Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Citrix Gateway Open Redirect And XSS Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Nexus Repository Manager Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-16619) CVE-2018-16619 CWE-707 CWE-707 Medium Nexus Repository Manager Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11629) CVE-2019-11629 CWE-707 CWE-707 Medium Nexus Repository Manager Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-14469) CVE-2019-14469 CWE-707 CWE-707 Medium Nexus Repository Manager Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29159) CVE-2021-29159 CWE-707 CWE-707 Medium Nexus Repository Manager Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-37152) CVE-2021-37152 CWE-707 CWE-707 Medium Nexus Repository Manager Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-43961) CVE-2021-43961 CWE-138 CWE-138 Medium Nexus Repository Manager Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') Vulnerability (CVE-2018-16621) CVE-2018-16621 CWE-138 CWE-138 High Nexus Repository Manager Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2019-5475) CVE-2019-5475 CWE-138 CWE-138 High Nexus Repository Manager Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2019-15588) CVE-2019-15588 CWE-138 CWE-138 High Nexus Repository Manager Improper Restriction of XML External Entity Reference Vulnerability (CVE-2020-29436) CVE-2020-29436 CWE-611 CWE-611 Medium Nexus Repository Manager Incorrect Authorization Vulnerability (CVE-2018-16620) CVE-2018-16620 CWE-863 CWE-863 High Nexus Repository Manager Incorrect Default Permissions Vulnerability (CVE-2019-9630) CVE-2019-9630 CWE-276 CWE-276 High Nexus Repository Manager Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-43293) CVE-2021-43293 CWE-918 CWE-918 Medium Nexus Repository Manager Server-Side Request Forgery (SSRF) Vulnerability (CVE-2022-27907) CVE-2022-27907 CWE-918 CWE-918 Medium Nexus Repository Manager Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-16530) CVE-2019-16530 CWE-434 CWE-434 High Nexus Repository Manager Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2017-17717) CVE-2017-17717 CWE-327 CWE-327 Critical Nginx Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9511) CVE-2019-9511 CWE-770 CWE-770 High Nginx Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9516) CVE-2019-9516 CWE-770 CWE-770 Medium Nginx Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2012-2089) CVE-2012-2089 CWE-120 CWE-120 Medium Nginx buffer underflow vulnerability CVE-2009-2629 CWE-119 CWE-119 High Nginx CVE-2009-4487 Vulnerability (CVE-2009-4487) CVE-2009-4487 Medium Nginx CVE-2010-4180 Vulnerability (CVE-2010-4180) CVE-2010-4180 Medium Nginx CVE-2011-4963 Vulnerability (CVE-2011-4963) CVE-2011-4963 Medium Nginx CVE-2013-2070 Vulnerability (CVE-2013-2070) CVE-2013-2070 Medium Nginx CVE-2023-27729 Vulnerability (CVE-2023-27729) CVE-2023-27729 High Nginx Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2263) CVE-2010-2263 CWE-200 CWE-200 Medium Nginx Improper Certificate Validation Vulnerability (CVE-2009-3555) CVE-2009-3555 CWE-295 CWE-295 Medium Nginx Improper Certificate Validation Vulnerability (CVE-2021-3618) CVE-2021-3618 CWE-295 CWE-295 High Nginx Improper Encoding or Escaping of Output Vulnerability (CVE-2013-4547) CVE-2013-4547 CWE-116 CWE-116 High Nginx Improper Input Validation Vulnerability (CVE-2011-4968) CVE-2011-4968 CWE-20 CWE-20 Medium Nginx Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2009-3898) CVE-2009-3898 CWE-22 CWE-22 Medium Nginx Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2010-2266) CVE-2010-2266 CWE-22 CWE-22 Medium Nginx Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2016-1247) CVE-2016-1247 CWE-59 CWE-59 High Nginx Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2014-3556) CVE-2014-3556 CWE-138 CWE-138 Medium Nginx Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-3896) CVE-2009-3896 CWE-119 CWE-119 Medium Nginx Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-0088) CVE-2014-0088 CWE-119 CWE-119 High Nginx Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-20372) CVE-2019-20372 CWE-444 CWE-444 Medium Nginx Insufficient Session Expiration Vulnerability (CVE-2014-3616) CVE-2014-3616 CWE-613 CWE-613 Medium Nginx Integer Overflow or Wraparound Vulnerability (CVE-2017-7529) CVE-2017-7529 CWE-190 CWE-190 High Nginx Integer Overflow or Wraparound Vulnerability (CVE-2017-20005) CVE-2017-20005 CWE-190 CWE-190 Critical Nginx Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-16845) CVE-2018-16845 CWE-835 CWE-835 Medium Nginx memory disclosure with specially crafted HTTP backend responses CVE-2012-1180 CWE-399 CWE-399 High Nginx Off-by-one Error Vulnerability (CVE-2021-23017) CVE-2021-23017 CWE-193 CWE-193 High Nginx Other Vulnerability (CVE-2016-0742) CVE-2016-0742 High Nginx Other Vulnerability (CVE-2016-0746) CVE-2016-0746 Critical Nginx Other Vulnerability (CVE-2016-4450) CVE-2016-4450 High Nginx Other Vulnerability (CVE-2019-9513) CVE-2019-9513 High Nginx Out-of-bounds Read Vulnerability (CVE-2022-38890) CVE-2022-38890 CWE-125 CWE-125 High Nginx Out-of-bounds Read Vulnerability (CVE-2023-27727) CVE-2023-27727 CWE-125 CWE-125 High Nginx Out-of-bounds Read Vulnerability (CVE-2023-27728) CVE-2023-27728 CWE-125 CWE-125 High Nginx Out-of-bounds Read Vulnerability (CVE-2023-27730) CVE-2023-27730 CWE-125 CWE-125 High Nginx Out-of-bounds Write Vulnerability (CVE-2009-2629) CVE-2009-2629 CWE-787 CWE-787 High Nginx Out-of-bounds Write Vulnerability (CVE-2011-4315) CVE-2011-4315 CWE-787 CWE-787 Medium Nginx Out-of-bounds Write Vulnerability (CVE-2013-2028) CVE-2013-2028 CWE-787 CWE-787 High Nginx Out-of-bounds Write Vulnerability (CVE-2014-0133) CVE-2014-0133 CWE-787 CWE-787 High Nginx Out-of-bounds Write Vulnerability (CVE-2022-41741) CVE-2022-41741 CWE-787 CWE-787 High Nginx Out-of-bounds Write Vulnerability (CVE-2022-41742) CVE-2022-41742 CWE-787 CWE-787 High Nginx Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0337) CVE-2013-0337 CWE-264 CWE-264 High Nginx PHP code execution via FastCGI CWE-94 CWE-94 High nginx range filter integer overflow CVE-2017-7529 CWE-200 CWE-200 Medium Nginx Redirect Header Injection CWE-93 CWE-93 Medium Nginx Resource Management Errors Vulnerability (CVE-2016-0747) CVE-2016-0747 Medium nginx SPDY heap buffer overflow CVE-2014-0133 CWE-122 CWE-122 High Nginx stack-based buffer overflow CVE-2013-2028 CWE-189 CWE-189 High Nginx Uncontrolled Resource Consumption Vulnerability (CVE-2018-16843) CVE-2018-16843 CWE-400 CWE-400 High Nginx Uncontrolled Resource Consumption Vulnerability (CVE-2018-16844) CVE-2018-16844 CWE-400 CWE-400 High Nginx Use After Free Vulnerability (CVE-2012-1180) CVE-2012-1180 CWE-416 CWE-416 Medium Nginx Use After Free Vulnerability (CVE-2022-31307) CVE-2022-31307 CWE-416 CWE-416 Medium Nginx Use After Free Vulnerability (CVE-2022-32414) CVE-2022-32414 CWE-416 CWE-416 Medium node-serialize Insecure Deserialization CVE-2017-5941 CWE-502 CWE-502 High Node.js Debugger Unauthorized Access Vulnerability CWE-200 CWE-200 High Node.js Inspector Unauthorized Access Vulnerability CWE-200 CWE-200 High Node.js path validation vulnerability CVE-2017-14849 CWE-22 CWE-22 High Node.js Running in Development Mode CWE-215 CWE-215 Medium Node.js Web Application does not handle uncaughtException CWE-248 CWE-248 Medium 1...95969798...275 96 / 275
