Vulnerability Name CVE Severity
Vanilla Forums Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-17571) CVE-2018-17571
Vanilla Forums Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8279) CVE-2019-8279
Vanilla Forums Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8825) CVE-2020-8825
Vanilla Forums Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-3527) CVE-2013-3527
Vanilla Forums Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-16410) CVE-2018-16410
Vanilla Forums Other Vulnerability (CVE-2011-0910) CVE-2011-0910
Vanilla Forums Other Vulnerability (CVE-2011-3614) CVE-2011-3614
Vanilla Forums Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4954) CVE-2012-4954
Varnish Cache Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-4484) CVE-2013-4484
Varnish Cache Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-8807) CVE-2017-8807
Varnish Cache Integer Overflow or Wraparound Vulnerability (CVE-2017-12425) CVE-2017-12425
Varnish Cache Other Vulnerability (CVE-2013-4090) CVE-2013-4090
Varnish Cache Other Vulnerability (CVE-2015-8852) CVE-2015-8852
Varnish Cache Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0345) CVE-2013-0345
Varnish Cache Reachable Assertion Vulnerability (CVE-2019-15892) CVE-2019-15892
vBSEO 3.6.0 PHP code injection CVE-2012-5223
vBulletin 4 (up to 4.1.2) search.php SQL injection
vBulletin 5 CONNECT remote code execution
vBulletin 5.1.2 SQL injection CVE-2014-5102
vBulletin 5.6.1 nodeId SQL injection CVE-2020-12720
vBulletin 5.x 0day pre-auth RCE
vBulletin customer number disclosure CVE-2013-6129
vBulletin PHP object injection vulnerability
vBulletin Pre-Auth RCE Vulnerability CVE-2020-17496
vBulletin routestring Local File Inclusion
Verb tampering via misconfigured security constraint
Version Disclosure (ASP.NET)
Version Disclosure (ASP.NET MVC)
Version Disclosure (IIS)
Version Disclosure (PHP)
Vertical Broken Function Level Authorization (BFLA)
Vertical IDOR/BOLA (Broken Object Level Authorization)
VideoJS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-23414) CVE-2021-23414
ViewsState is not Encrypted
ViewState MAC Disabled
ViewStateMac is Not Enabled
Virtual host directory listing
Virtual Host locations misconfiguration
VirtueMart access control bypass
Vite Arbitrary File Read (CVE-2025-30208, CVE-2025-31125) CVE-2025-30208 CVE-2025-31125
VMware Aria Operations for Networks RCE (CVE-2023-20887) CVE-2023-20887
VMware directory traversal and privilege escalation vulnerabilities CVE-2009-2267 CVE-2009-3733
VMware Horizon Log4Shell RCE CVE-2021-44228
VMware vCenter Log4Shell RCE CVE-2021-44228
VMware vCenter Server Unauthorized Remote Code Execution CVE-2021-21972
VMware vCenter vcavbootstrap Arbitrary File Read
VMware vRealize Operations Server Side Request Forgery (SSRF) vulnerability CVE-2021-21975
VMware Workspace ONE Access SSTI (CVE-2022-22954) CVE-2022-22954
Vulnerabilities in SharePoint could allow elevation of privilege CVE-2012-1859
Vulnerable JavaScript libraries
Vulnerable package dependencies [high]
Vulnerable package dependencies [low]
Vulnerable package dependencies [medium]
Vulnerable project dependencies
W3 Total Cache CVE-2019-6715 Vulnerability (CVE-2019-6715) CVE-2019-6715
W3 total cache debug mode
Weak Nonce Detected in Content Security Policy (CSP) Declaration
Weak password
Weak Secret is Used to Sign JWT
Weak WordPress security key
web.xml configuration file disclosure
Web2py weak secret key
webadmin.php script
Webalizer script
Web application default/weak credentials
Web Application Firewall Detected
Web Cache Deception
Web Cache Poisoning
Web Cache Poisoning DoS
Web Cache Poisoning DoS (for javascript)
Web Cache Poisoning DoS through HTTP/2 headers
Web Cache Poisoning through HTTP/2 pseudo-headers
Web Cache Poisoning via Fat GET Request
Web Cache Poisoning via Host Header
Web Cache Poisoning via JSONP and UTM_ parameter