Vulnerabilities > Improper Input Validation

DATE CVE VULNERABILITY TITLE RISK
2020-12-31 CVE-2016-9023 Improper Input Validation vulnerability in Exponentcms Exponent CMS
Exponent CMS before 2.6.0 has improper input validation in cron/find_help.php.
network
low complexity
exponentcms CWE-20
critical
9.8
2020-12-31 CVE-2016-9022 Improper Input Validation vulnerability in Exponentcms Exponent CMS
Exponent CMS before 2.6.0 has improper input validation in usersController.php.
network
low complexity
exponentcms CWE-20
critical
9.8
2020-12-31 CVE-2016-9021 Improper Input Validation vulnerability in Exponentcms Exponent CMS
Exponent CMS before 2.6.0 has improper input validation in storeController.php.
network
low complexity
exponentcms CWE-20
critical
9.8
2020-12-28 CVE-2020-35616 Improper Input Validation vulnerability in Joomla Joomla!
An issue was discovered in Joomla! 1.7.0 through 3.9.22.
network
low complexity
joomla CWE-20
7.5
2020-12-28 CVE-2020-14273 Improper Input Validation vulnerability in Hcltech Domino 10.0.1/11.0.0/11.0.1
HCL Domino is susceptible to a Denial of Service (DoS) vulnerability due to insufficient validation of input to its public API.
network
low complexity
hcltech CWE-20
7.5
2020-12-24 CVE-2020-9137 Improper Input Validation vulnerability in Huawei products
There is a privilege escalation vulnerability in some versions of CloudEngine 12800,CloudEngine 5800,CloudEngine 6800 and CloudEngine 7800.
local
low complexity
huawei CWE-20
6.7
2020-12-24 CVE-2020-27727 Improper Input Validation vulnerability in F5 products
On BIG-IP version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.4, when an authenticated administrative user installs RPMs using the iAppsLX REST installer, the BIG-IP system does not sufficiently validate user input, allowing the user read access to the filesystem.
network
low complexity
f5 CWE-20
4.9
2020-12-22 CVE-2020-24679 Improper Input Validation vulnerability in ABB Symphony + Historian and Symphony + Operations
A S+ Operations and S+ Historian service is subject to a DoS by special crafted messages.
network
low complexity
abb CWE-20
critical
9.8
2020-12-22 CVE-2019-11781 Improper Input Validation vulnerability in Odoo
Improper input validation in portal component in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier, allows remote attackers to trick victims into modifying their account via crafted links, leading to privilege escalation.
network
low complexity
odoo CWE-20
8.8
2020-12-22 CVE-2018-15632 Improper Input Validation vulnerability in Odoo
Improper input validation in database creation logic in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier, allows remote attackers to initialize an empty database on which they can connect with default credentials.
network
low complexity
odoo CWE-20
critical
9.1