Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Cherokee Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-20798) CVE-2019-20798 CWE-707 CWE-707 High Cherokee Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2019-20799) CVE-2019-20799 CWE-119 CWE-119 High Cherokee NULL Pointer Dereference Vulnerability (CVE-2020-12845) CVE-2020-12845 CWE-476 CWE-476 High Cherokee Out-of-bounds Write Vulnerability (CVE-2019-20800) CVE-2019-20800 CWE-787 CWE-787 Critical CherryPy Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-0252) CVE-2008-0252 CWE-22 CWE-22 High CherryPy Other Vulnerability (CVE-2006-0847) CVE-2006-0847 Medium Chrome Logger information disclosure CWE-200 CWE-200 Medium Cisco Adaptive Security Appliance (ASA) Path Traversal (CVE-2018-0296) CVE-2018-0296 CWE-22 CWE-22 High Cisco Adaptive Security Appliance (ASA) Path Traversal CVE-2020-3452 CVE-2020-3452 CWE-20 CWE-20 High Cisco Adaptive Security Appliance (ASA) XSS (CVE-2020-3580) CVE-2020-3580 CWE-79 CWE-79 Medium Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability CVE-2018-15440 CWE-80 CWE-80 High Cisco IOS XE Web UI Authentication Bypass (CVE-2023-20198) CVE-2023-20198 CWE-287 CWE-287 Critical Cisco IOS XE Web UI Implant (CVE-2023-20198) CVE-2023-20198 CWE-912 CWE-912 Critical Cisco RV Series Authentication Bypass (CVE-2021-1472) CVE-2021-1472 CWE-119 CWE-119 Medium Citrix ADC/Gateway Unauthenticated Remote Code Execution CVE-2019-19781 CWE-22 CWE-22 High Citrix ADC NetScaler Local File Inclusion (CVE-2020-8193) CVE-2020-8193 CWE-284 CWE-284 Medium Citrix Gateway Open Redirect and XSS CVE-2023-24488 CVE-2023-24487 CWE-79 CWE-79 High Citrix NetScaler Information Disclosure 'Citrix Bleed' (CVE-2023-4966) CVE-2023-4966 CWE-119 CWE-119 Critical Citrix XenMobile Server Path Traversal CVE-2020-8209 CWE-22 CWE-22 High CKEditor 4.0.1 cross-site scripting vulnerability CWE-79 CWE-79 High CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5191) CVE-2014-5191 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-17960) CVE-2018-17960 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9281) CVE-2020-9281 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9440) CVE-2020-9440 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-27193) CVE-2020-27193 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32808) CVE-2021-32808 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32809) CVE-2021-32809 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-37695) CVE-2021-37695 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41164) CVE-2021-41164 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41165) CVE-2021-41165 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-24728) CVE-2022-24728 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-48110) CVE-2022-48110 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-28439) CVE-2023-28439 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24815) CVE-2024-24815 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24816) CVE-2024-24816 CWE-707 CWE-707 Medium CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-43407) CVE-2024-43407 CWE-707 CWE-707 Medium CKEditor Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2021-26271) CVE-2021-26271 CWE-829 CWE-829 Medium CKEditor Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2021-26272) CVE-2021-26272 CWE-829 CWE-829 Medium CKEditor Other Vulnerability (CVE-2022-24729) CVE-2022-24729 High CKEditor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-31541) CVE-2023-31541 CWE-434 CWE-434 Critical Claroline Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3262) CVE-2008-3262 CWE-352 CWE-352 Medium Claroline Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3716) CVE-2011-3716 CWE-200 CWE-200 Medium Claroline Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2006-4844) CVE-2006-4844 CWE-94 CWE-94 Medium Claroline Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3261) CVE-2008-3261 CWE-59 CWE-59 Medium Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3260) CVE-2008-3260 CWE-707 CWE-707 Medium Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3315) CVE-2008-3315 CWE-707 CWE-707 Medium Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1907) CVE-2009-1907 CWE-707 CWE-707 Medium Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4753) CVE-2013-4753 CWE-707 CWE-707 Low Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6267) CVE-2013-6267 CWE-707 CWE-707 Medium Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-37160) CVE-2022-37160 CWE-707 CWE-707 Medium Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-37161) CVE-2022-37161 CWE-707 CWE-707 Medium Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-37162) CVE-2022-37162 CWE-707 CWE-707 Medium Claroline Other Vulnerability (CVE-2005-1374) CVE-2005-1374 Medium Claroline Other Vulnerability (CVE-2005-1375) CVE-2005-1375 High Claroline Other Vulnerability (CVE-2005-1376) CVE-2005-1376 High Claroline Other Vulnerability (CVE-2005-1377) CVE-2005-1377 High Claroline Other Vulnerability (CVE-2006-0411) CVE-2006-0411 Critical Claroline Other Vulnerability (CVE-2006-1594) CVE-2006-1594 High Claroline Other Vulnerability (CVE-2006-1595) CVE-2006-1595 Medium Claroline Other Vulnerability (CVE-2006-1596) CVE-2006-1596 High Claroline Other Vulnerability (CVE-2006-2284) CVE-2006-2284 Medium Claroline Other Vulnerability (CVE-2006-2868) CVE-2006-2868 Medium Claroline Other Vulnerability (CVE-2006-3257) CVE-2006-3257 Medium Claroline Other Vulnerability (CVE-2006-5256) CVE-2006-5256 High Claroline Other Vulnerability (CVE-2006-7048) CVE-2006-7048 High Claroline Other Vulnerability (CVE-2007-3517) CVE-2007-3517 Medium Claroline Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-37159) CVE-2022-37159 CWE-434 CWE-434 Critical Cleo Harmony/VLTrader/LexiCom RCE (CVE-2024-50623, CVE-2024-55956) CVE-2024-50623 CVE-2024-55956 CWE-434 CWE-434 Critical Clickjacking: CSP frame-ancestors missing CWE-1021 CWE-1021 Low Client-Side Prototype Pollution High Client Side Template Injection CWE-116 CWE-116 High ClipBucket Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3717) CVE-2011-3717 CWE-200 CWE-200 Medium ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6642) CVE-2012-6642 CWE-707 CWE-707 Medium ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6644) CVE-2012-6644 CWE-707 CWE-707 Medium ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-4673) CVE-2015-4673 CWE-707 CWE-707 Medium 1...17181920...306 18 / 306
