Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Apache HTTP Server Resource Management Errors Vulnerability (CVE-2012-4557) CVE-2012-4557 Medium Apache HTTP Server Resource Management Errors Vulnerability (CVE-2014-0231) CVE-2014-0231 Medium Apache HTTP Server Resource Management Errors Vulnerability (CVE-2014-3523) CVE-2014-3523 Medium Apache HTTP Server Resource Management Errors Vulnerability (CVE-2016-1546) CVE-2016-1546 Medium Apache HTTP Server Resource Management Errors Vulnerability (CVE-2016-8740) CVE-2016-8740 High Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-40438) CVE-2021-40438 CWE-918 CWE-918 Critical Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-38472) CVE-2024-38472 CWE-918 CWE-918 High Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-40898) CVE-2024-40898 CWE-918 CWE-918 High Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-43204) CVE-2024-43204 CWE-918 CWE-918 High Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-43394) CVE-2024-43394 CWE-918 CWE-918 High Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-59775) CVE-2025-59775 CWE-918 CWE-918 High Apache HTTP Server Session Fixation Vulnerability (CVE-2001-1534) CVE-2001-1534 CWE-384 CWE-384 Low Apache HTTP Server Session Fixation Vulnerability (CVE-2018-17199) CVE-2018-17199 CWE-384 CWE-384 High Apache HTTP Server Source Code Disclosure CWE-540 CWE-540 Medium Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2009-1890) CVE-2009-1890 CWE-400 CWE-400 High Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2009-1891) CVE-2009-1891 CWE-400 CWE-400 High Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2011-3192) CVE-2011-3192 CWE-400 CWE-400 High Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2011-3348) CVE-2011-3348 CWE-400 CWE-400 Medium Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2014-0118) CVE-2014-0118 CWE-400 CWE-400 Medium Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2018-1333) CVE-2018-1333 CWE-400 CWE-400 High Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2018-17189) CVE-2018-17189 CWE-400 CWE-400 Medium Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-43622) CVE-2023-43622 CWE-400 CWE-400 High Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-45802) CVE-2023-45802 CWE-400 CWE-400 Medium Apache HTTP Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-10098) CVE-2019-10098 CWE-601 CWE-601 Medium Apache HTTP Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-1927) CVE-2020-1927 CWE-601 CWE-601 Medium Apache HTTP Server Use After Free Vulnerability (CVE-2017-9789) CVE-2017-9789 CWE-416 CWE-416 High Apache HTTP Server Use After Free Vulnerability (CVE-2017-9798) CVE-2017-9798 CWE-416 CWE-416 High Apache HTTP Server Use After Free Vulnerability (CVE-2019-0196) CVE-2019-0196 CWE-416 CWE-416 Medium Apache HTTP Server Use After Free Vulnerability (CVE-2019-0211) CVE-2019-0211 CWE-416 CWE-416 High Apache HTTP Server Use After Free Vulnerability (CVE-2019-10082) CVE-2019-10082 CWE-416 CWE-416 Critical Apache HTTP Server Use of Incorrectly-Resolved Name or Reference Vulnerability (CVE-2019-0220) CVE-2019-0220 CWE-706 CWE-706 Medium Apache HTTP Server Use of Uninitialized Resource Vulnerability (CVE-2020-1934) CVE-2020-1934 CWE-908 CWE-908 Medium Apache JServ protocol service CWE-200 CWE-200 Medium Apache Kafka Unauthorized Access Vulnerability CWE-200 CWE-200 Medium Apache Log4j2 JNDI Remote Code Execution CVE-2021-44228 CWE-78 CWE-78 Critical Apache Log4j2 JNDI Remote Code Execution (404 page handler) CVE-2021-44228 CWE-78 CWE-78 Critical Apache Log4j2 JNDI Remote Code Execution (delayed) CVE-2021-44228 CWE-78 CWE-78 Critical Apache Log4j2 JNDI Remote Code Execution (per folder) CVE-2021-44228 CWE-78 CWE-78 Critical Apache Log4j socket receiver deserialization vulnerability CVE-2017-5645 CWE-502 CWE-502 Critical Apache mod_jk access control bypass CVE-2018-11759 CWE-918 CWE-918 Medium Apache mod_negotiation filename bruteforcing CWE-538 CWE-538 Low Apache mod_rewrite open redirect CVE-2019-10098 CWE-601 CWE-601 Medium Apache OFBiz Authentication Bypass (CVE-2023-51467) CVE-2023-51467 CWE-287 CWE-287 Critical Apache OFBiz Log4Shell RCE CVE-2021-44228 CWE-78 CWE-78 High Apache OFBiz RCE (CVE-2024-32113/CVE-2024-36104/CVE-2024-38856) CVE-2024-32113 CVE-2024-36104 CVE-2024-38856 CWE-22 CWE-22 Critical Apache OFBiz RCE (CVE-2024-45195) CVE-2024-45195 CWE-425 CWE-425 Critical Apache OFBiz SOAPService Deserialization RCE CVE-2021-26295 CWE-502 CWE-502 High Apache OFBiz SSRF (CVE-2023-50968) CVE-2023-50968 CWE-918 CWE-918 High Apache OFBiz SSRF (CVE-2024-45507) CVE-2024-45507 CWE-918 CWE-918 Critical Apache OFBiz XMLRPC Deserialization RCE (CVE-2020-9496/CVE-2023-49070) CVE-2020-9496 CVE-2023-49070 CWE-502 CWE-502 High Apache perl-status enabled CWE-200 CWE-200 Medium Apache Proxy HTTP CONNECT method enabled CWE-441 CWE-441 Medium Apache read beyond bounds in mod_isapi Vulnerability (CVE-2022-28330) CVE-2022-28330 Medium Apache read beyond bounds via ap_rwrite() Vulnerability (CVE-2022-28614) CVE-2022-28614 Medium Apache REST RCE CVE-2018-11770 CVE-2018-11770 CWE-94 CWE-94 High Apache Roller OGNL injection CVE-2013-4212 CWE-20 CWE-20 High Apache Server-Info Detected CWE-200 CWE-200 Medium Apache Server-Status Detected CWE-200 CWE-200 Medium Apache Shiro authentication bypass CVE-2020-17523 CWE-287 CWE-287 High Apache Shiro Deserialization RCE CVE-2016-4437 CWE-78 CWE-78 High Apache Solr Deserialization of untrusted data via jmx.serviceUrl CVE-2019-0192 High Apache Solr endpoint CWE-200 CWE-200 Low Apache Solr Log4Shell RCE CVE-2021-44228 CWE-78 CWE-78 High Apache Solr Parameter Injection CWE-88 CWE-88 Medium Apache solr service exposed CWE-200 CWE-200 High Apache Solr SSRF CVE-2017-3164 CVE-2017-3164 CWE-918 CWE-918 Medium Apache Spark Master Unauthorized Access Vulnerability CWE-200 CWE-200 High Apache Spark Web UI Unauthorized Access Vulnerability CWE-200 CWE-200 Medium Apache stronghold-info enabled CWE-200 CWE-200 Low Apache stronghold-status enabled CWE-200 CWE-200 Low Apache Struts 2 ClassLoader manipulation and denial of service CVE-2014-0112 CVE-2014-0113 CVE-2014-0114 CWE-701 CWE-701 High Apache Struts 2 ClassLoader manipulation and denial of service (S2-020) CVE-2014-0094 CVE-2014-0050 CWE-701 CWE-701 High Apache Struts2 remote code execution vulnerability CVE-2016-0785 CWE-78 CWE-78 Critical Apache Struts2 Remote Command Execution (S2-048) CVE-2017-9791 CWE-94 CWE-94 High Apache Struts2 Remote Command Execution (S2-052) CVE-2017-9805 CWE-94 CWE-94 High 1...5678...327 6 / 327
