Vulnerabilities - Page 163

Vulnerability Name	CVE CWE	CWE	Severity
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3655)	CVE-2008-3655 CWE-264	CWE-264	High
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1005)	CVE-2011-1005 CWE-264	CWE-264	Medium
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4464)	CVE-2012-4464 CWE-264	CWE-264	Medium
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4466)	CVE-2012-4466 CWE-264	CWE-264	Medium
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4481)	CVE-2012-4481 CWE-264	CWE-264	Medium
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4522)	CVE-2012-4522 CWE-264	CWE-264	Medium
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2065)	CVE-2013-2065 CWE-264	CWE-264	Medium
Ruby Resource Management Errors Vulnerability (CVE-2008-2664)	CVE-2008-2664		High
Ruby Resource Management Errors Vulnerability (CVE-2008-3443)	CVE-2008-3443		Medium
Ruby Resource Management Errors Vulnerability (CVE-2008-3656)	CVE-2008-3656		High
Ruby Resource Management Errors Vulnerability (CVE-2008-4310)	CVE-2008-4310		High
Ruby Resource Management Errors Vulnerability (CVE-2014-2734)	CVE-2014-2734		Medium
Ruby Resource Management Errors Vulnerability (CVE-2014-6438)	CVE-2014-6438		High
Ruby Uncontrolled Resource Consumption Vulnerability (CVE-2018-8777)	CVE-2018-8777 CWE-400	CWE-400	High
Ruby Use of Externally-Controlled Format String Vulnerability (CVE-2017-0898)	CVE-2017-0898 CWE-134	CWE-134	Critical
Ruby Use of Externally-Controlled Format String Vulnerability (CVE-2018-8778)	CVE-2018-8778 CWE-134	CWE-134	High
Rukovoditel Cleartext Storage of Sensitive Information Vulnerability (CVE-2020-11821)	CVE-2020-11821 CWE-312	CWE-312	Medium
Rukovoditel Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-11818)	CVE-2020-11818 CWE-352	CWE-352	High
Rukovoditel Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-30224)	CVE-2021-30224 CWE-352	CWE-352	High
Rukovoditel Cross-site Scripting (XSS) Vulnerability (CVE-2019-7541)	CVE-2019-7541		Medium
Rukovoditel Improper Input Validation Vulnerability (CVE-2020-11819)	CVE-2020-11819 CWE-20	CWE-20	Critical
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7400)	CVE-2019-7400 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11813)	CVE-2020-11813 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11822)	CVE-2020-11822 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-18469)	CVE-2020-18469 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-18470)	CVE-2020-18470 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-21732)	CVE-2020-21732 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35984)	CVE-2020-35984 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35985)	CVE-2020-35985 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35986)	CVE-2020-35986 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35987)	CVE-2020-35987 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43164)	CVE-2022-43164 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43165)	CVE-2022-43165 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43166)	CVE-2022-43166 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43167)	CVE-2022-43167 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43169)	CVE-2022-43169 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43170)	CVE-2022-43170 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43185)	CVE-2022-43185 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44944)	CVE-2022-44944 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44946)	CVE-2022-44946 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44947)	CVE-2022-44947 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44948)	CVE-2022-44948 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44949)	CVE-2022-44949 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44950)	CVE-2022-44950 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44951)	CVE-2022-44951 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44952)	CVE-2022-44952 CWE-707	CWE-707	Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-45020)	CVE-2022-45020 CWE-707	CWE-707	High
Rukovoditel Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2022-48175)	CVE-2022-48175 CWE-138	CWE-138	Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11812)	CVE-2020-11812 CWE-138	CWE-138	Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11816)	CVE-2020-11816 CWE-138	CWE-138	Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11820)	CVE-2020-11820 CWE-138	CWE-138	Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13587)	CVE-2020-13587 CWE-138	CWE-138	High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13588)	CVE-2020-13588 CWE-138	CWE-138	High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13589)	CVE-2020-13589 CWE-138	CWE-138	High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13590)	CVE-2020-13590 CWE-138	CWE-138	High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13591)	CVE-2020-13591 CWE-138	CWE-138	High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13592)	CVE-2020-13592 CWE-138	CWE-138	High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-43168)	CVE-2022-43168 CWE-138	CWE-138	Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-43288)	CVE-2022-43288 CWE-138	CWE-138	High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-44945)	CVE-2022-44945 CWE-138	CWE-138	Critical
Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-20166)	CVE-2018-20166 CWE-434	CWE-434	High
Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11815)	CVE-2020-11815 CWE-434	CWE-434	Critical
Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11817)	CVE-2020-11817 CWE-434	CWE-434	Critical
Same origin method execution (SOME)	CWE-20	CWE-20	Medium
Same site scripting	CWE-16	CWE-16	Medium
SAML Consumer Service External Dereference SSRF	CWE-918	CWE-918	Medium
SAML Consumer Service XML entity injection (XXE)	CWE-611	CWE-611	High
SAML Consumer Service XSLT injection	CWE-91	CWE-91	High
SAML Consumer Service XSS vulnerability	CWE-80	CWE-80	High
SAML Response without signature	CWE-16	CWE-16	High
SAML Respose signature exclusion	CWE-16	CWE-16	High
Sangfor NGAF Authentication Bypass	CWE-287	CWE-287	High
SAP B2B/B2C CRM Local File Inclusion	CWE-22	CWE-22	High
SAP BO BIP SSRF (CVE-2020-6308)	CVE-2020-6308 CWE-918	CWE-918	Medium
SAP BO BIP XXE (CVE-2022-28213)	CVE-2022-28213 CWE-112	CWE-112	High

Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3655)

CVE-2008-3655

CWE-264

High