Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3268

3268 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-22301 The kernel subsystem hmdfs has a arbitrary memory accessing vulnerability. — OpenHarmony 6.5 Medium2023-03-10
CVE-2021-36402 Moodle 输入验证错误漏洞 — Moodle 4.3 -2023-03-06
CVE-2022-4904 c-ares 输入验证错误漏洞 — c-ares 8.6 -2023-03-06
CVE-2022-3294 Node address isn't always verified when proxying — Kubernetes 6.6 Medium2023-03-01
CVE-2023-26281 IBM HTTP Server denial of service — HTTP Server 5.9 Medium2023-02-28
CVE-2022-40237 IBM MQ for HPE NonStop denial of service — MQ for HPE NonStop 6.5 Medium2023-02-27
CVE-2023-25696 Apache Airflow Hive Provider Beeline RCE — Apache Airflow Hive Provider 7.5 -2023-02-24
CVE-2023-25693 Sqoop Apache Airflow Provider Remote Code Execution Vulnerability — Apache Airflow Sqoop Provider 9.1 -2023-02-24
CVE-2023-25692 Apache Airflow Google Provider: Google Cloud Sql Provider Denial Of Service — Apache Airflow Google Provider 9.1 -2023-02-24
CVE-2023-25691 Apache Airflow Google Provider: Google Cloud Sql Provider Remote Command Execution — Apache Airflow Google Provider 9.1 -2023-02-24
CVE-2023-0868 Stealing Cookies using Reflected XSS via graph results — Meridian 6.7 Medium2023-02-23
CVE-2023-0869 Cross-site scripting in outage/list.htm — Meridian 5.8 Medium2023-02-23
CVE-2022-48321 SSRF in agent-receiver API — Checkmk 6.8 Medium2023-02-20
CVE-2022-47909 LQL Injection in Livestatus HTTP headers — Checkmk 6.8 Medium2023-02-20
CVE-2022-46836 PHP code injection in watolib — Checkmk 9.1 Critical2023-02-20
CVE-2022-46303 Command injection in SMS notifications — Checkmk 8.0 High2023-02-20
CVE-2022-43929 IBM Db2 for Linux, UNIX and Windows denial of service — Db2 for Linux, UNIX and Windows 4.9 Medium2023-02-17
CVE-2023-21574 Adobe Photoshop Improper Input Validation Remote Code Execution Vulnerability — Photoshop 7.8 High2023-02-17
CVE-2023-21621 Adobe FrameMaker Improper Input Validation Remote Code Execution Vulnerability — FrameMaker 7.8 High2023-02-17
CVE-2023-22228 Adobe Bridge Improper Input Validation Remote Code Execution Vulnerability — Bridge 7.8 High2023-02-17
CVE-2023-22239 Adobe After Effects Improper Input Validation Remote Code Execution Vulnerability — After Effects 7.8 High2023-02-17
CVE-2023-24807 Undici vulnerable to Regular Expression Denial of Service in Headers — undici 7.5 High2023-02-16
CVE-2022-20952 Cisco Secure Web Appliance 输入验证错误漏洞 — Cisco Secure Web Appliance 5.3 Medium2023-02-16
CVE-2023-20009 Cisco Secure Email 代码问题漏洞 — Cisco Secure Email 6.5 Medium2023-02-16
CVE-2022-27892 Palantir Gotham included an endpoint that would log arbitrary sized payloads. — Gotham 5.3 Medium2023-02-16
CVE-2022-27897 Palantir Gotham included an endpoint that would log arbitrary sized zip files. — Gotham 5.3 Medium2023-02-16
CVE-2023-23934 Wrkzeug's incorrect parsing of nameless cookies leads to __Host- cookies bypass — werkzeug 2.6 Low2023-02-14
CVE-2023-21685 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability — Windows 10 Version 1809 8.8 High2023-02-14
CVE-2023-21818 Windows Secure Channel Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2023-02-14
CVE-2023-21816 Windows Active Directory Domain Services API Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2023-02-14

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3268 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.