Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,440 vulnerabilities with CWE-20

CVE-2025-11676 HIGH

TP-Link TL-WR940N V6 <= Build 220801 - Unauthenticated Denial of Service via UPnP Input Validation

CVE-2025-63213 CRITICAL

QVidium Opera11 <2.9.0-Ax4x-opera11 - RCE

CVE-2025-64759 HIGH

homarr < 1.43.3 - Stored Cross-Site Scripting via Malicious SVG File Upload

CVE-2025-12842 MEDIUM

Booking Plugin for WordPress Appointments - Time Slot <= 1.4.7 - Unauthenticated Email Sending

CVE-2025-64515 MEDIUM

Open Forms < 3.2.7 - Improper Input Validation in Prefill Data Fields

CVE-2025-55058 MEDIUM

Maxum Rumpus - Improper Input Validation

CVE-2025-13319 HIGH

Digi On-Prem Manager - SQL Injection

CVE-2025-10460 CRITICAL

BEIMS Contractor Web - SQL Injection

CVE-2025-64747 MEDIUM

Directus < 11.13.0 - Stored Cross-Site Scripting via Block Editor Interface

CVE-2025-62222 HIGH

GitHub Copilot Chat < 0.32.5 - Remote Code Execution via Command Injection

CVE-2025-33000 HIGH

Intel QuickAssist Technology <2.6.0 - Privilege Escalation

CVE-2025-31948 LOW

Intel(R) oneAPI Math Kernel Library <2025.2 - DoS

CVE-2025-30509 LOW

Intel QuickAssist Technology <2.6.0 - Privilege Escalation

CVE-2025-25216 LOW

Intel Graphics Drivers and Intel LTS kernels - Denial of Service via Improper Input Validation

CVE-2025-24847 MEDIUM

Intel(R) CIP <WIN_DCA_2.4.0.11001 - Info Disclosure

CVE-2025-24512 MEDIUM

Intel(R) PROSet/Wireless WiFi Software <23.160 - DoS

CVE-2025-24299 HIGH

Intel Computing Improvement Program < 2.4.11001 - Privilege Escalation via Improper Input Validation

CVE-2025-20056 MEDIUM

Intel VTune Profiler <2025.1 - Privilege Escalation

CVE-2025-12944 HIGH

NETGEAR DGN2200v4 Firmware < 1.0.0.132 - Remote Code Execution

CVE-2025-12942 HIGH

NETGEAR R6260-1.1.0.86, NETGEAR R6850-1.1.0.86 - Command Injection

CVE-2025-63397 MEDIUM

OneFlow v0.9.0 - Denial of Service via Python Sequence in Broadcasting/Type Conversion

CVE-2025-12908 MEDIUM

Google Chrome <140.0.7339.80 - CSRF

CVE-2025-12907 HIGH

Google Chrome < 140.0.7339.80 - Remote Code Execution via Devtools Input Validation Bypass

CVE-2025-63785 MEDIUM

Onlook 0.2.32 - DOM-based Cross-Site Scripting in Text Editor via innerHTML Injection

CVE-2025-63783 HIGH

Onlook 0.2.32 - Privilege Escalation

Previous Page 36 of 498 Next

Details

Vulnerabilities 12,440

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy