Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity .NET HTTP Remoting publicly exposed CWE-502 CWE-502 High .NET JSON.NET Deserialization RCE CWE-502 CWE-502 High AbanteCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2025-50971) CVE-2025-50971 CWE-22 CWE-22 High AbanteCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10755) CVE-2016-10755 CWE-138 CWE-138 High AbanteCart Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-26521) CVE-2022-26521 CWE-434 CWE-434 High ACME mini_httpd arbitrary file read CVE-2018-18778 CWE-23 CWE-23 High Adminer 4.6.2 file disclosure vulnerability CWE-22 CWE-22 High Adobe Coldfusion 8 multiple linked XSS vulnerabilies CVE-2009-1872 CWE-79 CWE-79 High Adobe ColdFusion 9 administrative login bypass CVE-2013-0625 CVE-2013-0629 CVE-2013-0631 CVE-2013-0632 CWE-287 CWE-287 High Adobe ColdFusion directory traversal CVE-2013-3336 CWE-22 CWE-22 High Adobe Experience Manager Blind XXE via package upload CVE-2025-54251 CVE-2025-54249 CVE-2025-54252 CVE-2025-54250 CVE-2025-54247 CVE-2025-54248 CVE-2025-54246 CWE-611 CWE-611 High Adobe Experience Manager exposed user passwords via querybuilder CVE-2025-54251 CVE-2025-54249 CVE-2025-54252 CVE-2025-54250 CVE-2025-54247 CVE-2025-54248 CVE-2025-54246 CWE-200 CWE-200 High Adobe Experience Manager Expression Language injection via cloudsettings CVE-2025-54251 CVE-2025-54249 CVE-2025-54252 CVE-2025-54250 CVE-2025-54247 CVE-2025-54248 CVE-2025-54246 CWE-94 CWE-94 High Adobe Experience Manager Misconfiguration CVE-2016-0957 CWE-693 CWE-693 High Adobe Experience Manager SSRF via MS token verify servlet CVE-2025-54251 CVE-2025-54249 CVE-2025-54252 CVE-2025-54250 CVE-2025-54247 CVE-2025-54248 CVE-2025-54246 CWE-918 CWE-918 High Adobe Experience Manager writable JCR nodes via querybuilder CVE-2025-54251 CVE-2025-54249 CVE-2025-54252 CVE-2025-54250 CVE-2025-54247 CVE-2025-54248 CVE-2025-54246 CWE-276 CWE-276 High Adobe Flex 3 DOM-based XSS vulnerability CVE-2008-2640 CWE-79 CWE-79 High Agentejo Cockpit CMS resetpassword NoSQLi (CVE-2020-35847) CVE-2020-35847 CWE-89 CWE-89 High AjaxControlToolkit directory traversal CVE-2015-4670 CWE-434 CWE-434 High AjaxPro.NET Professional Deserialization RCE (CVE-2021-23758) CVE-2021-23758 CWE-502 CWE-502 High Akeeba backup access control bypass CWE-287 CWE-287 High Alibaba Nacos Authentication Bypass (CVE-2021-29441) CVE-2021-29441 CWE-287 CWE-287 High Amazon S3 publicly writable bucket CWE-732 CWE-732 High Ampache Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-51484) CVE-2024-51484 CWE-352 CWE-352 High Ampache Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-51485) CVE-2024-51485 CWE-352 CWE-352 High Ampache Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-51487) CVE-2024-51487 CWE-352 CWE-352 High Ampache Deserialization of Untrusted Data Vulnerability (CVE-2017-18375) CVE-2017-18375 CWE-502 CWE-502 High Ampache Improper Access Control Vulnerability (CVE-2021-21399) CVE-2021-21399 CWE-284 CWE-284 High Ampache Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3929) CVE-2008-3929 CWE-59 CWE-59 High Ampache Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-51486) CVE-2024-51486 CWE-707 CWE-707 High Ampache Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-12385) CVE-2019-12385 CWE-138 CWE-138 High Ampache Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-0771) CVE-2023-0771 CWE-138 CWE-138 High Ampache Other Vulnerability (CVE-2006-5668) CVE-2006-5668 High Ampache Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-4665) CVE-2022-4665 CWE-434 CWE-434 High Angular Inefficient Regular Expression Complexity Vulnerability (CVE-2024-21490) CVE-2024-21490 CWE-1333 CWE-1333 High AngularJS client-side template injection CWE-79 CWE-79 High AngularJS Improper Input Validation Vulnerability (CVE-2019-10768) CVE-2019-10768 CWE-20 CWE-20 High AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2022-25844) CVE-2022-25844 CWE-1333 CWE-1333 High AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2024-21490) CVE-2024-21490 CWE-1333 CWE-1333 High Apache ActiveMQ default administrative credentials High Apache Airflow default credentials CWE-798 CWE-798 High Apache Airflow Experimental API Auth Bypass CVE-2020-13927 CVE-2020-13927 CWE-200 CWE-200 High Apache Airflow Unauthorized Access Vulnerability CWE-200 CWE-200 High Apache Axis2 administration console weak password CWE-200 CWE-200 High Apache Axis2 xsd local file inclusion CWE-22 CWE-22 High Apache CouchDB JSON Remote Privilege Escalation Vulnerability CVE-2017-12635 CWE-285 CWE-285 High Apache Flink jobmanager/logs Path Traversal CVE-2020-17519 CWE-22 CWE-22 High Apache Geronimo default administrative credentials CWE-693 CWE-693 High Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9517) CVE-2019-9517 CWE-770 CWE-770 High Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-30522) CVE-2022-30522 CWE-770 CWE-770 High Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-27316) CVE-2024-27316 CWE-770 CWE-770 High Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-29168) CVE-2026-29168 CWE-770 CWE-770 High Apache HTTP Server Buffer Over-read Vulnerability (CVE-2026-34059) CVE-2026-34059 CWE-126 CWE-126 High Apache HTTP Server Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2019-0217) CVE-2019-0217 CWE-362 CWE-362 High Apache HTTP Server Confusion Attacks CVE-2024-38472 CVE-2024-39573 CVE-2024-38477 CVE-2024-38476 CVE-2024-38475 CVE-2024-38474 CVE-2024-38473 CVE-2023-38709 CWE-436 CWE-436 High Apache HTTP Server Cryptographic Issues Vulnerability (CVE-2016-0736) CVE-2016-0736 High Apache HTTP Server CVE-1999-0236 Vulnerability (CVE-1999-0236) CVE-1999-0236 High Apache HTTP Server CVE-2002-0392 Vulnerability (CVE-2002-0392) CVE-2002-0392 High Apache HTTP Server CVE-2002-0839 Vulnerability (CVE-2002-0839) CVE-2002-0839 High Apache HTTP Server CVE-2013-2249 Vulnerability (CVE-2013-2249) CVE-2013-2249 High Apache HTTP Server CVE-2016-5387 Vulnerability (CVE-2016-5387) CVE-2016-5387 High Apache HTTP Server CVE-2016-8743 Vulnerability (CVE-2016-8743) CVE-2016-8743 High Apache HTTP Server CVE-2019-0190 Vulnerability (CVE-2019-0190) CVE-2019-0190 High Apache HTTP Server CVE-2019-0215 Vulnerability (CVE-2019-0215) CVE-2019-0215 High Apache HTTP Server Double Free Vulnerability (CVE-2026-23918) CVE-2026-23918 CWE-415 CWE-415 High Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-30556) CVE-2022-30556 CWE-200 CWE-200 High Apache HTTP Server Improper Access Control Vulnerability (CVE-2016-4979) CVE-2016-4979 CWE-284 CWE-284 High Apache HTTP Server Improper Authentication Vulnerability (CVE-2025-49812) CVE-2025-49812 CWE-287 CWE-287 High Apache HTTP Server Improper Encoding or Escaping of Output Vulnerability (CVE-2024-38473) CVE-2024-38473 CWE-116 CWE-116 High Apache HTTP Server Improper Input Validation Vulnerability (CVE-2016-2161) CVE-2016-2161 CWE-20 CWE-20 High Apache HTTP Server Improper Input Validation Vulnerability (CVE-2017-15715) CVE-2017-15715 CWE-20 CWE-20 High Apache HTTP Server Improper Input Validation Vulnerability (CVE-2024-39573) CVE-2024-39573 CWE-20 CWE-20 High Apache HTTP Server Improper Input Validation Vulnerability (CVE-2024-42516) CVE-2024-42516 CWE-20 CWE-20 High Apache HTTP Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-41773) CVE-2021-41773 CWE-22 CWE-22 High Apache HTTP Server Improper Locking Vulnerability (CVE-2002-1850) CVE-2002-1850 CWE-667 CWE-667 High 12345...176 1 / 176
