Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,467 vulnerabilities with CWE-20

CVE-2023-40165 HIGH

rubygems.org < 2023-08-14 - Unauthenticated Gem Replacement via Insufficient Input Validation

CVE-2023-2917 CRITICAL

ThinManager Path Traversal (CVE-2023-2917) Arbitrary File Upload

CVE-2023-2915 HIGH

ThinManager Path Traversal (CVE-2023-2915) Arbitrary File Delete

CVE-2023-2914 HIGH

Rockwell Automation ThinManager ThinServer 11.0.0-11.0.5 DoS via Crafted Sync Message

CVE-2023-40272 HIGH

Apache Airflow Spark Provider < 4.1.3 - Arbitrary File Read via Connection Parameters

CVE-2023-20232 MEDIUM

Cisco Unified CCX - Web Cache Poisoning

CVE-2023-40034 HIGH

woodpecker 1.0.0-1.0.1 - Repository Takeover via Malformed Webhook Data

CVE-2023-38737 MEDIUM

IBM WebSphere Application Server Liberty <23.0.0.7 - DoS

CVE-2023-4241 HIGH

lol-html < 1.1.1 - Denial of Service via Malformed HTML Input

CVE-2023-20564 MEDIUM

AMD Ryzen Master < 2.11.2.2659 - Privileged Memory Read/Write via IOCTL Input Buffer

CVE-2023-20560 MEDIUM

AMD Ryzen Master < 2.11.2.2659 - Denial of Service via IOCTL Input Buffer

CVE-2023-4357 HIGH

Google Chrome <116.0.5845.96 - Auth Bypass

CVE-2023-21284 MEDIUM

Android - Denial of Service via Find My Device Feature Manipulation

CVE-2023-21272 HIGH

Android - Local Privilege Escalation via URI Permission Grant

CVE-2023-39950 MEDIUM

efibootguard < 0.15 - Improper Input Validation in Bootloader Environment Files

CVE-2023-39404 HIGH

Huawei EMUI and HarmonyOS - Denial of Service via Window Management API Input Parameter

CVE-2023-39390 HIGH

Window Management Module - Info Disclosure

CVE-2023-39386 HIGH

Huawei EMUI and HarmonyOS - Denial of Service via PMS Module Input Parameter

CVE-2023-39405 CRITICAL

Huawei EMUI and HarmonyOS - Out-of-Bounds Read/Write in Wi-Fi Module

CVE-2023-39389 HIGH

Huawei EMUI and HarmonyOS - Denial of Service in PMS Module

CVE-2023-39388 HIGH

Huawei EMUI and HarmonyOS - Denial of Service in PMS Module

CVE-2023-39382 HIGH

Huawei EMUI and HarmonyOS - Denial of Service via Audio Module Input Verification

CVE-2023-39381 HIGH

Huawei EMUI and HarmonyOS - Input Verification Vulnerability in Storage Module

CVE-2023-39553 HIGH

Apache Airflow Drill Provider < 2.4.3 - Unauthenticated Arbitrary File Read via DrillHook Connection Parameters

CVE-2023-34086 HIGH

Intel(R) NUC BIOS - Privilege Escalation

Previous Page 97 of 499 Next

Details

Vulnerabilities 12,467

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy