Weaknesses of type CWE-20
4,749 resultsCVE-2024-1245LOWConcrete CMS version 9 before 9.2.5 is vulnerable to stored XSS in file tags and description attributesEPSS 0.4%CVE-2026-42388MEDIUMMissing input validation for catalog zonesEPSS 0.4%CVE-2024-47866HIGHRGW DoS attack with empty HTTP header in S3 object copyEPSS 0.4%CVE-2022-30784MEDIUMA crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value in NTFS-3G through 2021.8.22.EPSS 0.4%CVE-2026-45135HIGHCaddy: Unsafe Unicode Handling in FastCGI splitPos Allows Execution of Non-PHP FilesEPSS 0.4%CVE-2025-69250MEDIUMfree5GC has Improper Error Handling in UDM, Leading to Information ExposureEPSS 0.4%CVE-2026-3294HIGHAuthentication Logic Vulnerability on Multiple TP-Link Range ExtendersEPSS 0.4%CVE-2026-33285HIGHLiquidJS: memoryLimit Bypass through Negative Range Values Leads to Process CrashEPSS 0.4%CVE-2022-46328HIGHSome smartphones have the input validation vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.EPSS 0.4%CVE-2017-15121—A non-privileged user is able to mount a fuse filesystem on RHEL 6 or 7 and crash a system if an application punches a hole in a file that dEPSS 0.4%CVE-2025-7099MEDIUMBoyunCMS Installation install2.php deserializationEPSS 0.4%CVE-2026-9213MEDIUMInsufficient input validation in certain NETGEAR routersEPSS 0.4%CVE-2024-31227MEDIUMDenial-of-service due to malformed ACL selectors in RedisEPSS 0.4%CVE-2026-20240HIGHDenial of Service through coldToFrozen.sh Script in Splunk EnterpriseEPSS 0.4%CVE-2020-10028HIGHMultiple Syscalls In GPIO Subsystem Performs No Argument ValidationEPSS 0.4%CVE-2025-10768MEDIUMh2oai h2o-3 IBMDB2 JDBC Driver ImportSQLTable deserializationEPSS 0.4%CVE-2025-10770MEDIUMjeecgboot JimuReport MySQL JDBC testConnection deserializationEPSS 0.4%CVE-2020-10058HIGHMultiple Syscalls In kscan Subsystem Performs No Argument ValidationEPSS 0.4%CVE-2026-24404HIGHiccDEV has Null Pointer Deference and Undefined Behavior in CIccXmlArrayType()EPSS 0.4%CVE-2026-28936HIGHThe issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sonoma 14EPSS 0.4%