Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Microsoft SQL Server Remote Code Execution Vulnerability (CVE-2019-1068) CVE-2019-1068 High Microsoft SQL Server Remote Code Execution Vulnerability (CVE-2020-0618) CVE-2020-0618 High Minify arbitrary file disclosure CVE-2013-6619 CWE-538 CWE-538 High MinIO Information Disclosure (CVE-2023-28432) CVE-2023-28432 CWE-200 CWE-200 High Misconfigured Access-Control-Allow-Origin Header CWE-942 CWE-942 Medium Misfortune Cookie vulnerability CVE-2014-9222 CWE-119 CWE-119 High Missing Authentication Check in SAP Solution Manager CVE-2020-6207 CWE-287 CWE-287 High Missing Content-Type Header CWE-436 CWE-358 CWE-436 CWE-358 Low Missing object-src in CSP Declaration CWE-942 CWE-942 Informational MobileIron Log4Shell RCE CVE-2021-44228 CWE-78 CWE-78 High MobileIron Remote Code Execution via LogService CVE-2020-15505 CWE-78 CWE-78 High MODX Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-8773) CVE-2014-8773 CWE-352 CWE-352 Medium MODX CVE-2017-7323 Vulnerability (CVE-2017-7323) CVE-2017-7323 High MODX Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-8775) CVE-2014-8775 CWE-200 CWE-200 Medium MODX Improper Certificate Validation Vulnerability (CVE-2017-7322) CVE-2017-7322 CWE-295 CWE-295 High MODX Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-7321) CVE-2017-7321 CWE-94 CWE-94 Critical MODX Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-7324) CVE-2017-7324 CWE-94 CWE-94 Critical MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2010-5278) CVE-2010-5278 CWE-22 CWE-22 Medium MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10037) CVE-2016-10037 CWE-22 CWE-22 High MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10038) CVE-2016-10038 CWE-22 CWE-22 High MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10039) CVE-2016-10039 CWE-22 CWE-22 High MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-8115) CVE-2017-8115 CWE-22 CWE-22 Medium MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-9067) CVE-2017-9067 CWE-22 CWE-22 High MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1000208) CVE-2018-1000208 CWE-22 CWE-22 High MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-4883) CVE-2010-4883 CWE-707 CWE-707 Low MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2080) CVE-2014-2080 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8774) CVE-2014-8774 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8992) CVE-2014-8992 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6588) CVE-2015-6588 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7320) CVE-2017-7320 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9068) CVE-2017-9068 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9070) CVE-2017-9070 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9071) CVE-2017-9071 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-11744) CVE-2017-11744 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-1000223) CVE-2017-1000223 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-10382) CVE-2018-10382 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20755) CVE-2018-20755 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20756) CVE-2018-20756 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20757) CVE-2018-20757 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20758) CVE-2018-20758 CWE-707 CWE-707 Medium MODX Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-2311) CVE-2014-2311 CWE-138 CWE-138 High MODX Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-2736) CVE-2014-2736 CWE-138 CWE-138 High MODX Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-1000067) CVE-2017-1000067 CWE-138 CWE-138 High MODX Improper Restriction of XML External Entity Reference Vulnerability (CVE-2020-25911) CVE-2020-25911 CWE-611 CWE-611 Critical MODX Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-1000207) CVE-2018-1000207 CWE-732 CWE-732 High MODX Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-9069) CVE-2017-9069 CWE-434 CWE-434 High MODX Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-1010123) CVE-2019-1010123 CWE-434 CWE-434 High MODX Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-26149) CVE-2022-26149 CWE-434 CWE-434 High mod_ssl Other Vulnerability (CVE-2002-0082) CVE-2002-0082 High mod_ssl Other Vulnerability (CVE-2004-0700) CVE-2004-0700 High MoinMoin CVE-2012-6081 multiple arbitrary code execution vulnerabilities CVE-2012-6081 CWE-434 CWE-434 High Mojolicious weak secret key CWE-693 CWE-693 Medium Moment.js Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-24785) CVE-2022-24785 CWE-22 CWE-22 High Moment.js Other Vulnerability (CVE-2022-31129) CVE-2022-31129 High Moment.js Uncontrolled Resource Consumption Vulnerability (CVE-2016-4055) CVE-2016-4055 CWE-400 CWE-400 Medium Moment.js Uncontrolled Resource Consumption Vulnerability (CVE-2017-18214) CVE-2017-18214 CWE-400 CWE-400 High MongoDB $where operator JavaScript injection CWE-943 CWE-943 High MongoDb Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2025-7259) CVE-2025-7259 CWE-843 CWE-843 Medium MongoDb Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-32036) CVE-2021-32036 CWE-770 CWE-770 High MongoDb Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-1847) CVE-2026-1847 CWE-770 CWE-770 High MongoDb Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-1848) CVE-2026-1848 CWE-770 CWE-770 High MongoDb Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-1850) CVE-2026-1850 CWE-770 CWE-770 High MongoDb Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-8202) CVE-2026-8202 CWE-770 CWE-770 Medium MongoDb CVE-2017-15535 Vulnerability (CVE-2017-15535) CVE-2017-15535 Critical MongoDb CVE-2019-2390 Vulnerability (CVE-2019-2390) CVE-2019-2390 High MongoDb CVE-2024-6384 Vulnerability (CVE-2024-6384) CVE-2024-6384 Medium MongoDb CVE-2024-7553 Vulnerability (CVE-2024-7553) CVE-2024-7553 High MongoDb CVE-2025-3082 Vulnerability (CVE-2025-3082) CVE-2025-3082 Medium MongoDb CVE-2025-6709 Vulnerability (CVE-2025-6709) CVE-2025-6709 High MongoDb CVE-2025-10061 Vulnerability (CVE-2025-10061) CVE-2025-10061 Medium MongoDb Double Free Vulnerability (CVE-2026-4358) CVE-2026-4358 CWE-415 CWE-415 High MongoDb Excessive Iteration Vulnerability (CVE-2018-20805) CVE-2018-20805 CWE-834 CWE-834 Medium MongoDb Excessive Iteration Vulnerability (CVE-2025-6714) CVE-2025-6714 CWE-834 CWE-834 High MongoDb Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6494) CVE-2016-6494 CWE-200 CWE-200 Medium MongoDb Externally Controlled Reference to a Resource in Another Sphere Vulnerability (CVE-2024-8207) CVE-2024-8207 CWE-610 CWE-610 Medium 1...87888990...327 88 / 327
