The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,637 vulnerabilities with CWE-20
CVE-2013-2629
idleman leed < 1.4 - Unauthenticated Authorization Bypass via action.php Actions
CVE-2013-3705
Novell Client < 2.0 - Denial of Service via Invalid IOCTL Call
CVE-2013-5411
IBM Sterling B2B Integrator <5.2 - CSRF
CVE-2013-5407
IBM Sterling B2B Integrator <5.2 - SSRF
CVE-2013-4046
IBM SPSS Collaboration and Deployment Services 4.2.1-4.2.1.3 IF3 and 5.0-FP3 - Open Redirect
CVE-2013-2822
NovaTech Orion Substation Automation Platform - Denial of Service via Serial Line Input
CVE-2013-2821
NovaTech Orion <1.27.38-1.23.10 - DoS
CVE-2013-7113
Wireshark 1.10.x < 1.10.4 - Denial of Service in BSSGP Dissector
CVE-2013-7112
Wireshark 1.8.x < 1.8.12 and 1.10.x < 1.10.4 - Denial of Service via SIP Dissector Infinite Loop
CVE-2013-5462
IBM Content Navigator <2.0.1.2-ICN-FP002 - XSS
CVE-2013-6701
Cisco ONS 15454 System Software <= 9.6 - Denial of Service via Network Traffic Flood
CVE-2013-2816
Cooper Power Systems SMP 4, 4/DP, and 16 Gateways - Denial of Service via DNP3 Serial Input
CVE-2013-2814
Cooper Power Systems Cybectec DNP3 Master OPC Server - DoS
CVE-2013-2813
Cooper Power Systems SMP 4, 4/DP, and 16 Gateways - Denial of Service via Crafted DNP3 TCP Packet
CVE-2013-6966
Cisco WebEx Training Center - Open Redirect
CVE-2013-6971
Cisco WebEx Training Center - Open Redirect
CVE-2013-6969
Cisco WebEx Training Center - Improper Input Validation in Training-Registration Page
CVE-2013-6967
Cisco WebEx Sales Center - Open Redirect via Mobile-Browser Subsystem
CVE-2013-6959
Cisco WebEx Sales Center - Open Redirect
CVE-2013-6368
Linux Kernel < 3.12.5 - Local Privilege Escalation via KVM VAPIC Synchronization
CVE-2013-4587
Linux kernel <3.12.5 - Privilege Escalation
CVE-2013-7085
devscripts 2.13.5 - Arbitrary File Deletion via USCAN_EXCLUSION Whitespace Bypass
CVE-2013-6359
Munin < 2.0.18 - Denial of Service via Multigraph Plugin Service Name
CVE-2013-6048
Munin < 2.0.18 - Denial of Service via Crafted Multigraph Data
CVE-2013-5046
Microsoft Internet Explorer <11 - Privilege Escalation
Details
Vulnerabilities
12,637
Exploit Likelihood
High