Vulnerability Name CVE Severity
JSONP enabled by default in MappingJackson2JsonView CVE-2018-11040
JSP authentication bypass
jszip CVE-2021-23413 Vulnerability (CVE-2021-23413) CVE-2021-23413
jszip Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-48285) CVE-2022-48285
Juniper Junos OS J-Web RCE (CVE-2023-36845/CVE-2023-36846) CVE-2023-36845 CVE-2023-36846
Jupyter Notebook publicly accessible
JVM version leakage
JWT Signature Bypass via None Algorithm
Kayako Fusion v4.51.1891 - multiple web vulnerabilities
Kentico CMS Deserialization RCE CVE-2019-10068
Kentico CMS RCE CVE-2017-17736 CVE-2017-17736
Kentico Staging API Authentication Bypass
Kentico Staging API publicly accessible
Keycloak clients-registrations XSS (CVE-2021-20323) CVE-2021-20323
KeyCloak Information Disclosure (CVE-2020-27838) CVE-2020-27838
Keycloak request_uri SSRF (CVE-2020-10770) CVE-2020-10770
Knockout.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-14862) CVE-2019-14862
Kong Server Incorrect Authorization Vulnerability (CVE-2021-27306) CVE-2021-27306
Kong Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487) CVE-2023-44487
Kramer VIAware RCE (CVE-2021-36356/CVE-2021-35064) CVE-2021-36356 CVE-2019-17124 CVE-2021-35064
Laravel debug mode enabled
Laravel debug mode enabled (AcuSensor)
Laravel framework weak secret key
Laravel Health Monitor open
Laravel Horizon open
Laravel Ignition Reflected Cross-Site Scripting
Laravel log file publicly accessible
Laravel log viewer local file download (LFD) CVE-2018-8947
Laravel LogViewer open
Laravel Telescope open
Laravel Terminal open
LDAP injection
Liferay DXP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-25143) CVE-2024-25143
Liferay DXP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-26265) CVE-2024-26265
Liferay DXP Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2022-42129) CVE-2022-42129
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8980) CVE-2024-8980
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26271) CVE-2024-26271
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26272) CVE-2024-26272
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26273) CVE-2024-26273
Liferay DXP CVE-2021-29041 Vulnerability (CVE-2021-29041) CVE-2021-29041
Liferay DXP CVE-2021-33330 Vulnerability (CVE-2021-33330) CVE-2021-33330
Liferay DXP CVE-2021-38266 Vulnerability (CVE-2021-38266) CVE-2021-38266
Liferay DXP CVE-2022-42126 Vulnerability (CVE-2022-42126) CVE-2022-42126
Liferay DXP CVE-2024-25148 Vulnerability (CVE-2024-25148) CVE-2024-25148
Liferay DXP Deserialization of Untrusted Data Vulnerability (CVE-2020-15842) CVE-2020-15842
Liferay DXP Excessive Iteration Vulnerability (CVE-2024-25144) CVE-2024-25144
Liferay DXP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-42132) CVE-2022-42132
Liferay DXP Improper Certificate Validation Vulnerability (CVE-2022-42131) CVE-2022-42131
Liferay DXP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-42123) CVE-2022-42123
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29049) CVE-2021-29049
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38263) CVE-2021-38263
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38265) CVE-2021-38265
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38267) CVE-2021-38267
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38269) CVE-2021-38269
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-26593) CVE-2022-26593
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-26596) CVE-2022-26596
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-26597) CVE-2022-26597
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28978) CVE-2022-28978
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28979) CVE-2022-28979
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28982) CVE-2022-28982
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-38901) CVE-2022-38901
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-38902) CVE-2022-38902
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42110) CVE-2022-42110
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42111) CVE-2022-42111
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42112) CVE-2022-42112
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42114) CVE-2022-42114
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42116) CVE-2022-42116
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42117) CVE-2022-42117
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42118) CVE-2022-42118
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42119) CVE-2022-42119
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-33937) CVE-2023-33937
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-33938) CVE-2023-33938
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-33939) CVE-2023-33939
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-33940) CVE-2023-33940
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-33944) CVE-2023-33944