdragon 7.5 High2023-12-05
CVE-2023-48693 Azure RTOS ThreadX Remote Code Execution Vulnerability — threadx 8.7 High2023-12-05
CVE-2023-49291 Improper Sanitization of Branch Name Leads to Arbitrary Code Injection — branch-names 9.3 Critical2023-12-04
CVE-2023-47106 Incorrect processing of fragment in the URL leads to Authorization Bypass in Traefik — traefik 4.8 Medium2023-12-04
CVE-2023-29258 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2023-12-04

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3267 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.