Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3268

3268 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-30631 Apache Traffic Server: Configuration option to block the PUSH method in ATS didn't work — Apache Traffic Server 7.5 -2023-06-14
CVE-2023-24937 Windows CryptoAPI Denial of Service Vulnerability — Windows 10 Version 1809 6.5 Medium2023-06-14
CVE-2023-32032 .NET and Visual Studio Elevation of Privilege Vulnerability — .NET 7.0 6.5 Medium2023-06-13
CVE-2023-32015 Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability — Windows 10 Version 1809 9.8 Critical2023-06-13
CVE-2023-29371 Windows GDI Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2023-06-13
CVE-2023-29359 GDI Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2023-06-13
CVE-2023-29353 Sysinternals Process Monitor for Windows Denial of Service Vulnerability — Windows Sysinternals Process Monitor 5.5 Medium2023-06-13
CVE-2023-1888 Directorist <= 7.5.4 - Authenticated (Subscriber+) Arbitrary User Password Reset to Privilege Escalation — Directorist: AI-Powered Business Directory, Listings & Classified Ads 8.8 High2023-06-09
CVE-2023-2454 PostgreSQL 安全漏洞 — postgresql 6.7 -2023-06-09
CVE-2023-2455 PostgreSQL 安全漏洞 — postgresql 9.1 -2023-06-09
CVE-2023-34239 Unfiltered paths in gradio — gradio 7.3 High2023-06-07
CVE-2023-34111 Command Injection Vulnerability in `Release PR Merged` Workflow in taosdata/grafanaplugin — grafanaplugin 8.1 High2023-06-06
CVE-2023-21657 Improper Input Validation in Audio — Snapdragon 7.8 High2023-06-06
CVE-2023-21656 Improper Input Validation in WLAN HOST — Snapdragon 7.8 High2023-06-06
CVE-2023-2961 AdvanceCOMP 安全漏洞 — advancecomp 7.5 -2023-06-06
CVE-2023-34102 Possible unsafe reflection / partial denial of service in avo — avo 8.3 High2023-06-05
CVE-2023-32690 Responder can Invoke Undefined Behavior in libspdm Requester — libspdm 5.7 Medium2023-06-01
CVE-2022-4332 Sprecher: Vulnerable firmware verification — SPRECON-E-C/P/T3 CPU PU244x 6.8 Medium2023-06-01
CVE-2023-33964 mx-chain-go does not treat invalid transaction with wrong username correctly — mx-chain-go 8.6 High2023-05-31
CVE-2023-33182 Nextcloud Contacts photos only sanitized if mime type is all lower case — security-advisories--2023-05-30
CVE-2023-0779 net: shell: Improper input validation — zephyr 6.7 Medium2023-05-30
CVE-2023-34152 ImageMagick 操作系统命令注入漏洞 — ImageMagick 8.8 -2023-05-30
CVE-2023-2808 Lack of URL normalization allows rendering previews for disallowed domains — Mattermost 4.3 Medium2023-05-29
CVE-2023-32695 Insufficient validation when decoding a Socket.IO packet — socket.io-parser 7.3 High2023-05-27
CVE-2023-32688 Invalid push request payload crashes Parse Server — parse-server-push-adapter 4.9 Medium2023-05-27
CVE-2023-2942 Improper Input Validation in openemr/openemr — openemr/openemr 9.1 -2023-05-27
CVE-2023-32321 CKAN remote code execution and private information access via crafted resource ids — ckan 9.8 Critical2023-05-26
CVE-2023-32323 Synapse Outgoing federation to specific hosts can be disabled by sending malicious invites — synapse 5.0 Medium2023-05-26
CVE-2023-21514 SAMSUNG Mobile devices 输入验证错误漏洞 — Galaxy Store 7.5 High2023-05-26
CVE-2023-21515 SAMSUNG Mobile devices 安全漏洞 — Galaxy Store 7.5 High2023-05-26

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3268 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.