Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-346

CWE-346

Origin Validation Error

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not properly verify that the source of data or communication is valid.

556 vulnerabilities with CWE-346

CVE-2021-21211 MEDIUM

Google Chrome <90.0.4430.72 - Info Disclosure

CVE-2021-21209 MEDIUM

Google Chrome <90.0.4430.72 - Info Disclosure

CVE-2021-31718 HIGH

npupnp < 4.1.4 - Remote Code Execution via DNS Rebinding

CVE-2021-26291 CRITICAL

Apache Maven < 3.8.1 - Repository Origin Validation Error via POM Dependency References

CVE-2021-28048 MEDIUM

Dvls Server <2021.1-2020.3.18 - SSRF

CVE-2021-23986 MEDIUM

Firefox < 87.0 - Same-Origin Policy Bypass via Search Engine Favicon

CVE-2021-21184 MEDIUM

Google Chrome <89.0.4389.72 - Info Disclosure

CVE-2021-21183 MEDIUM

Google Chrome <89.0.4389.72 - Info Disclosure

CVE-2021-21175 MEDIUM

Google Chrome <89.0.4389.72 - Info Disclosure

CVE-2021-21164 MEDIUM

Google Chrome <89.0.4389.72 - Info Disclosure

CVE-2021-21163 MEDIUM

Google Chrome <89.0.4389.72 - Info Disclosure

CVE-2021-1231 MEDIUM

Nexus 9000 Series Fabric Switches - DoS

CVE-2021-27197 HIGH

Pelco Digital Sentry Server < 7.19.67 - Arbitrary File Write via DSUtility.dll AppendToTextFile

CVE-2021-21136 MEDIUM

Google Chrome <88.0.4324.96 - Info Disclosure

CVE-2021-21135 MEDIUM

Google Chrome <88.0.4324.96 - Info Disclosure

CVE-2021-20199 MEDIUM

Podman 1.8.0-3.0.0 - Origin Validation Error in Rootless Containers

CVE-2020-24772 HIGH

Dreamacro Clash for Windows 0.11.4 - Origin Validation Error via Malicious Iframe URL

CVE-2020-9060 MEDIUM

Silicon Labs 500 Series Firmware - Denial of Service via Malformed Z-Wave S2 Messages

CVE-2020-27969 HIGH

Yandex Browser for Android < 20.8.4 - Same-Origin Policy Bypass and Address Bar Spoofing

CVE-2020-15734 MEDIUM

Bitdefender Safepay < 25.0.7.29 - Origin Validation Error via File Upload Manipulation

CVE-2020-4881 HIGH

IBM Planning Analytics 2.0 - Sensitive Information Exposure via SSL/TLS Server Hostname Verification Bypass

CVE-2020-28481 MEDIUM

socket.io < 2.4.0 - Insecure Defaults via CORS Misconfiguration

CVE-2020-6881 HIGH

ZTE ZXHN E8810/E8820/E8822 Firmware - Denial of Service via MQTT Message Handling

CVE-2020-26251 MEDIUM

Open Zaak < 1.3.3 - Origin Validation Error via CORS Misconfiguration

CVE-2020-15733 MEDIUM

Bitdefender Antivirus Plus < 25.0.7.29 - Origin Validation Error in SafePay

Previous Page 17 of 23 Next

Details

Vulnerabilities 556

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy