Vulnerability Name CVE Severity
jQuery UI Dialog Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41182) CVE-2021-41182
jQuery UI Dialog Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41183) CVE-2021-41183
jQuery UI Dialog Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41184) CVE-2021-41184
jQuery UI Dialog Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-31160) CVE-2022-31160
jQuery UI Tooltip Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-5312) CVE-2010-5312
jQuery UI Tooltip Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41182) CVE-2021-41182
jQuery UI Tooltip Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41183) CVE-2021-41183
jQuery UI Tooltip Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41184) CVE-2021-41184
jQuery UI Tooltip Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-31160) CVE-2022-31160
jQuery Validation Other Vulnerability (CVE-2021-43306) CVE-2021-43306
jQuery Validation Other Vulnerability (CVE-2022-31147) CVE-2022-31147
jQuery Validation Uncontrolled Resource Consumption Vulnerability (CVE-2021-21252) CVE-2021-21252
JSF ViewState client side storage
JSONP enabled by default in MappingJackson2JsonView CVE-2018-11040
JSP authentication bypass
jszip CVE-2021-23413 Vulnerability (CVE-2021-23413) CVE-2021-23413
jszip Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-48285) CVE-2022-48285
Juniper Junos OS J-Web RCE (CVE-2023-36845/CVE-2023-36846) CVE-2023-36845 CVE-2023-36846
Jupyter Notebook publicly accessible
JVM version leakage
JWT Signature Bypass via kid Path Traversal
JWT Signature Bypass via kid SQL injection
JWT Signature Bypass via None Algorithm
JWT Signature Bypass via unvalidated jku parameter
JWT Signature Bypass via unvalidated jwk parameter
JWT Signature Bypass via unvalidated x5c parameter
JWT Signature Bypass via unvalidated x5u parameter
JWT Signature is not Verified
Kayako Fusion v4.51.1891 - multiple web vulnerabilities
Kentico CMS Deserialization RCE CVE-2019-10068
Kentico CMS RCE CVE-2017-17736 CVE-2017-17736
Kentico Staging API Authentication Bypass
Kentico Staging API publicly accessible
Keycloak clients-registrations XSS (CVE-2021-20323) CVE-2021-20323
KeyCloak Information Disclosure (CVE-2020-27838) CVE-2020-27838
Keycloak request_uri SSRF (CVE-2020-10770) CVE-2020-10770
Knockout.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-14862) CVE-2019-14862
Kong Server Incorrect Authorization Vulnerability (CVE-2021-27306) CVE-2021-27306
Kong Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487) CVE-2023-44487
Kramer VIAware RCE (CVE-2021-36356/CVE-2021-35064) CVE-2021-36356 CVE-2019-17124 CVE-2021-35064
Laravel debug mode enabled
Laravel debug mode enabled (AcuSensor)
Laravel framework weak secret key
Laravel Health Monitor open
Laravel Horizon open
Laravel Ignition Reflected Cross-Site Scripting
Laravel log file publicly accessible
Laravel log viewer local file download (LFD) CVE-2018-8947
Laravel LogViewer open
Laravel Telescope open
Laravel Terminal open
LDAP injection
Liferay DXP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-25143) CVE-2024-25143
Liferay DXP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-26265) CVE-2024-26265
Liferay DXP Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2022-42129) CVE-2022-42129
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8980) CVE-2024-8980
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26271) CVE-2024-26271
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26272) CVE-2024-26272
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26273) CVE-2024-26273
Liferay DXP CVE-2021-29041 Vulnerability (CVE-2021-29041) CVE-2021-29041
Liferay DXP CVE-2021-33330 Vulnerability (CVE-2021-33330) CVE-2021-33330
Liferay DXP CVE-2021-38266 Vulnerability (CVE-2021-38266) CVE-2021-38266
Liferay DXP CVE-2022-42126 Vulnerability (CVE-2022-42126) CVE-2022-42126
Liferay DXP CVE-2022-45320 Vulnerability (CVE-2022-45320) CVE-2022-45320
Liferay DXP CVE-2024-25148 Vulnerability (CVE-2024-25148) CVE-2024-25148
Liferay DXP Deserialization of Untrusted Data Vulnerability (CVE-2020-15842) CVE-2020-15842
Liferay DXP Excessive Iteration Vulnerability (CVE-2024-25144) CVE-2024-25144
Liferay DXP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-42132) CVE-2022-42132
Liferay DXP Improper Certificate Validation Vulnerability (CVE-2022-42131) CVE-2022-42131
Liferay DXP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-42123) CVE-2022-42123
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29049) CVE-2021-29049
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38263) CVE-2021-38263
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38265) CVE-2021-38265
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38267) CVE-2021-38267
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38269) CVE-2021-38269