Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Sensitive Information Disclosure Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Xss - Known Vulnerabilities Vulnerability Name CVE CWE CWE Severity WordPress Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2007-6013) CVE-2007-6013 CWE-327 CWE-327 Critical WP Plugin Contact Form 7 CVE-2018-20979 Vulnerability (CVE-2018-20979) CVE-2018-20979 Critical WP Plugin Contact Form 7 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-35489) CVE-2020-35489 CWE-434 CWE-434 Critical WS_FTP AHT Deserialization RCE (CVE-2023-40044) CVE-2023-40044 CWE-502 CWE-502 Critical XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-36217) CVE-2023-36217 CWE-707 CWE-707 Critical XOOPS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-11174) CVE-2017-11174 CWE-138 CWE-138 Critical XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-37277) CVE-2023-37277 CWE-352 CWE-352 Critical XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-26477) CVE-2023-26477 CWE-94 CWE-94 Critical XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46731) CVE-2023-46731 CWE-94 CWE-94 Critical XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-21650) CVE-2024-21650 CWE-94 CWE-94 Critical XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-36094) CVE-2022-36094 CWE-707 CWE-707 Critical XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-36096) CVE-2022-36096 CWE-707 CWE-707 Critical XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-36098) CVE-2022-36098 CWE-707 CWE-707 Critical XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-29201) CVE-2023-29201 CWE-707 CWE-707 Critical XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-29202) CVE-2023-29202 CWE-707 CWE-707 Critical XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-29207) CVE-2023-29207 CWE-707 CWE-707 Critical XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31126) CVE-2023-31126 CWE-707 CWE-707 Critical XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-32071) CVE-2023-32071 CWE-707 CWE-707 Critical XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45134) CVE-2023-45134 CWE-707 CWE-707 Critical XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45136) CVE-2023-45136 CWE-707 CWE-707 Critical XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-27479) CVE-2023-27479 CWE-138 CWE-138 Critical XWiki Inadequate Encryption Strength Vulnerability (CVE-2022-29161) CVE-2022-29161 CWE-326 CWE-326 Critical XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-31982) CVE-2024-31982 CWE-94 CWE-94 Critical XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-31996) CVE-2024-31996 CWE-94 CWE-94 Critical XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2025-24893) CVE-2025-24893 CWE-94 CWE-94 Critical XWikiplatform Improper Encoding or Escaping of Output Vulnerability (CVE-2024-55663) CVE-2024-55663 CWE-116 CWE-116 Critical XWikiplatform Improper Encoding or Escaping of Output Vulnerability (CVE-2025-32974) CVE-2025-32974 CWE-116 CWE-116 Critical XWikiplatform Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-32969) CVE-2025-32969 CWE-138 CWE-138 Critical XWikiplatform Missing Authorization Vulnerability (CVE-2025-29926) CVE-2025-29926 CWE-862 CWE-862 Critical XWikiplatform Missing Authorization Vulnerability (CVE-2025-32973) CVE-2025-32973 CWE-862 CWE-862 Critical YOURLS Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2019-14537) CVE-2019-14537 CWE-843 CWE-843 Critical ZenCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-8352) CVE-2015-8352 CWE-22 CWE-22 Critical ZenCart Permissions, Privileges, and Access Controls Vulnerability (CVE-2006-0697) CVE-2006-0697 CWE-264 CWE-264 Critical Zikula Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-2293) CVE-2014-2293 CWE-94 CWE-94 Critical Zikula Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2016-9835) CVE-2016-9835 CWE-138 CWE-138 Critical Zope Web Application Server CVE-2011-3587 Vulnerability (CVE-2011-3587) CVE-2011-3587 Critical Zope Web Application Server Other Vulnerability (CVE-2000-0062) CVE-2000-0062 Critical 1...1617181920 20 / 20
