Vulnerability Name |
CVE
CWE
|
CWE |
Severity |
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3655)
|
CVE-2008-3655
CWE-264
|
CWE-264
|
High
|
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1005)
|
CVE-2011-1005
CWE-264
|
CWE-264
|
Medium
|
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4464)
|
CVE-2012-4464
CWE-264
|
CWE-264
|
Medium
|
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4466)
|
CVE-2012-4466
CWE-264
|
CWE-264
|
Medium
|
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4481)
|
CVE-2012-4481
CWE-264
|
CWE-264
|
Medium
|
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4522)
|
CVE-2012-4522
CWE-264
|
CWE-264
|
Medium
|
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2065)
|
CVE-2013-2065
CWE-264
|
CWE-264
|
Medium
|
Ruby Resource Management Errors Vulnerability (CVE-2008-2664)
|
CVE-2008-2664
|
|
High
|
Ruby Resource Management Errors Vulnerability (CVE-2008-3443)
|
CVE-2008-3443
|
|
Medium
|
Ruby Resource Management Errors Vulnerability (CVE-2008-3656)
|
CVE-2008-3656
|
|
High
|
Ruby Resource Management Errors Vulnerability (CVE-2008-4310)
|
CVE-2008-4310
|
|
High
|
Ruby Resource Management Errors Vulnerability (CVE-2014-2734)
|
CVE-2014-2734
|
|
Medium
|
Ruby Resource Management Errors Vulnerability (CVE-2014-6438)
|
CVE-2014-6438
|
|
High
|
Ruby Uncontrolled Resource Consumption Vulnerability (CVE-2018-8777)
|
CVE-2018-8777
CWE-400
|
CWE-400
|
High
|
Ruby Use of Externally-Controlled Format String Vulnerability (CVE-2017-0898)
|
CVE-2017-0898
CWE-134
|
CWE-134
|
Critical
|
Ruby Use of Externally-Controlled Format String Vulnerability (CVE-2018-8778)
|
CVE-2018-8778
CWE-134
|
CWE-134
|
High
|
Rukovoditel Cleartext Storage of Sensitive Information Vulnerability (CVE-2020-11821)
|
CVE-2020-11821
CWE-312
|
CWE-312
|
Medium
|
Rukovoditel Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-11818)
|
CVE-2020-11818
CWE-352
|
CWE-352
|
High
|
Rukovoditel Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-30224)
|
CVE-2021-30224
CWE-352
|
CWE-352
|
High
|
Rukovoditel Cross-site Scripting (XSS) Vulnerability (CVE-2019-7541)
|
CVE-2019-7541
|
|
Medium
|
Rukovoditel Improper Input Validation Vulnerability (CVE-2020-11819)
|
CVE-2020-11819
CWE-20
|
CWE-20
|
Critical
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7400)
|
CVE-2019-7400
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11813)
|
CVE-2020-11813
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11822)
|
CVE-2020-11822
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-18469)
|
CVE-2020-18469
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-18470)
|
CVE-2020-18470
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-21732)
|
CVE-2020-21732
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35984)
|
CVE-2020-35984
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35985)
|
CVE-2020-35985
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35986)
|
CVE-2020-35986
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35987)
|
CVE-2020-35987
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43164)
|
CVE-2022-43164
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43165)
|
CVE-2022-43165
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43166)
|
CVE-2022-43166
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43167)
|
CVE-2022-43167
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43169)
|
CVE-2022-43169
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43170)
|
CVE-2022-43170
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43185)
|
CVE-2022-43185
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44944)
|
CVE-2022-44944
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44946)
|
CVE-2022-44946
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44947)
|
CVE-2022-44947
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44948)
|
CVE-2022-44948
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44949)
|
CVE-2022-44949
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44950)
|
CVE-2022-44950
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44951)
|
CVE-2022-44951
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44952)
|
CVE-2022-44952
CWE-707
|
CWE-707
|
Medium
|
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-45020)
|
CVE-2022-45020
CWE-707
|
CWE-707
|
High
|
Rukovoditel Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2022-48175)
|
CVE-2022-48175
CWE-138
|
CWE-138
|
Critical
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11812)
|
CVE-2020-11812
CWE-138
|
CWE-138
|
Critical
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11816)
|
CVE-2020-11816
CWE-138
|
CWE-138
|
Critical
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11820)
|
CVE-2020-11820
CWE-138
|
CWE-138
|
Critical
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13587)
|
CVE-2020-13587
CWE-138
|
CWE-138
|
High
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13588)
|
CVE-2020-13588
CWE-138
|
CWE-138
|
High
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13589)
|
CVE-2020-13589
CWE-138
|
CWE-138
|
High
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13590)
|
CVE-2020-13590
CWE-138
|
CWE-138
|
High
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13591)
|
CVE-2020-13591
CWE-138
|
CWE-138
|
High
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13592)
|
CVE-2020-13592
CWE-138
|
CWE-138
|
High
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-43168)
|
CVE-2022-43168
CWE-138
|
CWE-138
|
Critical
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-43288)
|
CVE-2022-43288
CWE-138
|
CWE-138
|
High
|
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-44945)
|
CVE-2022-44945
CWE-138
|
CWE-138
|
Critical
|
Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-20166)
|
CVE-2018-20166
CWE-434
|
CWE-434
|
High
|
Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11815)
|
CVE-2020-11815
CWE-434
|
CWE-434
|
Critical
|
Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11817)
|
CVE-2020-11817
CWE-434
|
CWE-434
|
Critical
|
Same origin method execution (SOME)
|
CWE-20
|
CWE-20
|
Medium
|
Same site scripting
|
CWE-16
|
CWE-16
|
Medium
|
SAML Consumer Service External Dereference SSRF
|
CWE-918
|
CWE-918
|
Medium
|
SAML Consumer Service XML entity injection (XXE)
|
CWE-611
|
CWE-611
|
High
|
SAML Consumer Service XSLT injection
|
CWE-91
|
CWE-91
|
High
|
SAML Consumer Service XSS vulnerability
|
CWE-80
|
CWE-80
|
High
|
SAML Response without signature
|
CWE-16
|
CWE-16
|
High
|
SAML Respose signature exclusion
|
CWE-16
|
CWE-16
|
High
|
Sangfor NGAF Authentication Bypass
|
CWE-287
|
CWE-287
|
High
|
SAP B2B/B2C CRM Local File Inclusion
|
CWE-22
|
CWE-22
|
High
|
SAP BO BIP SSRF (CVE-2020-6308)
|
CVE-2020-6308
CWE-918
|
CWE-918
|
Medium
|
SAP BO BIP XXE (CVE-2022-28213)
|
CVE-2022-28213
CWE-112
|
CWE-112
|
High
|