Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3268

3268 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-21516 SAMSUNG Mobile devices 跨站脚本漏洞 — Galaxy Store 7.5 High2023-05-26
CVE-2023-2868 Remote Code injection in Barracuda Email Security Gateway — Barracuda Email Security Gateway 9.4 Critical2023-05-24
CVE-2021-25748 Ingress-nginx `path` sanitization can be bypassed with newline character — Kubernetes ingress-nginx 7.6 High2023-05-24
CVE-2023-30440 IBM PowerVM Hypervisor denial of service — PowerVM Hypervisor 6.7 Medium2023-05-23
CVE-2022-47392 CODESYS: Multiple products prone to Improper Input Validation — CODESYS Control RTE (SL) 6.5 Medium2023-05-15
CVE-2022-47391 CODESYS: Multiple products prone to Improper Input Validation — CODESYS Control RTE (SL) 7.5 High2023-05-15
CVE-2022-47378 CODESYS: Multiple products prone to Improper Input Validation — CODESYS Control RTE (SL) 6.5 Medium2023-05-15
CVE-2022-22508 CODESYS V3: Improper Input Validation — CODESYS Control RTE (SL) 4.3 Medium2023-05-15
CVE-2022-47937 Multiple parsing problems in the Apache Sling Commons JSON module — org.apache.sling.commons.json 9.1 -2023-05-15
CVE-2023-32305 aiven-extras PostgreSQL Privilege Escalation Through Overloaded Search Path — aiven-extras 8.8 High2023-05-12
CVE-2023-25927 IBM Security Verify Access denial of service — Security Verify Access 6.5 Medium2023-05-12
CVE-2023-29246 Apache OpenMeetings: allows null-byte Injection — Apache OpenMeetings 7.2 -2023-05-12
CVE-2023-29195 Vitess VTAdmin users that can create shards can deny access to other functions — vitess 4.1 Medium2023-05-11
CVE-2023-29026 Rockwell Automation ArmorStart ST Vulnerable to Cross-Site Scripting Attack — ArmorStart ST 4.7 Medium2023-05-11
CVE-2023-32075 Pimcore vulnerable to Business Logic Errors in Customer automation rules — customer-data-framework 4.3 Medium2023-05-11
CVE-2023-31162 Improper Input Validation in Web Interface — SEL-3505 4.8 Medium2023-05-10
CVE-2023-31161 Improper Input Validation in Web Interface — SEL-3532 5.9 Medium2023-05-10
CVE-2023-31149 Improper Input Validation in Web Interface — SEL-3505 9.1 Critical2023-05-10
CVE-2023-31148 Improper Input Validation in Web Interface — SEL-3505 9.1 Critical2023-05-10
CVE-2023-1732 Improper random reading in CIRCL — CIRCL 5.3 Medium2023-05-10
CVE-2023-29335 Microsoft Word Security Feature Bypass Vulnerability — Microsoft Office 2019 7.5 High2023-05-09
CVE-2023-24950 Microsoft SharePoint Server Spoofing Vulnerability — Microsoft SharePoint Enterprise Server 2016 6.5 Medium2023-05-09
CVE-2023-31039 Apache bRPC: ServerOptions.pid_file may cause arbitrary code execution — Apache bRPC 9.8 -2023-05-08
CVE-2022-43919 IBM MQ denial of service — MQ 5.3 Medium2023-05-05
CVE-2023-30434 IBM Storage Scale denial of service — Elastic Storage System 6.2 Medium2023-05-05
CVE-2023-26125 Gin-Gonic Gin 输入验证错误漏洞 — github.com/gin-gonic/gin 5.6 Medium2023-05-04
CVE-2023-21502 SAMSUNG Mobile devices 输入验证错误漏洞 — Samsung Mobile Devices 5.7 Medium2023-05-04
CVE-2023-21504 SAMSUNG Mobile devices 安全漏洞 — Samsung Mobile Devices 5.6 Medium2023-05-04
CVE-2023-21501 SAMSUNG Mobile devices 输入验证错误漏洞 — Samsung Mobile Devices 8.2 High2023-05-04
CVE-2023-21494 SAMSUNG Mobile devices 安全漏洞 — Samsung Mobile Devices 5.6 Medium2023-05-04

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3268 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.