Vulnerability Name CVE Severity
Atlassian Jira Other Vulnerability (CVE-2019-14997) CVE-2019-14997
Atlassian Jira Other Vulnerability (CVE-2019-20101) CVE-2019-20101
Atlassian Jira Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-6619) CVE-2007-6619
Atlassian Jira Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2928) CVE-2012-2928
Atlassian Jira Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-16865) CVE-2017-16865
Atlassian Jira Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-13404) CVE-2018-13404
Atlassian Jira Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-8451) CVE-2019-8451
Atlassian Jira Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-20408) CVE-2019-20408
Atlassian JIRA Servicedesk misconfiguration
Atlassian Jira Uncontrolled Search Path Element Vulnerability (CVE-2019-20400) CVE-2019-20400
Atlassian Jira Uncontrolled Search Path Element Vulnerability (CVE-2019-20419) CVE-2019-20419
Atlassian Jira Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-20897) CVE-2019-20897
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-13401) CVE-2018-13401
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-13402) CVE-2018-13402
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-11585) CVE-2019-11585
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-11589) CVE-2019-11589
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-20417) CVE-2019-20417
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-20901) CVE-2019-20901
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-39112) CVE-2021-39112
Atlassian OAuth Plugin IconUriServlet SSRF CVE-2017-9506
ATutor Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-1583) CVE-2015-1583
ATutor Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-2539) CVE-2016-2539
ATutor Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3706) CVE-2011-3706
ATutor Improper Authentication Vulnerability (CVE-2014-9753) CVE-2014-9753
ATutor Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-3368) CVE-2008-3368
ATutor Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10400) CVE-2016-10400
ATutor Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-1000002) CVE-2017-1000002
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0828) CVE-2008-0828
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-0971) CVE-2010-0971
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6528) CVE-2012-6528
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2091) CVE-2014-2091
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6521) CVE-2015-6521
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-7711) CVE-2015-7711
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6483) CVE-2017-6483
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14981) CVE-2017-14981
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7172) CVE-2019-7172
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23341) CVE-2020-23341
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-27008) CVE-2023-27008
ATutor Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-2555) CVE-2016-2555
ATutor Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-1000004) CVE-2017-1000004
ATutor Improper Privilege Management Vulnerability (CVE-2017-1000003) CVE-2017-1000003
ATutor Incorrect Authorization Vulnerability (CVE-2019-16114) CVE-2019-16114
ATutor Other Vulnerability (CVE-2014-9752) CVE-2014-9752
ATutor Other Vulnerability (CVE-2015-7712) CVE-2015-7712
ATutor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-11446) CVE-2019-11446
ATutor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-12169) CVE-2019-12169
ATutor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-12170) CVE-2019-12170
ATutor Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-43498) CVE-2021-43498
Authentication Bypass in Ivanti Connect Secure and Policy Secure (CVE-2023-46805) CVE-2023-46805
Authentication bypass via MongoDB operator injection
Auxiliary systems SSRF
axios Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2025-58754) CVE-2025-58754
axios Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-42034) CVE-2026-42034
axios Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-42036) CVE-2026-42036
axios Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-44488) CVE-2026-44488
axios Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-45857) CVE-2023-45857
axios Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2026-44486) CVE-2026-44486
axios Improper Authentication Vulnerability (CVE-2026-42041) CVE-2026-42041
axios Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2026-25639) CVE-2026-25639
axios Improper Encoding or Escaping of Output Vulnerability (CVE-2026-42040) CVE-2026-42040
axios Improper Input Validation Vulnerability (CVE-2019-10742) CVE-2019-10742
axios Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2026-42044) CVE-2026-42044
axios Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2026-42033) CVE-2026-42033
axios Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2026-42264) CVE-2026-42264
axios Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2026-44490) CVE-2026-44490
axios Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2026-42037) CVE-2026-42037
axios Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') Vulnerability (CVE-2026-40175) CVE-2026-40175
axios Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') Vulnerability (CVE-2026-42035) CVE-2026-42035
axios Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') Vulnerability (CVE-2026-44489) CVE-2026-44489
axios Insertion of Sensitive Information Into Sent Data Vulnerability (CVE-2026-44487) CVE-2026-44487
axios Origin Validation Error Vulnerability (CVE-2024-57965) CVE-2024-57965
axios Permissive List of Allowed Inputs Vulnerability (CVE-2026-42042) CVE-2026-42042
axios Permissive List of Allowed Inputs Vulnerability (CVE-2026-42043) CVE-2026-42043
axios Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-28168) CVE-2020-28168
axios Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-39338) CVE-2024-39338