Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Citrix Gateway Open Redirect And XSS Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Apache Traffic Server Resource Management Errors Vulnerability (CVE-2016-5396) CVE-2016-5396 High Apache Traffic Server Uncontrolled Resource Consumption Vulnerability (CVE-2018-8005) CVE-2018-8005 CWE-400 CWE-400 Medium Apache Traffic Server Uncontrolled Resource Consumption Vulnerability (CVE-2019-9512) CVE-2019-9512 CWE-400 CWE-400 High Apache Traffic Server Uncontrolled Resource Consumption Vulnerability (CVE-2020-9481) CVE-2020-9481 CWE-400 CWE-400 High Apache Unomi MVEL RCE (CVE-2020-13942) CVE-2020-13942 CWE-20 CWE-20 High Apache version older than 1.3.27 CVE-2002-0839 CVE-2002-0840 CVE-2002-0843 CWE-119 CWE-119 Medium Apache version older than 1.3.28 CVE-2003-0460 CWE-20 CWE-20 Medium Apache version older than 1.3.29 CVE-2003-0542 CWE-119 CWE-119 Medium Apache version older than 1.3.31 CVE-2003-0020 CVE-2003-0987 CVE-2003-0993 CVE-2004-0174 CWE-264 CWE-264 Medium Apache version older than 1.3.34 CVE-2005-2088 CWE-20 CWE-20 Medium Apache version older than 1.3.37 CVE-2006-3747 CWE-189 CWE-189 Medium Apache version older than 1.3.39 CVE-2006-5752 CVE-2007-3304 CWE-79 CWE-79 Medium Apache version older than 1.3.41 CVE-2007-6388 CWE-79 CWE-79 Medium Apache version up to 1.3.33 htpasswd local overflow CVE-2006-1078 CWE-119 CWE-119 Low Apache ZooKeeper Unauthorized Access Vulnerability CWE-200 CWE-200 Medium apc.php page found CWE-538 CWE-538 Medium API Sensitive Info(PII) accessible without authentication CWE-284 CWE-284 High Application is Vulnerable to the JWT Alg None Attack CWE-345 CWE-345 High AppWeb Authentication Bypass (CVE-2018-8715) CWE-287 CWE-287 High Appwrite favicon SSRF (CVE-2023-27159) CVE-2023-27159 CWE-918 CWE-918 High Arbitrary EL Evaluation in RichFaces CWE-917 CWE-917 High Arbitrary file creation CWE-20 CWE-20 High Arbitrary file deletion CWE-20 CWE-20 High Arbitrary file existence disclosure in Action Pack CVE-2014-7829 CWE-200 CWE-200 Medium Arbitrary File Read in Next.js CWE-22 CWE-22 High Arbitrary File Read on Nuxt.js Development Server CWE-200 CWE-200 Low Arbitrary local file read via file upload CWE-200 CWE-200 High Argument Injection CWE-88 CWE-88 High Artifactory Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-1000206) CVE-2018-1000206 CWE-352 CWE-352 High Artifactory Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10321) CVE-2019-10321 CWE-352 CWE-352 Medium Artifactory Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10324) CVE-2019-10324 CWE-352 CWE-352 Medium Artifactory Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-23163) CVE-2021-23163 CWE-352 CWE-352 High Artifactory CVE-2019-9733 Vulnerability (CVE-2019-9733) CVE-2019-9733 Critical Artifactory CVE-2020-7931 Vulnerability (CVE-2020-7931) CVE-2020-7931 High Artifactory Deserialization of Untrusted Data Vulnerability (CVE-2022-0573) CVE-2022-0573 CWE-502 CWE-502 High Artifactory Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-46687) CVE-2021-46687 CWE-668 CWE-668 Medium Artifactory Improper Input Validation Vulnerability (CVE-2016-6501) CVE-2016-6501 CWE-20 CWE-20 Critical Artifactory Improper Input Validation Vulnerability (CVE-2019-19937) CVE-2019-19937 CWE-20 CWE-20 High Artifactory Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1000623) CVE-2018-1000623 CWE-22 CWE-22 High Artifactory Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-45721) CVE-2021-45721 CWE-707 CWE-707 Medium Artifactory Improper Privilege Management Vulnerability (CVE-2022-0668) CVE-2022-0668 CWE-269 CWE-269 Critical Artifactory Incorrect Authorization Vulnerability (CVE-2021-45074) CVE-2021-45074 CWE-863 CWE-863 Medium Artifactory Incorrect Authorization Vulnerability (CVE-2021-45730) CVE-2021-45730 CWE-863 CWE-863 Medium Artifactory Incorrect Default Permissions Vulnerability (CVE-2021-46270) CVE-2021-46270 CWE-276 CWE-276 Low Artifactory Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-41834) CVE-2021-41834 CWE-732 CWE-732 Medium Artifactory Insufficiently Protected Credentials Vulnerability (CVE-2018-1000424) CVE-2018-1000424 CWE-522 CWE-522 High Artifactory Insufficiently Protected Credentials Vulnerability (CVE-2020-2164) CVE-2020-2164 CWE-522 CWE-522 Medium Artifactory Insufficiently Protected Credentials Vulnerability (CVE-2020-2165) CVE-2020-2165 CWE-522 CWE-522 High Artifactory Insufficient Verification of Data Authenticity Vulnerability (CVE-2018-19971) CVE-2018-19971 CWE-345 CWE-345 Critical Artifactory Missing Authorization Vulnerability (CVE-2019-10322) CVE-2019-10322 CWE-862 CWE-862 Medium Artifactory Missing Authorization Vulnerability (CVE-2019-10323) CVE-2019-10323 CWE-862 CWE-862 Medium Artifactory Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-10036) CVE-2016-10036 CWE-434 CWE-434 Critical Artifactory Weak Password Requirements Vulnerability (CVE-2019-17444) CVE-2019-17444 CWE-521 CWE-521 Critical ASP.NET: Failure To Require SSL For Authentication Cookies CWE-319 CWE-319 Medium ASP.NET application-level tracing enabled CWE-215 CWE-215 Medium ASP.NET ASPX debugging enabled CWE-11 CWE-11 Medium ASP.NET connection strings stored in plaintext CWE-16 CWE-16 High ASP.NET cookieless authentication enabled CWE-598 CWE-598 Medium ASP.NET Cookieless session state enabled CWE-598 CWE-598 Medium ASP.NET cookies accessible from client-side scripts CWE-1004 CWE-1004 Medium ASP.NET Core Development Mode enabled CWE-200 CWE-200 Medium ASP.NET CustomErrors Is Disabled CWE-12 CWE-12 Medium ASP.NET debugging enabled CWE-11 CWE-11 Low ASP.NET Deny missing from authorization rule on location CWE-16 CWE-16 Medium ASP.NET diagnostic page CWE-200 CWE-200 Medium ASP.NET error message CWE-12 CWE-12 Medium ASP.NET event validation disabled CWE-16 CWE-16 Medium ASP.NET expired session IDs are not regenerated CWE-16 CWE-16 Medium ASP.NET forms authentication using inadequate protection CWE-16 CWE-16 Medium ASP.NET header checking is disabled in web.config CWE-16 CWE-16 Medium ASP.NET login credentials stored in plain text CWE-256 CWE-256 Medium ASP.NET MVC Improper Authentication Vulnerability (CVE-2018-8171) CVE-2018-8171 CWE-287 CWE-287 High ASP.NET MVC Improper Input Validation Vulnerability (CVE-2017-0247) CVE-2017-0247 CWE-20 CWE-20 High ASP.NET MVC Improper Input Validation Vulnerability (CVE-2017-0249) CVE-2017-0249 CWE-20 CWE-20 High ASP.NET MVC Improper Input Validation Vulnerability (CVE-2017-0256) CVE-2017-0256 CWE-20 CWE-20 Medium 1...9101112...275 10 / 275
