Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3267

3267 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2018-19952 QNAP Systems TS-870 SQL注入漏洞 — Music Station 7.5 -2020-11-02
CVE-2018-19949 QNAP Systems TS-870 命令注入漏洞 — QTS 9.8 -2020-10-28
CVE-2020-8255 Pulse Secure Pulse Connect Secure 输入验证错误漏洞 — Pulse Connect Secure / Pulse Policy Secure 4.9 -2020-10-28
CVE-2020-3577 Cisco Firepower Threat Defense Software Inline Pair/Passive Mode Denial of Service Vulnerability — Cisco Firepower Threat Defense Software 7.4 -2020-10-21
CVE-2020-3317 Cisco Firepower Threat Defense Software SSL Input Validation Denial of Service Vulnerability — Cisco Firepower Threat Defense Software 7.5 -2020-10-21
CVE-2020-1682 Junos OS: SRX1500, vSRX, SRX4K, NFX150, NFX250: Denial of service vulnerability executing local CLI command — Junos OS 5.5 Medium2020-10-16
CVE-2020-1679 Junos OS: PTX/QFX Series: Kernel Routing Table (KRT) queue stuck after packet sampling a malformed packet when the tunnel-observation mpls-over-udp configuration is enabled. — Junos OS 7.5 High2020-10-16
CVE-2020-1676 Juniper Networks Mist Cloud UI: SAML authentication response handling vulnerability. — MIST Cloud UI 7.2 High2020-10-16
CVE-2020-1677 Juniper Networks Mist Cloud UI: SAML authentication attribute elements handling vulnerability. — MIST Cloud UI 7.2 High2020-10-16
CVE-2020-1662 Junos OS and Junos OS Evolved: RPD crash due to BGP session flapping. — Junos OS 7.5 High2020-10-16
CVE-2020-15258 Insecure use of shell.openExternal in Wire — wire-desktop 8.0 High2020-10-16
CVE-2020-8349 CNOS 代码注入漏洞 — Cloud Networking Operating System (CNOS) 9.8 Critical2020-10-14
CVE-2020-3602 Cisco StarOS Privilege Escalation Vulnerability — Cisco ASR 5000 Series Software 6.3 Medium2020-10-08
CVE-2020-3601 Cisco StarOS Privilege Escalation Vulnerability — Cisco ASR 5000 Series Software 4.4 Medium2020-10-08
CVE-2020-3568 Cisco Email Security Appliance URL Filtering Bypass Vulnerability — Cisco Email Security Appliance (ESA) 5.8 Medium2020-10-08
CVE-2020-3567 Cisco Industrial Network Director Denial of Service Vulnerability — Cisco Industrial Network Director 6.5 Medium2020-10-08
CVE-2020-25643 Linux kernel 输入验证错误漏洞 — kernel 6.7 -2020-10-06
CVE-2020-15233 OAuth2 Redirect URL validity does not respect query parameters and character casing for loopback addresses — fosite 6.1 Medium2020-10-02
CVE-2020-15234 Redirect URL matching ignores character casing — fosite 6.1 Medium2020-10-02
CVE-2020-7069 Wrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV — PHP 5.4 Medium2020-10-02
CVE-2020-7070 PHP parses encoded cookie names so malicious `__Host-` cookies can be sent — PHP 4.3 Medium2020-10-02
CVE-2020-15228 Environment Variable Injection in GitHub Actions — toolkit 3.5 Low2020-10-01
CVE-2020-25626 Django 跨站脚本漏洞 — Django REST Framework 6.1 -2020-09-30
CVE-2020-15731 Local Privilege Escalation in Bitdefender Engines (VA-8953) — Bitdefender Engines 3.2 Low2020-09-30
CVE-2020-15201 Heap buffer overflow in Tensorflow — tensorflow 4.8 Medium2020-09-25
CVE-2020-15203 Denial of Service in Tensorflow — tensorflow 7.5 High2020-09-25
CVE-2020-15206 Denial of Service in Tensorflow — tensorflow 9.0 Critical2020-09-25
CVE-2020-15210 Segmentation fault in tensorflow-lite — tensorflow 6.5 Medium2020-09-25
CVE-2020-15191 Undefined behavior in Tensorflow — tensorflow 5.3 Medium2020-09-25
CVE-2020-15192 Memory leak in Tensorflow — tensorflow 4.3 Medium2020-09-25

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3267 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.