Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-1284

CWE-1284

Improper Validation of Specified Quantity in Input

Parent: CWE-20 - Improper Input Validation

The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.

293 vulnerabilities with CWE-1284

CVE-2026-6915 MEDIUM

Flaw in the updateUser Command May Allow Unauthorized Configuration Change

CVE-2026-41677 CRITICAL

rust-openssl 0.9.0-0.10.77 - Memory Corruption

CVE-2026-1352 MEDIUM

IBM® Db2® is vulnerable to a trap or return SQLCODE -901 when compiling a specially crafted query with a defined index

CVE-2026-33471 CRITICAL

nimiq-block has skip block quorum bypass via out-of-range BitSet indices & u16 truncation

CVE-2026-6839 MEDIUM

Samsung Open Source One < 1.30.0 - Out-of-Bounds Access

CVE-2026-41285 MEDIUM

OpenBSD through 7.8 - DoS

CVE-2026-2403 MEDIUM

Schneider Electric PowerChute Serial Shutdown <=1.4 - Log Truncation

CVE-2026-40093 HIGH

nimiq-blockchain is missing a wall-clock upper bound on block timestamps

CVE-2026-1101 MEDIUM

Improper Validation of Specified Quantity in Input in GitLab

CVE-2026-1092 HIGH

Improper Validation of Specified Quantity in Input in GitLab

CVE-2026-35489 HIGH

Tandoor Recipes — `amount`/`unit` bypass serializer in `food/{id}/shopping/`

CVE-2026-30573 HIGH

SourceCodester Pharmacy Product Management System 1.0 - Business Logic

CVE-2026-30575 HIGH

SourceCodester Pharmacy Product Management System 1.0 - DoS

CVE-2026-25345 CRITICAL

WordPress SimpLy Gallery plugin <= 3.3.2 - Arbitrary Code Execution vulnerability

CVE-2026-33349 MEDIUM

fast-xml-parser: Entity Expansion Limits Bypassed When Set to Zero Due to JavaScript Falsy Evaluation

CVE-2026-26940 MEDIUM

Improper Validation of Specified Quantity in Input in Kibana Leading to Denial of Service

CVE-2026-31971 HIGH

HTSlib CRAM decoder vulnerable to buffer overflow

CVE-2026-31970 HIGH

HTSlib BGZF index file reader has a heap buffer overflow

CVE-2026-2229 HIGH

undici WebSocket - DoS

CVE-2026-1528 HIGH

undici <6.24.0/7.24.0 - DoS

CVE-2026-3816 MEDIUM

OWASP DefectDojo <=2.55.4 - DoS

CVE-2026-27384 CRITICAL

W3 Total Cache <=2.9.1 - Privilege Escalation

CVE-2026-3381 CRITICAL

Compress::Raw::Zlib <=2.219 - Insecure Dependency

CVE-2026-2597 HIGH

Crypt::SysRandom::XS <0.010 - Buffer Overflow

CVE-2026-26934 MEDIUM

Page 1 of 12 Next

Details

Vulnerabilities 293

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy