Vulnerability Name CVE Severity
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-27973) CVE-2021-27973
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-32615) CVE-2021-32615
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-40313) CVE-2021-40313
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-40317) CVE-2021-40317
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-26266) CVE-2022-26266
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-32297) CVE-2022-32297
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-26876) CVE-2023-26876
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-27233) CVE-2023-27233
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-33361) CVE-2023-33361
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-33362) CVE-2023-33362
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-34626) CVE-2023-34626
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-37270) CVE-2023-37270
Piwigo Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) Vulnerability (CVE-2016-3735) CVE-2016-3735
Piwigo URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-9464) CVE-2017-9464
Play Framework Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-12480) CVE-2020-12480
Play Framework Data Amplification Vulnerability (CVE-2020-28923) CVE-2020-28923
Play Framework Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2022-31023) CVE-2022-31023
Play Framework Improper Input Validation Vulnerability (CVE-2015-2156) CVE-2015-2156
Play Framework Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-13864) CVE-2018-13864
Play Framework Improper Restriction of XML External Entity Reference Vulnerability (CVE-2014-3630) CVE-2014-3630
Play Framework Inadequate Encryption Strength Vulnerability (CVE-2019-17598) CVE-2019-17598
Play Framework Out-of-bounds Write Vulnerability (CVE-2020-27196) CVE-2020-27196
Play Framework Uncontrolled Recursion Vulnerability (CVE-2020-26882) CVE-2020-26882
Play Framework Uncontrolled Recursion Vulnerability (CVE-2020-26883) CVE-2020-26883
Play Framework Uncontrolled Resource Consumption Vulnerability (CVE-2022-31018) CVE-2022-31018
Play framework weak secret key
PleskLin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784) CVE-2023-43784
PleskLin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0132) CVE-2013-0132
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-18793) CVE-2019-18793
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11583) CVE-2020-11583
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11584) CVE-2020-11584
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35976) CVE-2021-35976
PleskLin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1557) CVE-2012-1557
PleskLin Other Vulnerability (CVE-2013-0133) CVE-2013-0133
PleskLin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4878) CVE-2013-4878
PleskLin URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-24044) CVE-2023-24044
PleskWin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784) CVE-2023-43784
PleskWin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0132) CVE-2013-0132
PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-18793) CVE-2019-18793
PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11583) CVE-2020-11583
PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11584) CVE-2020-11584
PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35976) CVE-2021-35976
PleskWin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1557) CVE-2012-1557
PleskWin Other Vulnerability (CVE-2013-0133) CVE-2013-0133
PleskWin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4878) CVE-2013-4878
PleskWin URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-24044) CVE-2023-24044
Plone arbitrary code execution CVE-2011-3587
Plone CMS Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2012-5507) CVE-2012-5507
Plone CMS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-5500) CVE-2012-5500
Plone CMS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-7293) CVE-2015-7293
Plone CMS Cryptographic Issues Vulnerability (CVE-2012-6661) CVE-2012-6661
Plone CMS CVE-2011-0720 Vulnerability (CVE-2011-0720) CVE-2011-0720
Plone CMS CVE-2011-2528 Vulnerability (CVE-2011-2528) CVE-2011-2528
Plone CMS CVE-2011-3587 Vulnerability (CVE-2011-3587) CVE-2011-3587
Plone CMS CVE-2012-5503 Vulnerability (CVE-2012-5503) CVE-2012-5503
Plone CMS CVE-2013-4189 Vulnerability (CVE-2013-4189) CVE-2013-4189
Plone CMS CVE-2017-1000483 Vulnerability (CVE-2017-1000483) CVE-2017-1000483
Plone CMS CVE-2024-23756 Vulnerability (CVE-2024-23756) CVE-2024-23756
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5491) CVE-2012-5491
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5492) CVE-2012-5492
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5497) CVE-2012-5497
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5505) CVE-2012-5505
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5508) CVE-2012-5508
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4194) CVE-2013-4194
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-7060) CVE-2013-7060
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-4042) CVE-2016-4042
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-21336) CVE-2021-21336
Plone CMS Improper Access Control Vulnerability (CVE-2015-7315) CVE-2015-7315
Plone CMS Improper Authentication Vulnerability (CVE-2009-0662) CVE-2009-0662
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5741) CVE-2007-5741
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5485) CVE-2012-5485
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5488) CVE-2012-5488
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5493) CVE-2012-5493
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5495) CVE-2012-5495
Plone CMS Improper Input Validation Vulnerability (CVE-2011-4462) CVE-2011-4462