Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Cross site scripting via Bootstrap CWE-79 CWE-79 High CrushFTP Authentication Bypass (CVE-2025-2825) CVE-2025-2825 CWE-287 CWE-287 Critical CrushFTP Server Deserialization of Untrusted Data Vulnerability (CVE-2017-14035) CVE-2017-14035 CWE-502 CWE-502 Critical CrushFTP Server Improper Control of Dynamically-Managed Code Resources Vulnerability (CVE-2023-43177) CVE-2023-43177 CWE-913 CWE-913 Critical CrushFTP Server Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-4040) CVE-2024-4040 CWE-94 CWE-94 Critical CrushFTP Server Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2017-14037) CVE-2017-14037 CWE-707 CWE-707 Medium CrushFTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14036) CVE-2017-14036 CWE-707 CWE-707 Medium CrushFTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-44076) CVE-2021-44076 CWE-707 CWE-707 Medium CrushFTP Server Improper Validation of Integrity Check Value Vulnerability (CVE-2023-48795) CVE-2023-48795 CWE-354 CWE-354 Medium CrushFTP Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-14038) CVE-2017-14038 CWE-601 CWE-601 Medium CrushFTP Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-18288) CVE-2018-18288 CWE-601 CWE-601 Medium CrushFTP SSTI (CVE-2024-4040) CVE-2024-4040 CWE-94 CWE-94 Critical CubeCart Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-38130) CVE-2023-38130 CWE-352 CWE-352 High CubeCart Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3724) CVE-2011-3724 CWE-200 CWE-200 Medium CubeCart Improper Access Control Vulnerability (CVE-2015-6928) CVE-2015-6928 CWE-284 CWE-284 Medium CubeCart Improper Authentication Vulnerability (CVE-2014-2341) CVE-2014-2341 CWE-287 CWE-287 Medium CubeCart Improper Input Validation Vulnerability (CVE-2012-0865) CVE-2012-0865 CWE-20 CWE-20 Medium CubeCart Improper Input Validation Vulnerability (CVE-2013-1465) CVE-2013-1465 CWE-20 CWE-20 High CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-2090) CVE-2017-2090 CWE-22 CWE-22 Medium CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-2098) CVE-2017-2098 CWE-22 CWE-22 Medium CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-2117) CVE-2017-2117 CWE-22 CWE-22 Medium CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-42428) CVE-2023-42428 CWE-22 CWE-22 Medium CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-47283) CVE-2023-47283 CWE-22 CWE-22 Medium CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-34832) CVE-2024-34832 CWE-22 CWE-22 Critical CubeCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1550) CVE-2008-1550 CWE-707 CWE-707 Medium CubeCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20703) CVE-2018-20703 CWE-707 CWE-707 Medium CubeCart Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2023-47675) CVE-2023-47675 CWE-138 CWE-138 High CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-4060) CVE-2009-4060 CWE-138 CWE-138 High CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-1931) CVE-2010-1931 CWE-138 CWE-138 High CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-4903) CVE-2010-4903 CWE-138 CWE-138 High CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-20716) CVE-2018-20716 CWE-138 CWE-138 Critical CubeCart Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-3904) CVE-2009-3904 CWE-264 CWE-264 High CubeCart Session Fixation Vulnerability (CVE-2021-33394) CVE-2021-33394 CWE-384 CWE-384 Medium Custom Error Pages Are Not Configured in WEB-INF/web.xml CWE-16 CWE-16 Medium Custom Vulnerability Alert CWE-0 CWE-0 High CVS Detected CWE-527 CWE-527 Medium CyberPanel RCE (CVE-2024-51567/CVE-2024-51568/CVE-2024-51378) CVE-2024-51567 CVE-2024-51568 CVE-2024-51378 CWE-306 CWE-306 Critical D-Link NAS Backdoor Account RCE (CVE-2024-3273, CVE-2024-3272) CVE-2024-3273 CVE-2024-3272 CWE-77 CWE-77 Critical D3.js Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-16044) CVE-2017-16044 CWE-200 CWE-200 High data: Used in a Content Security Policy (CSP) Directive CWE-16 CWE-16 Informational Database User Has Admin Privileges CWE-267 CWE-267 High Data Binding Expression Vulnerability in Spring Web Flow CVE-2017-4971 CWE-78 CWE-78 High datatables Cross-site Scripting (XSS) Vulnerability (CVE-2015-6584) CVE-2015-6584 Medium DataTables Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-23445) CVE-2021-23445 CWE-707 CWE-707 Medium DataTables Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36713) CVE-2021-36713 CWE-707 CWE-707 Medium DataTables Prototype Pollution Vulnerability (CVE-2020-28458) CVE-2020-28458 High default-src Used in Content Security Policy (CSP) CWE-16 CWE-16 Informational Delve Debugger Unauthorized Access Vulnerability CWE-200 CWE-200 High Deprecated Header Instruction Used to Implement Content Security Policy (CSP) CWE-16 CWE-16 Informational Deserialization of Untrusted Data (.NET BinaryFormatter Object Deserialization) CWE-502 CWE-502 High Deserialization of Untrusted Data (Java JSON Deserialization) Fastjson CWE-502 CWE-502 High Deserialization of Untrusted Data (Java JSON Deserialization) Genson CWE-502 CWE-502 High Deserialization of Untrusted Data (Java JSON Deserialization) Jackson CVE-2017-7525 CWE-502 CWE-502 High Deserialization of Untrusted Data (Java JSON Deserialization) JsonIO CWE-502 CWE-502 High Deserialization of Untrusted Data (Java Object Deserialization) CWE-502 CWE-502 High Deserialization of Untrusted Data (XStream) CVE-2013-7285 CVE-2020-26258 CVE-2020-26217 CWE-502 CWE-502 High Development configuration files CWE-538 CWE-538 Medium Devise weak password CWE-200 CWE-200 High Directory listings CWE-538 CWE-538 Medium Directory traversal CWE-22 CWE-22 High Directory Traversal (lib/translation.functions.php) (CMS Made Simple) v1.6.x CVE-2010-2797 CWE-22 CWE-22 High Directory Traversal (lib/translation.functions.php) (CMS Made Simple) v1.8.x CVE-2010-2797 CWE-22 CWE-22 High Directory Traversal with spring-cloud-config-server CVE-2020-5410 CWE-22 CWE-22 High Django 7PK - Security Features Vulnerability (CVE-2016-7401) CVE-2016-7401 High Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-6975) CVE-2019-6975 CWE-770 CWE-770 High Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-23969) CVE-2023-23969 CWE-770 CWE-770 High Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-46695) CVE-2023-46695 CWE-770 CWE-770 High Django Cleartext Transmission of Sensitive Information Vulnerability (CVE-2019-12781) CVE-2019-12781 CWE-319 CWE-319 Medium Django Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-0696) CVE-2011-0696 CWE-352 CWE-352 Medium Django Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-4140) CVE-2011-4140 CWE-352 CWE-352 Medium Django CVE-2014-1418 Vulnerability (CVE-2014-1418) CVE-2014-1418 Medium Django CVE-2024-24680 Vulnerability (CVE-2024-24680) CVE-2024-24680 High Django CVE-2024-41989 Vulnerability (CVE-2024-41989) CVE-2024-41989 High Django CVE-2024-41990 Vulnerability (CVE-2024-41990) CVE-2024-41990 High Django CVE-2024-45230 Vulnerability (CVE-2024-45230) CVE-2024-45230 High 1...21222324...306 22 / 306