Vulnerability Name CVE Severity
b2evolution Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2021-28242) CVE-2021-28242
b2evolution Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-5910) CVE-2012-5910
b2evolution Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-2945) CVE-2013-2945
b2evolution Other Vulnerability (CVE-2006-6197) CVE-2006-6197
b2evolution Other Vulnerability (CVE-2006-6417) CVE-2006-6417
b2evolution Other Vulnerability (CVE-2007-2358) CVE-2007-2358
b2evolution Other Vulnerability (CVE-2007-2681) CVE-2007-2681
b2evolution URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-22840) CVE-2020-22840
b2evolution Use of Insufficiently Random Values Vulnerability (CVE-2022-30935) CVE-2022-30935
Backbone.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-10537) CVE-2016-10537
Barracuda networks products multiple directory traversal vulnerabilities
Bash code injection vulnerability CVE-2014-6271
Basic authentication over HTTP
Bazaar repository found
Beego Framework CVE-2021-30080 Vulnerability (CVE-2021-30080) CVE-2021-30080
Beego Framework CVE-2022-31259 Vulnerability (CVE-2022-31259) CVE-2022-31259
Beego Framework Improper Certificate Validation Vulnerability (CVE-2024-40464) CVE-2024-40464
Beego Framework Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-31836) CVE-2022-31836
Beego Framework Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2021-27116) CVE-2021-27116
Beego Framework Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2021-27117) CVE-2021-27117
Beego Framework Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-39391) CVE-2021-39391
Beego Framework Incorrect Default Permissions Vulnerability (CVE-2019-16355) CVE-2019-16355
Beego Framework Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2019-16354) CVE-2019-16354
Beego Framework Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2024-40465) CVE-2024-40465
BeyondTrust Secure Remote Access Base XSS (CVE-2021-31589) CVE-2021-31589
BigIP iRule Tcl code injection
BillQuick Web Suite SQL injection (CVE-2021-42258) CVE-2021-42258
Bitrix galleries_recalc.php XSS
Bitrix open redirect
Bitrix server test script publicly accessible
Blind XSS
Bonita Authorization Bypass (CVE-2022-25237) CVE-2022-25237
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-10735) CVE-2016-10735
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-14040) CVE-2018-14040
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-14041) CVE-2018-14041
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-14042) CVE-2018-14042
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20676) CVE-2018-20676
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20677) CVE-2018-20677
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8331) CVE-2019-8331
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-6484) CVE-2024-6484
Bootstrap Select Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-20921) CVE-2019-20921
Bootstrap Table Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2021-23472) CVE-2021-23472
Bootstrap Table Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-1726) CVE-2022-1726
BottlePy weak secret key
Broken access control in Confluence Server and Data Center (CVE-2023-22515) CVE-2023-22515
Broken Link Hijacking
Broken Object Property Level Authorization (Mass Assignment)
BuddyPress REST API Privilege Escalation CVE-2021-21389
Cacti Unauthenticated Command Injection (CVE-2022-46169) CVE-2022-46169
Caddy Web Server Authentication Bypass by Spoofing Vulnerability (CVE-2023-50463) CVE-2023-50463
Caddy Web Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-19148) CVE-2018-19148
Caddy Web Server Improper Authentication Vulnerability (CVE-2018-21246) CVE-2018-21246
Caddy Web Server Out-of-bounds Read Vulnerability (CVE-2022-34037) CVE-2022-34037
Caddy Web Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487) CVE-2023-44487
Caddy Web Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-28923) CVE-2022-28923
Caddy Web Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-29718) CVE-2022-29718
CakePHP 1.3.5 / 1.2.8 unserialize() vulnerability CVE-2010-4335
CakePHP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-8379) CVE-2015-8379
CakePHP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-15400) CVE-2020-15400
CakePHP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-35239) CVE-2020-35239
CakePHP Deserialization of Untrusted Data Vulnerability (CVE-2019-11458) CVE-2019-11458
CakePHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3712) CVE-2011-3712
CakePHP Improper Input Validation Vulnerability (CVE-2010-4335) CVE-2010-4335
CakePHP Improper Input Validation Vulnerability (CVE-2016-4793) CVE-2016-4793
CakePHP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2006-5031) CVE-2006-5031
CakePHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2006-4067) CVE-2006-4067
CakePHP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-22727) CVE-2023-22727
CakePHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4399) CVE-2012-4399
Case-Insensitive Routing Bypass in Express.js Application
CData Jetty Path Traversal (CVE-2024-31848/CVE-2024-31849/CVE-2024-31850/CVE-2024-31851) CVE-2024-31848 CVE-2024-31849 CVE-2024-31850 CVE-2024-31851
Certificate is Signed Using a Weak Signature Algorithm
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-23127) CVE-2020-23127
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-40662) CVE-2021-40662
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-39061) CVE-2023-39061
Chamilo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32925) CVE-2021-32925