Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,467 vulnerabilities with CWE-20

CVE-2023-48226 MEDIUM

OpenReplay < 1.15.0 - HTML Injection in Account Settings Name Field

CVE-2023-48310 CRITICAL

TestingPlatform < 2.1.1 - Denial of Service and Unauthorized Network Scanning via Nmap Options

CVE-2023-48223 MEDIUM

fast-jwt < 3.3.2 - JWT Algorithm Confusion via Public Key PEM Format Bypass

CVE-2023-44355 MEDIUM

Adobe ColdFusion <= 2023.5 and <= 2021.11 - Unauthenticated Security Feature Bypass via Improper Input Validation

CVE-2023-26364 MEDIUM

@adobe/css-tools <4.3.0 - Info Disclosure

CVE-2023-22272 HIGH

Adobe RoboHelp Server <11.4 - Info Disclosure

CVE-2023-40314 MEDIUM

OpenNMS Horizon < 32.0.5 and Meridian < 2023.1.9 - Cross-Site Scripting in bootstrap.jsp

CVE-2023-32469 HIGH

Dell Precision 5820/7820/7920 Tower BIOS < 2.32.0/2.36.0/2.36.0 - Authenticated Arbitrary Code Execution

CVE-2023-47003 CRITICAL

RedisGraph 2.12.10 - Remote Code Execution and Denial of Service via DataBlock_ItemIsDeleted

CVE-2023-39537 HIGH

AMI AptioV - Improper Input Validation via Local Network

CVE-2023-39536 HIGH

AMI AptioV - Improper Input Validation via Local Network

CVE-2023-39535 HIGH

AMI AptioV - Improper Input Validation via Local Network

CVE-2023-5528 HIGH

Kubernetes 1.8.0-1.25.15 and 1.28.0-1.28.3 - Privilege Escalation via Windows In-Tree Storage Plugin

CVE-2023-36049 HIGH

Microsoft .NET and .NET Framework - Elevation of Privilege

CVE-2023-39411 MEDIUM

Intel Unison Software < 20.14.5683.0 - Denial of Service via Local Access

CVE-2023-38131 MEDIUM

Intel Unison Software < 20.14.5683.0 - Authenticated Denial of Service via Network Input

CVE-2023-36860 HIGH

Intel Unison - Privilege Escalation

CVE-2023-34431 HIGH

Intel Server Board and System Firmware - Privilege Escalation via Improper Input Validation

CVE-2023-32641 HIGH

Intel QuickAssist Technology < 1.0.40-00004 - Privilege Escalation and Denial of Service via Adjacent Access

CVE-2023-31320 HIGH

AMD Radeon Software - Denial of Service via Improper Input Validation

CVE-2023-31203 MEDIUM

OpenVINO Model Server <2022.3 - DoS

CVE-2023-27519 MEDIUM

Intel Optane SSD Firmware - Privilege Escalation via Improper Input Validation

CVE-2023-22337 HIGH

Intel Unison Software < 20.14.5683.0 - Unauthenticated Denial of Service via Network Input

CVE-2023-22329 LOW

Intel Atom and Celeron BIOS Firmware - Authenticated Denial of Service via Improper Input Validation

CVE-2023-36719 HIGH

Microsoft SAPI - Privilege Escalation

Previous Page 90 of 499 Next

Details

Vulnerabilities 12,467

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy