Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-10 | CVE-2014-5092 | Improper Input Validation vulnerability in Status2K Status2k allows Remote Command Execution in admin/options/editpl.php. | 8.8 |
| 2020-01-08 | CVE-2016-6585 | Improper Input Validation vulnerability in Symantec Norton Mobile Security A Denial of Service vulnerability exists in Symantec Norton Mobile Security for Android prior to 3.16, which could let a remote malicious user conduct a man-in-the-middle attack via specially crafted JavaScript. | 5.3 |
| 2020-01-08 | CVE-2019-19495 | Improper Input Validation vulnerability in Technicolor Tc7230 Steb Firmware 0.1.25 The web interface on the Technicolor TC7230 STEB 01.25 is vulnerable to DNS rebinding, which allows a remote attacker to configure the cable modem via JavaScript in a victim's browser. | 9.8 |
| 2020-01-08 | CVE-2016-6586 | Improper Input Validation vulnerability in Symantec Norton Mobile Security A security bypass vulnerability exists in Symantec Norton Mobile Security for Android before 3.16, which could let a malicious user conduct a man-in-the-middle via specially crafted JavaScript to add arbitrary URLs to the URL whitelist. | 3.7 |
| 2020-01-08 | CVE-2016-6589 | Improper Input Validation vulnerability in Symantec IT Management Suite 8.0 A Denial of Service vulnerability exists in the ITMS workflow process manager login window in Symantec IT Management Suite 8.0. | 6.5 |
| 2020-01-07 | CVE-2019-6529 | Improper Input Validation vulnerability in Kunbus Pr100088 Modbus Gateway Firmware 1.0.10232 An attacker could specially craft an FTP request that could crash the PR100088 Modbus gateway versions prior to release R02 (or Software Version 1.1.13166). | 4.9 |
| 2020-01-06 | CVE-2020-5519 | Improper Input Validation vulnerability in Litespeedtech Openlitespeed The WebAdmin Console in OpenLiteSpeed before v1.6.5 does not strictly check request URLs, as demonstrated by the "Server Configuration > External App" screen. | 9.8 |
| 2020-01-02 | CVE-2013-3945 | Improper Input Validation vulnerability in Extensis Mrsid The MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote attackers to execute arbitrary code via a nband tag. | 7.8 |
| 2020-01-02 | CVE-2014-0048 | Improper Input Validation vulnerability in multiple products An issue was found in Docker before 1.6.0. | 9.8 |
| 2019-12-31 | CVE-2019-9668 | Improper Input Validation vulnerability in Rovinbhandari FTP Project Rovinbhandari FTP 20120328 An issue was discovered in rovinbhandari FTP through 2012-03-28. | 7.5 |