Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity MySQL Resource Management Errors Vulnerability (CVE-2012-2749) CVE-2012-2749 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2020-11080) CVE-2020-11080 CWE-400 CWE-400 High MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50076) CVE-2025-50076 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50077) CVE-2025-50077 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50078) CVE-2025-50078 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50079) CVE-2025-50079 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50080) CVE-2025-50080 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50082) CVE-2025-50082 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50088) CVE-2025-50088 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50089) CVE-2025-50089 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50091) CVE-2025-50091 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50092) CVE-2025-50092 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50093) CVE-2025-50093 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50094) CVE-2025-50094 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50095) CVE-2025-50095 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50096) CVE-2025-50096 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50097) CVE-2025-50097 CWE-400 CWE-400 Medium MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50104) CVE-2025-50104 CWE-400 CWE-400 Low MySQL Use After Free Vulnerability (CVE-2017-3302) CVE-2017-3302 CWE-416 CWE-416 High MySQL Use After Free Vulnerability (CVE-2019-7317) CVE-2019-7317 CWE-416 CWE-416 Medium MySQL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-0735) CVE-2018-0735 CWE-327 CWE-327 Medium MySQL Use of Externally-Controlled Format String Vulnerability (CVE-2006-3469) CVE-2006-3469 CWE-134 CWE-134 Medium MySQL Use of Externally-Controlled Format String Vulnerability (CVE-2008-3963) CVE-2008-3963 CWE-134 CWE-134 Medium MySQL Use of Externally-Controlled Format String Vulnerability (CVE-2009-2446) CVE-2009-2446 CWE-134 CWE-134 High MySQL utf8 4-byte truncation CWE-176 CWE-176 Medium Nagios core config manager SQL injection vulnerability CVE-2013-6875 CWE-89 CWE-89 High Nagios XI Magpie_debug.php Unauthenticated RCE CVE-2018-15708 CWE-94 CWE-94 High Nagios XI Unauthenticated SQLi CVE-2018-8734 CVE-2018-8734 CWE-89 CWE-89 High Nette framework PHP code injection via callback CVE-2020-15227 CWE-94 CWE-94 High Next.js/React Server Components RCE (CVE-2025-55182 & CVE-2025-66478) CVE-2025-55182 CVE-2025-66478 CWE-94 CWE-502 CWE-94 CWE-502 Critical Next.js Acceptance of Extraneous Untrusted Data With Trusted Data Vulnerability (CVE-2026-44572) CVE-2026-44572 CWE-349 CWE-349 Medium Next.js Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-56332) CVE-2024-56332 CWE-770 CWE-770 Medium Next.js Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-27979) CVE-2026-27979 CWE-770 CWE-770 High Next.js Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-44577) CVE-2026-44577 CWE-770 CWE-770 Medium Next.js Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-44579) CVE-2026-44579 CWE-770 CWE-770 High Next.js Authentication Bypass Using an Alternate Path or Channel Vulnerability (CVE-2026-44574) CVE-2026-44574 CWE-288 CWE-288 High Next.js Authentication Bypass Using an Alternate Path or Channel Vulnerability (CVE-2026-44575) CVE-2026-44575 CWE-288 CWE-288 High Next.js Authentication Bypass Using an Alternate Path or Channel Vulnerability (CVE-2026-45109) CVE-2026-45109 CWE-288 CWE-288 High Next.js Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2024-46982) CVE-2024-46982 CWE-639 CWE-639 High Next.js Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2025-32421) CVE-2025-32421 CWE-362 CWE-362 Low Next.js Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2026-27978) CVE-2026-27978 CWE-352 CWE-352 Medium Next.js CVE-2021-43803 Vulnerability (CVE-2021-43803) CVE-2021-43803 High Next.js CVE-2022-21721 Vulnerability (CVE-2022-21721) CVE-2022-21721 High Next.js CVE-2023-46298 Vulnerability (CVE-2023-46298) CVE-2023-46298 High Next.js CVE-2025-55183 Vulnerability (CVE-2025-55183) CVE-2025-55183 Medium Next.js Deserialization of Untrusted Data Vulnerability (CVE-2025-55182) CVE-2025-55182 CWE-502 CWE-502 Critical Next.js Deserialization of Untrusted Data Vulnerability (CVE-2025-55184) CVE-2025-55184 CWE-502 CWE-502 High Next.js Deserialization of Untrusted Data Vulnerability (CVE-2025-67779) CVE-2025-67779 CWE-502 CWE-502 High Next.js Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2025-30218) CVE-2025-30218 CWE-200 CWE-200 Medium Next.js image Blind SSRF CWE-918 CWE-918 Medium Next.js Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2022-36046) CVE-2022-36046 CWE-754 CWE-754 Medium Next.js Improper Input Validation Vulnerability (CVE-2025-55173) CVE-2025-55173 CWE-20 CWE-20 Medium Next.js Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-16877) CVE-2017-16877 CWE-22 CWE-22 High Next.js Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-6184) CVE-2018-6184 CWE-22 CWE-22 High Next.js Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-5284) CVE-2020-5284 CWE-22 CWE-22 Medium Next.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-18282) CVE-2018-18282 CWE-707 CWE-707 Medium Next.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-39178) CVE-2021-39178 CWE-707 CWE-707 Medium Next.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-44580) CVE-2026-44580 CWE-707 CWE-707 Medium Next.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-44581) CVE-2026-44581 CWE-707 CWE-707 Medium Next.js Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2024-34350) CVE-2024-34350 High Next.js Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2025-49005) CVE-2025-49005 Low Next.js Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2025-49826) CVE-2025-49826 High Next.js Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2026-29057) CVE-2026-29057 Medium Next.js Incorrect Authorization Vulnerability (CVE-2024-51479) CVE-2024-51479 CWE-863 CWE-863 High Next.js Incorrect Authorization Vulnerability (CVE-2026-44573) CVE-2026-44573 CWE-863 CWE-863 High Next.js Interpretation Conflict Vulnerability (CVE-2026-44576) CVE-2026-44576 CWE-436 CWE-436 Medium Next.js Middleware Authorization Bypass CVE-2025-29927 CWE-285 CWE-285 High Next.js Missing Origin Validation in WebSockets Vulnerability (CVE-2025-48068) CVE-2025-48068 Medium Next.js Missing Origin Validation in WebSockets Vulnerability (CVE-2026-27977) CVE-2026-27977 Medium Next.js Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-34351) CVE-2024-34351 CWE-918 CWE-918 High Next.js Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-57822) CVE-2025-57822 CWE-918 CWE-918 High Next.js Server-Side Request Forgery (SSRF) Vulnerability (CVE-2026-44578) CVE-2026-44578 CWE-918 CWE-918 High Next.js Uncontrolled Recursion Vulnerability (CVE-2024-47831) CVE-2024-47831 CWE-674 CWE-674 High Next.js Uncontrolled Resource Consumption Vulnerability (CVE-2024-39693) CVE-2024-39693 CWE-400 CWE-400 High Next.js Uncontrolled Resource Consumption Vulnerability (CVE-2025-59471) CVE-2025-59471 CWE-400 CWE-400 High 1...117118119120...327 118 / 327
