Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Sensitive Information Disclosure Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Xss - Known Vulnerabilities Vulnerability Name CVE CWE CWE Severity Ruby Use of Externally-Controlled Format String Vulnerability (CVE-2017-0898) CVE-2017-0898 CWE-134 CWE-134 Critical Rukovoditel Improper Input Validation Vulnerability (CVE-2020-11819) CVE-2020-11819 CWE-20 CWE-20 Critical Rukovoditel Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2022-48175) CVE-2022-48175 CWE-138 CWE-138 Critical Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11812) CVE-2020-11812 CWE-138 CWE-138 Critical Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11816) CVE-2020-11816 CWE-138 CWE-138 Critical Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11820) CVE-2020-11820 CWE-138 CWE-138 Critical Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-43168) CVE-2022-43168 CWE-138 CWE-138 Critical Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-44945) CVE-2022-44945 CWE-138 CWE-138 Critical Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11815) CVE-2020-11815 CWE-434 CWE-434 Critical Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11817) CVE-2020-11817 CWE-434 CWE-434 Critical SAP NetWeaver Visual Composer Unrestricted File Uploading (CVE-2025-31324) CVE-2025-31324 CWE-434 CWE-434 Critical ScreenConnect Auth bypass (CVE-2024-1709) CVE-2024-1709 CVE-2024-1708 CWE-288 CWE-288 Critical Serendipity Improper Access Control Vulnerability (CVE-2016-10082) CVE-2016-10082 CWE-284 CWE-284 Critical Serendipity Other Vulnerability (CVE-2005-1449) CVE-2005-1449 Critical Serendipity Other Vulnerability (CVE-2005-1452) CVE-2005-1452 Critical Serendipity Remote Code Execution (CVE-2020-10964) CVE-2020-10964 Critical Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2011-1134) CVE-2011-1134 CWE-434 CWE-434 Critical Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-10752) CVE-2016-10752 CWE-434 CWE-434 Critical Server-Side Request Forgery CWE-918 CWE-918 Critical Server-Side Request Forgery (Cloud Metadata) CWE-918 CWE-918 Critical Server-Side Template Injection CWE-20 CWE-20 Critical ServiceNow SSTI (CVE-2024-4879) CVE-2024-4879 CVE-2024-5217 CWE-1287 CWE-1287 Critical SharePoint "ToolShell" RCE (CVE-2025-49704/CVE-2025-49706/CVE-2025-53770/CVE-2025-53771) CVE-2025-49704 CVE-2025-49706 CVE-2025-53770 CVE-2025-53771 CWE-502 CWE-287 CWE-502 CWE-287 Critical SharePoint Authentication bypass (CVE-2023-29357) CVE-2023-29357 CWE-287 CWE-287 Critical SharePoint CVE-2020-17118 Vulnerability (CVE-2020-17118) CVE-2020-17118 Critical SharePoint CVE-2021-1707 Vulnerability (CVE-2021-1707) CVE-2021-1707 Critical SharePoint CVE-2021-1716 Vulnerability (CVE-2021-1716) CVE-2021-1716 Critical SharePoint CVE-2023-21716 Vulnerability (CVE-2023-21716) CVE-2023-21716 Critical SharePoint CVE-2023-29357 Vulnerability (CVE-2023-29357) CVE-2023-29357 Critical SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-53770) CVE-2025-53770 CWE-502 CWE-502 Critical SharePoint Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-0251) CVE-2014-0251 CWE-94 CWE-94 Critical SharePoint Improper Input Validation Vulnerability (CVE-2011-1989) CVE-2011-1989 CWE-20 CWE-20 Critical SharePoint Improper Input Validation Vulnerability (CVE-2019-0604) CVE-2019-0604 CWE-20 CWE-20 Critical SharePoint Improper Input Validation Vulnerability (CVE-2020-1025) CVE-2020-1025 CWE-20 CWE-20 Critical SharePoint Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-3889) CVE-2013-3889 CWE-119 CWE-119 Critical SharePoint Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-0260) CVE-2014-0260 CWE-119 CWE-119 Critical SharePoint Integer Overflow or Wraparound Vulnerability (CVE-2008-4019) CVE-2008-4019 CWE-190 CWE-190 Critical SharePoint Other Vulnerability (CVE-2014-6357) CVE-2014-6357 Critical SharePoint Other Vulnerability (CVE-2015-0085) CVE-2015-0085 Critical SharePoint Out-of-bounds Write Vulnerability (CVE-2021-1715) CVE-2021-1715 CWE-787 CWE-787 Critical SharePoint Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2816) CVE-2014-2816 CWE-264 CWE-264 Critical SharePoint Resource Management Errors Vulnerability (CVE-2008-3006) CVE-2008-3006 Critical SharePoint Resource Management Errors Vulnerability (CVE-2015-0064) CVE-2015-0064 Critical SharePoint Resource Management Errors Vulnerability (CVE-2015-0086) CVE-2015-0086 Critical silverstripeCMS CVE-2019-12204 Vulnerability (CVE-2019-12204) CVE-2019-12204 Critical silverstripeCMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-5715) CVE-2019-5715 CWE-138 CWE-138 Critical silverstripeCMS Other Vulnerability (CVE-2007-2321) CVE-2007-2321 Critical Sitecore XM/XP Insecure Deserialization (CVE-2025-27218) CVE-2025-27218 CWE-502 CWE-502 Critical Sitecore XP TemplateParser RCE (CVE-2023-35813) CVE-2023-35813 CWE-94 CWE-94 Critical Skipper Server-Side Request Forgery (SSRF) Vulnerability (CVE-2022-38580) CVE-2022-38580 CWE-918 CWE-918 Critical SolarWinds Web Help Desk Hardcoded Credential (CVE-2024-28987) CVE-2024-28987 CWE-798 CWE-798 Critical SolarWinds Web Help Desk RCE (CVE-2024-28986) CVE-2024-28986 CWE-502 CWE-502 Critical Spring Cloud Gateway Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression La Vulnerability (CVE-2022-22947) CVE-2022-22947 CWE-138 CWE-138 Critical SQL Injection CWE-89 CWE-89 Critical SQL injection in the authentication header CWE-89 CWE-89 Critical Sqlite CVE-2015-5895 Vulnerability (CVE-2015-5895) CVE-2015-5895 Critical Sqlite CVE-2021-20223 Vulnerability (CVE-2021-20223) CVE-2021-20223 Critical Sqlite Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2019-19646) CVE-2019-19646 CWE-754 CWE-754 Critical Sqlite Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2020-35527) CVE-2020-35527 CWE-119 CWE-119 Critical Sqlite Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2023-7104) CVE-2023-7104 CWE-119 CWE-119 Critical Sqlite Incorrect Conversion between Numeric Types Vulnerability (CVE-2019-19317) CVE-2019-19317 CWE-681 CWE-681 Critical Sqlite Numeric Truncation Error Vulnerability (CVE-2025-6965) CVE-2025-6965 CWE-197 CWE-197 Critical Sqlite Other Vulnerability (CVE-2022-46908) CVE-2022-46908 Critical Sqlite Out-of-bounds Read Vulnerability (CVE-2017-10989) CVE-2017-10989 CWE-125 CWE-125 Critical Sqlite Out-of-bounds Read Vulnerability (CVE-2019-8457) CVE-2019-8457 CWE-125 CWE-125 Critical Sqlite Use After Free Vulnerability (CVE-2020-11656) CVE-2020-11656 CWE-416 CWE-416 Critical Squid Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2019-12526) CVE-2019-12526 CWE-120 CWE-120 Critical Squid CVE-2019-12523 Vulnerability (CVE-2019-12523) CVE-2019-12523 Critical Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2019-12525) CVE-2019-12525 CWE-119 CWE-119 Critical Squid Integer Overflow or Wraparound Vulnerability (CVE-2020-11945) CVE-2020-11945 CWE-190 CWE-190 Critical Squid Missing Authentication for Critical Function Vulnerability (CVE-2019-12524) CVE-2019-12524 CWE-306 CWE-306 Critical Squid Out-of-bounds Write Vulnerability (CVE-2019-12519) CVE-2019-12519 CWE-787 CWE-787 Critical SugarCRM Improper Input Validation Vulnerability (CVE-2012-0694) CVE-2012-0694 CWE-20 CWE-20 Critical SugarCRM Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-6308) CVE-2018-6308 CWE-138 CWE-138 Critical SugarCRM Improper Restriction of XML External Entity Reference Vulnerability (CVE-2014-3244) CVE-2014-3244 CWE-611 CWE-611 Critical 1...1617181920 17 / 20
