Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,424 vulnerabilities with CWE-20

CVE-2026-3967 MEDIUM

Alfresco Activiti <7.19/8.8.0 - Deserialization

CVE-2026-31900 CRITICAL

Black GitHub Action - Command Injection

CVE-2026-30901 HIGH

Zoom Rooms <6.6.5 - Privilege Escalation

CVE-2026-21310 MEDIUM

Adobe Commerce <=2.4.9-alpha3 - Auth Bypass

CVE-2026-21282 MEDIUM

Adobe Commerce <=2.4.9-alpha3 - DoS

CVE-2026-26310 MEDIUM

Envoy <1.37.1/1.36.5/1.35.8/1.34.13 - DoS

CVE-2026-26121 HIGH

Azure IoT Explorer < 0.15.14 - Unauthenticated Server-Side Request Forgery

CVE-2026-26106 HIGH

Microsoft SharePoint Server - Remote Code Execution

CVE-2026-20967 HIGH

System Center Operations Manager - Privilege Escalation

CVE-2026-3288 HIGH

ingress-nginx < 1.13.8, < 1.14.4, < 1.15.0 - Remote Code Execution via Rewrite Target Annotation Injection

CVE-2026-24713 CRITICAL

Apache IoTDB 1.0.0-1.3.6/2.0.0-2.0.6 - Input Validation

CVE-2026-29791 MEDIUM

Agentgateway <0.12.0 - Command Injection

CVE-2026-29046 HIGH

TinyWeb < 2.04 - CGI Environment Variable Injection via Header Parsing

CVE-2026-0848 CRITICAL

NLTK <=3.9.2 - Remote Code Execution via StanfordSegmenter JAR Loading

CVE-2026-3545 CRITICAL

Google Chrome <145.0.7632.159 - Sandbox Escape

CVE-2026-20020 MEDIUM

Cisco Secure Firewall ASA/FTD - DoS

CVE-2026-27443 HIGH

SEPPmail Secure Email Gateway <15.0.1 - Auth Bypass

CVE-2026-3204 CRITICAL

Devolutions Server <2025.3.15 - Info Disclosure

CVE-2026-2590 CRITICAL

Devolutions Remote Desktop Manager <=2025.3.30 - Auth Bypass

CVE-2026-0034 HIGH

ManagedServices.java - Privilege Escalation

CVE-2026-0015 MEDIUM

Android - Denial of Service via AppOpsService Input Validation

CVE-2026-0014 MEDIUM

Android - Local Denial of Service via AppOpsService.java isPackageNullOrSystem

CVE-2026-28421 MEDIUM

Vim < 9.2.0077 - Heap Buffer Overflow and Denial of Service via Swap File Recovery

CVE-2026-2880 CRITICAL

@fastify/middie <9.2.0 - Auth Bypass

CVE-2026-2750 CRITICAL

Centreon Open Tickets <25.10 - Input Validation

Previous Page 22 of 497 Next

Details

Vulnerabilities 12,424

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy