Vulnerability Name CVE Severity
Chamilo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-50190) CVE-2025-50190
Chamilo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-50192) CVE-2025-50192
Chamilo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2026-28430) CVE-2026-28430
Chamilo Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-50199) CVE-2025-50199
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-13082) CVE-2019-13082
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-34944) CVE-2023-34944
Chamilo Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2026-33707) CVE-2026-33707
ChatGPT-Next-Web SSRF (CVE-2023-49785) CVE-2023-49785
Check Point Gateway Path Traversal (CVE-2024-24919) CVE-2024-24919
Cherokee Out-of-bounds Write Vulnerability (CVE-2019-20800) CVE-2019-20800
Cisco IOS XE Web UI Authentication Bypass (CVE-2023-20198) CVE-2023-20198
Cisco IOS XE Web UI Implant (CVE-2023-20198) CVE-2023-20198
Citrix NetScaler Memory Disclosure 'Citrix Bleed' (CVE-2023-4966) CVE-2023-4966
Citrix NetScaler Memory Disclosure 'Citrix Bleed 2' (CVE-2025-5777) CVE-2025-5777 CVE-2025-5349
Citrix NetScaler Memory Overread (CVE-2026-3055) CVE-2026-3055
CKEditor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-31541) CVE-2023-31541
Claroline Other Vulnerability (CVE-2006-0411) CVE-2006-0411
Claroline Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-37159) CVE-2022-37159
Cleo Harmony/VLTrader/LexiCom RCE (CVE-2024-50623, CVE-2024-55956) CVE-2024-50623 CVE-2024-55956
ClipBucket Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2018-7664) CVE-2018-7664
ClipBucket Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-7666) CVE-2018-7666
ClipBucket Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2013-10040) CVE-2013-10040
ClipBucket Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-7665) CVE-2018-7665
CloudPanel file-manager Auth bypass (CVE-2023-35885) CVE-2023-35885
Code Evaluation (Apache Struts) S2-016 CVE-2013-2251
Code Evaluation (Apache Struts) S2-045 CVE-2017-5638
Code Evaluation (ASP)
Code Evaluation (Perl)
Code Evaluation (PHP)
Code Evaluation (Python)
Code Evaluation (Ruby)
ColdFusion WDDX Deserialization RCE (CVE-2023-29300/CVE-2023-38203/CVE-2023-38204) CVE-2023-29300 CVE-2023-38203 CVE-2023-38204
ColdFusion WDDX Deserialization RCE (CVE-2023-44353) CVE-2023-44353
Collabtive Improper Privilege Management Vulnerability (CVE-2013-5027) CVE-2013-5027
Command Injection
concrete5 Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-22958) CVE-2021-22958
Contao Deserialization of Untrusted Data Vulnerability (CVE-2014-1860) CVE-2014-1860
Contao Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-16558) CVE-2017-16558
Contao Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-11512) CVE-2019-11512
Contao Key Management Errors Vulnerability (CVE-2019-10643) CVE-2019-10643
Contao Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2019-10641) CVE-2019-10641
Craft CMS Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2025-68456) CVE-2025-68456
Craft CMS CVE-2025-32432 Vulnerability (CVE-2025-32432) CVE-2025-32432
Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-27903) CVE-2021-27903
Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-41892) CVE-2023-41892
Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-56145) CVE-2024-56145
Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2026-28783) CVE-2026-28783
Craft CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-37843) CVE-2024-37843
Craft CMS Improper Neutralization of Special Elements Used in a Template Engine Vulnerability (CVE-2026-28697) CVE-2026-28697
Craft CMS Incorrect Authorization Vulnerability (CVE-2026-32267) CVE-2026-32267
Craft CMS RCE (CVE-2023-41892) CVE-2023-41892
Craft CMS RCE (CVE-2025-32432) CVE-2025-32432
Craft CMS register_argc_argv RCE (CVE-2024-56145) CVE-2024-56145
Craft CMS Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2019-15929) CVE-2019-15929
CrushFTP Authentication Bypass (CVE-2025-2825) CVE-2025-2825
CrushFTP Server Deserialization of Untrusted Data Vulnerability (CVE-2017-14035) CVE-2017-14035
CrushFTP Server Improper Control of Dynamically-Managed Code Resources Vulnerability (CVE-2023-43177) CVE-2023-43177
CrushFTP Server Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-4040) CVE-2024-4040
CrushFTP Server Other Vulnerability (CVE-2025-31161) CVE-2025-31161
CrushFTP Server Unprotected Alternate Channel Vulnerability (CVE-2025-54309) CVE-2025-54309
CrushFTP Server Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2024-53552) CVE-2024-53552
CrushFTP SSTI (CVE-2024-4040) CVE-2024-4040
CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-34832) CVE-2024-34832
CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-20716) CVE-2018-20716
CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2026-34018) CVE-2026-34018
CWP (Control Web Panel) < 0.9.8.1205 - Remote Code Execution (CVE-2025-48703) CVE-2025-48703
CyberPanel RCE (CVE-2024-51567/CVE-2024-51568/CVE-2024-51378) CVE-2024-51567 CVE-2024-51568 CVE-2024-51378
D-Link NAS Backdoor Account RCE (CVE-2024-3273, CVE-2024-3272) CVE-2024-3273 CVE-2024-3272
Django Improper Input Validation Vulnerability (CVE-2023-31047) CVE-2023-31047
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-14234) CVE-2019-14234
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-7471) CVE-2020-7471
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-35042) CVE-2021-35042
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-28346) CVE-2022-28346
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-28347) CVE-2022-28347
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-34265) CVE-2022-34265