Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3268

3268 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-4435 Improper Input Validation in hamza417/inure — hamza417/inure 9.8 -2023-08-20
CVE-2023-40165 Unauthorized gem replacement for full names ending in numbers on rubygems.org — rubygems.org 7.4 High2023-08-17
CVE-2023-2917 Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerability — ThinManager ThinServer 9.8 Critical2023-08-17
CVE-2023-2915 Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerability — ThinManager ThinServer 7.5 High2023-08-17
CVE-2023-2914 Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerabilitiy — ThinManager ThinServer 7.5 High2023-08-17
CVE-2023-40272 Apache Airflow Spark Provider Arbitrary File Read via JDBC — Apache Airflow Spark Provider 7.5 -2023-08-17
CVE-2023-20232 Cisco Unified Contact Center Express 输入验证错误漏洞 — Cisco Unified Contact Center Express 5.3 Medium2023-08-16
CVE-2023-40034 Repositoty takeover in woodpecker-ci — woodpecker 8.1 High2023-08-16
CVE-2023-38737 IBM WebSphere Application Server Liberty denial of service — WebSphere Application Server Liberty 5.9 Medium2023-08-16
CVE-2023-4241 lol-html panics on certain HTML inputs — lol-html 7.5 High2023-08-16
CVE-2023-39950 Insufficient input validation in efibootguard — efibootguard 6.1 Medium2023-08-14
CVE-2023-39404 Huawei HarmonyOS 输入验证错误漏洞 — HarmonyOS 7.5 -2023-08-13
CVE-2023-39390 Huawei HarmonyOS 输入验证错误漏洞 — HarmonyOS 7.5 -2023-08-13
CVE-2023-39382 Huawei HarmonyOS 输入验证错误漏洞 — HarmonyOS 7.5 -2023-08-13
CVE-2023-39381 Huawei HarmonyOS 输入验证错误漏洞 — HarmonyOS 7.5 -2023-08-13
CVE-2023-39405 Huawei HarmonyOS 缓冲区错误漏洞 — HarmonyOS 9.8 -2023-08-13
CVE-2023-39553 Apache Airflow Drill Provider Arbitrary File Read Vulnerability — Apache Airflow Drill Provider 7.5 -2023-08-11
CVE-2022-47185 Apache Traffic Server: Invalid Range header causes a crash — Apache Traffic Server 8.2 -2023-08-09
CVE-2023-36899 ASP.NET Elevation of Privilege Vulnerability — Microsoft .NET Framework 4.8 8.8 High2023-08-08
CVE-2023-36873 .NET Framework Spoofing Vulnerability — Microsoft .NET Framework 4.8 7.4 High2023-08-08
CVE-2023-36897 Visual Studio Tools for Office Runtime Spoofing Vulnerability — Microsoft Office 2019 8.1 High2023-08-08
CVE-2023-36893 Microsoft Outlook Spoofing Vulnerability — Microsoft Office 2019 6.5 Medium2023-08-08
CVE-2023-38254 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability — Windows 10 Version 1809 6.5 Medium2023-08-08
CVE-2023-35377 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability — Windows 10 Version 1809 6.5 Medium2023-08-08
CVE-2023-35376 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability — Windows 10 Version 1809 6.5 Medium2023-08-08
CVE-2023-36912 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2023-08-08
CVE-2023-35368 Microsoft Exchange Remote Code Execution Vulnerability — Microsoft Exchange Server 2019 Cumulative Update 13 8.8 High2023-08-08
CVE-2023-3894 DOS in jackson-dataformats-text — jackson-dataformats-text 5.8 Medium2023-08-08
CVE-2023-39532 SES's dynamic import and spread operator provides possible path to arbitrary exfiltration and execution — endo 9.8 Critical2023-08-08
CVE-2023-21647 Improper Input Validation in Bluetooth HOST — Snapdragon 6.5 Medium2023-08-08

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3268 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.