Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-472

CWE-472

External Control of Assumed-Immutable Web Parameter

Parent: CWE-642 - External Control of Critical State Data

The web application does not sufficiently verify inputs that are assumed to be immutable but are actually externally controllable, such as hidden form fields.

123 vulnerabilities with CWE-472

CVE-2026-2519 MEDIUM

Online Scheduling and Appointment Booking System – Bookly <= 27.0 - Unauthenticated Price Manipulation via 'tips'

CVE-2026-5912 HIGH

Google Chrome < 147.0.7727.55 - Integer Overflow in WebRTC via Crafted HTML Page

CVE-2026-5910 HIGH

Google Chrome <147.0.7727.55 - Memory Corruption

CVE-2026-5909 HIGH

Google Chrome <147.0.7727.55 - Memory Corruption

CVE-2026-5908 HIGH

Google Chrome <147.0.7727.55 - Memory Corruption

CVE-2026-5870 HIGH

Google Chrome <147.0.7727.55 - Memory Corruption

CVE-2026-5859 HIGH

Google Chrome <147.0.7727.55 - Memory Corruption

CVE-2026-34751 CRITICAL

Payload has Unvalidated Input in Password Recovery Endpoints

CVE-2026-5277 HIGH

Google Chrome < 146.0.7680.178 - Integer Overflow in ANGLE via Crafted HTML Page

CVE-2026-5274 HIGH

Google Chrome <146.0.7680.178 - Memory Corruption

CVE-2026-4679 HIGH

Google Chrome < 146.0.7680.165 - Integer Overflow in Fonts via Crafted HTML Page

CVE-2026-4464 HIGH

Google Chrome <146.0.7680.153 - Memory Corruption

CVE-2026-4453 MEDIUM

Google Chrome <146.0.7680.153 - Info Disclosure

CVE-2026-4452 HIGH

Google Chrome <146.0.7680.153 - Memory Corruption

CVE-2026-3914 HIGH

Google Chrome <146.0.7680.71 - Memory Corruption

CVE-2026-3538 HIGH

Google Chrome <145.0.7632.159 - Memory Corruption

CVE-2026-3536 HIGH

Google Chrome <145.0.7632.159 - Memory Corruption

CVE-2026-2649 HIGH

Google Chrome <145.0.7632.109 - Memory Corruption

CVE-2025-59382 LOW

QNAP Systems - QTS, QuTS Hero, QuTScloud, QVP (QVR Pro Appliances)

CVE-2025-14750 HIGH

Web App - Privilege Escalation

CVE-2025-67846 MEDIUM

Mintlify Platform <2025-11-15 - Auth Bypass

CVE-2025-66385 CRITICAL

Cerebrate <1.30 - Privilege Escalation

CVE-2025-10892 HIGH

Google Chrome < 140.0.7339.207 - Integer Overflow in V8 via Crafted HTML Page

CVE-2025-10891 HIGH

Google Chrome <140.0.7339.207 - Heap Corruption

CVE-2025-54551 MEDIUM

Synapse Mobility <8.2 - Privilege Escalation

Previous Page 3 of 5 Next

Details

Vulnerabilities 123

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy