CWE-20— Improper Input Validation
7,051 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-20page 1 of 142
- CVE-2002-2444CRITICALCVSS 9.8EG 9.82019-10-28
Snoopy before 2.0.0 has a security hole in exec cURL
- CVE-2005-4890HIGHCVSS 7.8EG 7.82019-11-04
There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via "su - user -c program". The user session can be escaped to the parent session by using the TIOCSTI ioctl to push characters into the input buffer to…
- CVE-2007-6763HIGHCVSS 8.8EG 8.82019-07-31
SAS Drug Development (SDD) before 32DRG02 mishandles logout actions, which allows a user (who was previously logged in) to access resources by pressing a back or forward button in a web browser.
- CVE-2009-3614LOWCVSS 3.3EG 3.32019-11-09
liboping 1.3.2 allows users reading arbitrary files upon the local system.
- CVE-2009-5004MEDIUMCVSS 6.5EG 6.52019-11-09
qpid-cpp 1.0 crashes when a large message is sent and the Digest-MD5 mechanism with a security layer is in use .
- CVE-2009-5050HIGHCVSS 7.5EG 7.52019-11-06
konversation before 1.2.3 allows attackers to cause a denial of service.
- CVE-2009-5158MEDIUMCVSS 6.1EG 6.12019-08-22
The google-analyticator plugin before 5.2.1 for WordPress has insufficient HTML sanitization for Google Analytics API text.
- CVE-2010-0748CRITICALCVSS 9.8EG 9.82019-10-30
Transmission before 1.92 allows an attacker to cause a denial of service (crash) or possibly have other unspecified impact via a large number of tr arguments in a magnet link.
- CVE-2010-1678HIGHCVSS 7.5EG 7.52019-10-29
Mapserver 5.2, 5.4 and 5.6 before 5.6.5-2 improperly validates symbol index values during Mapfile parsing.
- CVE-2010-2061HIGHCVSS 7.8EG 7.82019-10-29
rpcbind 0.2.0 does not properly validate (1) /tmp/portmap.xdr and (2) /tmp/rpcbind.xdr, which can be created by an attacker before the daemon is started.
- CVE-2010-2243HIGHCVSS 7.5EG 7.52019-11-07
A vulnerability exists in kernel/time/clocksource.c in the Linux kernel before 2.6.34 where on non-GENERIC_TIME systems (GENERIC_TIME=n), accessing /sys/devices/system/clocksource/clocksource0/current_clocksource results in an OOPS.
- CVE-2010-2446CRITICALCVSS 9.8EG 9.82019-11-06
Rbot Reaction plugin allows command execution
- CVE-2010-2447CRITICALCVSS 9.8EG 9.82019-11-07
gitolite before 1.4.1 does not filter src/ or hooks/ from path names.
- CVE-2010-2449MEDIUMCVSS 6.5EG 6.52019-11-07
Gource through 0.26 logs to a predictable file name (/tmp/gource-$UID.tmp), enabling attackers to overwrite an arbitrary file via a symlink attack.
- CVE-2010-2473MEDIUMCVSS 6.5EG 6.52019-11-07
Drupal 6.x before 6.16 and 5.x before version 5.22 does not properly block users under certain circumstances. A user with an open session that was blocked could maintain their session on the Drupal site despite being blocked.
- CVE-2010-2476CRITICALCVSS 9.8EG 9.82019-11-07
syscp 1.4.2.1 allows attackers to add arbitrary paths via the documentroot of a domain by appending a colon to it and setting the open basedir path to use that domain documentroot.
- CVE-2010-2490MEDIUMCVSS 6.5EG 6.52019-10-31
Mumble: murmur-server has DoS due to malformed client query
- CVE-2010-3293MEDIUMCVSS 5.5EG 5.52019-10-28
mailscanner can allow local users to prevent virus signatures from being updated
- CVE-2010-3359MEDIUMCVSS 4.8EG 4.82019-11-12
If LD_LIBRARY_PATH is undefined in gargoyle-free before 2009-08-25, the variable will point to the current directory. This can allow a local user to trick another user into running gargoyle in a directory with a cracked libgarglk.so and ga…
- CVE-2010-3373MEDIUMCVSS 5.5EG 5.52019-10-29
paxtest handles temporary files insecurely
- CVE-2010-3375CRITICALCVSS 9.8EG 9.82019-10-29
qtparted has insecure library loading which may allow arbitrary code execution
- CVE-2010-3439MEDIUMCVSS 6.5EG 6.52019-11-12
It is possible to cause a DoS condition by causing the server to crash in alien-arena 7.33 by supplying various invalid parameters to the download command.
- CVE-2010-3667MEDIUMCVSS 5.3EG 5.32019-11-04
TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows Spam Abuse in the native form content element.
- CVE-2010-4239CRITICALCVSS 9.8EG 9.82019-10-28
Tiki Wiki CMS Groupware 5.2 has Local File Inclusion
- CVE-2010-4660CRITICALCVSS 9.8EG 9.82019-11-20
Unspecified vulnerability in statusnet through 2010 due to the way addslashes are used in SQL string escapes..
- CVE-2010-4815CRITICALCVSS 9.8EG 9.82020-02-05
Coppermine gallery before 1.4.26 has an input validation vulnerability that allows for code execution.
- CVE-2011-0220MEDIUMCVSS 5.5EG 5.52020-02-05
Apple Bonjour before 2011 allows a crash via a crafted multicast DNS packet.
- CVE-2011-0529HIGHCVSS 7.5EG 7.52019-11-20
Weborf before 0.12.5 is affected by a Denial of Service (DOS) due to malformed fields in HTTP.
- CVE-2011-0703CRITICALCVSS 9.8EG 9.82019-11-15
In gksu-polkit before 0.0.3, the source file for xauth may contain arbitrary commands that may allow an attacker to overtake an administrator X11 session.
- CVE-2011-0704MEDIUMCVSS 5.92018-05-04
389 Directory Server 1.2.7.5, when built with mozldap, allows remote attackers to cause a denial of service (replica crash) by sending an empty modify request.
- CVE-2011-1028CRITICALCVSS 9.8EG 9.82019-11-20
The $smarty.template variable in Smarty3 allows attackers to possibly execute arbitrary PHP code via the sysplugins/smarty_internal_compile_private_special_variable.php file.
- CVE-2011-2808MEDIUMCVSS 6.5EG 6.52019-11-06
A stale layout root is set as an input element in WebKit in Google Chrome before Blink M13 when a child of a keygen with autofocus is accessed.
- CVE-2011-2897CRITICALCVSS 9.8EG 9.82019-11-12
gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw
- CVE-2011-2902MEDIUMCVSS 5.32018-01-30
zxpdf in xpdf before 3.02-19 as packaged in Debian unstable and 3.02-12+squeeze1 as packaged in Debian squeeze deletes temporary files insecurely, which allows remote attackers to delete arbitrary files via a crafted .pdf.gz file name.
- CVE-2011-2922HIGHCVSS 7.8EG 7.82019-11-19
ktsuss versions 1.4 and prior spawns the GTK interface to run as root. This can allow a local attacker to escalate privileges to root and use the "GTK_MODULES" environment variable to possibly execute arbitrary code.
- CVE-2011-3203CRITICALCVSS 9.8EG 9.82020-01-14
A Code Execution vulnerability exists the attachment parameter to index.php in Jcow CMS 4.x to 4.2 and 5.2 to 5.2.
- CVE-2011-3477MEDIUMCVSS 5.52018-02-19
GEAR Software CD DVD Filter driver (aka GEARAspiWDM.sys), as used in Symantec Backup Exec System Recovery 8.5 and BESR 2010, Symantec System Recovery 2011, Norton 360, and Norton Ghost, allows local users to cause a denial of service (syst…
- CVE-2011-3611HIGHCVSS 7.2EG 7.22020-01-22
A File Inclusion vulnerability exists in act parameter to admin.php in UseBB before 1.0.12.
- CVE-2011-4120CRITICALCVSS 9.8EG 9.82019-11-26
Yubico PAM Module before 2.10 performed user authentication when 'use_first_pass' PAM configuration option was not used and the module was configured as 'sufficient' in the PAM configuration. A remote attacker could use this flaw to circum…
- CVE-2011-4124CRITICALCVSS 9.8EG 9.82021-10-27
Input validation issues were found in Calibre at devices/linux_mount_helper.c which can lead to argument injection and elevation of privileges.
- CVE-2011-4181HIGHCVSS 7.52018-06-11
A vulnerability in open build service allows remote attackers to gain access to source files even though source access is disabled. Affected releases are SUSE open build service up to and including version 2.1.15 (for 2.1) and before versi…
- CVE-2011-4182HIGHCVSS 7.32018-06-12
Missing escaping of ESSID values in sysconfig of SUSE Linux Enterprise allows attackers controlling an access point to cause execute arbitrary code. Affected releases are sysconfig prior to 0.83.7-2.1.
- CVE-2011-4310HIGHCVSS 7.5EG 7.52019-11-26
The news module in CMSMS before 1.9.4.3 allows remote attackers to corrupt new articles.
- CVE-2011-4902MEDIUMCVSS 6.5EG 6.52019-11-06
TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to delete arbitrary files on the webserver.
- CVE-2011-4904MEDIUMCVSS 6.5EG 6.52019-11-06
TYPO3 before 4.4.9 and 4.5.x before 4.5.4 does not apply proper access control on ExtDirect calls which allows remote attackers to retrieve ExtDirect endpoint services.
- CVE-2011-4967HIGHCVSS 7.5EG 7.52019-11-19
tog-Pegasus has a package hash collision DoS vulnerability
- CVE-2011-4968MEDIUMCVSS 4.8EG 4.82019-11-19
nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM)
- CVE-2012-0051HIGHCVSS 7.4EG 7.42019-11-07
Tahoe-LAFS 1.9.0 fails to ensure integrity which allows remote attackers to corrupt mutable files or directories upon retrieval.
- CVE-2012-0334MEDIUMCVSS 6.4EG 6.42020-01-15
Cisco IronPort Web Security Appliance AsyncOS software prior to 7.5 has a SSL Certificate Caching vulnerability which could allow man-in-the-middle attacks
- CVE-2012-0694CRITICALCVSS 9.8EG 9.82019-10-29
SugarCRM CE <= 6.3.1 contains scripts that use "unserialize()" with user controlled input which allows remote attackers to execute arbitrary PHP code.
Map vulnerabilities like CWE-20 to your infrastructure
EchelonGraph correlates every CVE — across CWE-20 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →