Weaknesses of type CWE-20
4,737 resultsCVE-2024-43373HIGHwebcrack has an Arbitrary File Write Vulnerability on Windows when Parsing and Saving a Malicious BundleEPSS 0.4%CVE-2023-20132MEDIUMCisco Webex Meetings Web UI VulnerabilitiesEPSS 0.4%CVE-2026-38639HIGHAn issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a Denial of Service (DoS) via parEPSS 0.4%CVE-2026-29905MEDIUMKirby CMS through 5.1.4 allows an authenticated user with 'Editor' permissions to cause a persistent Denial of Service (DoS) via a malformedEPSS 0.4%CVE-2019-1839MEDIUMCisco Remote PHY Device Software Command Injection VulnerabilityEPSS 0.4%CVE-2022-22384MEDIUMIBM Security Verify Privilege improper input validationEPSS 0.4%CVE-2020-3556HIGHCisco AnyConnect Secure Mobility Client Arbitrary Code Execution VulnerabilityEPSS 0.4%CVE-2023-26273MEDIUMIBM QRadar security bypassEPSS 0.4%CVE-2022-25729CRITICALImproper Input Validation in MODEMEPSS 0.4%CVE-2025-3898HIGHCWE-20: Improper Input Validation vulnerability exists that could cause Denial of Service when an
authenticated malicious user sends HTTPS rEPSS 0.4%CVE-2025-20154HIGHCisco IOS, IOS XE and IOS XR Software TWAMP Denial of Service VulnerabilityEPSS 0.4%CVE-2026-39850HIGHYii 2: Local file inclusion via view parameter name collisionEPSS 0.4%CVE-2023-0868MEDIUMStealing Cookies using Reflected XSS via graph resultsEPSS 0.4%CVE-2025-50233MEDIUMA vulnerability in QCMS version 6.0.5 allows authenticated users to read arbitrary files from the server due to insufficient validation of tEPSS 0.4%CVE-2026-24504HIGHDell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13EPSS 0.4%CVE-2011-20001HIGHA vulnerability has been identified in SIMATIC S7-1200 CPU V1 family (incl. SIPLUS variants) (All versions < V2.0.3), SIMATIC S7-1200 CPU V2EPSS 0.4%CVE-2025-54247MEDIUMAdobe Experience Manager | Improper Input Validation (CWE-20)EPSS 0.4%CVE-2025-8573LOWConcrete CMS 9 through 9.4.2 is vulnerable to Stored XSS from Home Folder on Members Dashboard pageEPSS 0.4%CVE-2022-41898MEDIUM`CHECK` fail via inputs in `SparseFillEmptyRowsGrad` in TensorflowEPSS 0.4%CVE-2022-41901MEDIUM`CHECK_EQ` fail via input in `SparseMatrixNNZ` in TensorflowEPSS 0.4%