Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Grafana Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2024-9264) CVE-2024-9264 CWE-138 CWE-138 High Grafana Improper Verification of Cryptographic Signature Vulnerability (CVE-2022-31123) CVE-2022-31123 CWE-347 CWE-347 High Grafana Incorrect Authorization Vulnerability (CVE-2022-31107) CVE-2022-31107 CWE-863 CWE-863 High Grafana Incorrect Authorization Vulnerability (CVE-2026-21721) CVE-2026-21721 CWE-863 CWE-863 High Grafana Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-27962) CVE-2021-27962 CWE-732 CWE-732 High Grafana Insufficiently Protected Credentials Vulnerability (CVE-2022-31130) CVE-2022-31130 CWE-522 CWE-522 High Grafana Missing Authentication for Critical Function Vulnerability (CVE-2019-15043) CVE-2019-15043 CWE-306 CWE-306 High Grafana Open Redirect (CVE-2025-4123) CVE-2025-4123 CWE-601 CWE-601 High Grafana Out-of-bounds Write Vulnerability (CVE-2026-27880) CVE-2026-27880 CWE-787 CWE-787 High Grafana Plugin Dir Traversal (CVE-2021-43798) CVE-2021-43798 CWE-200 CWE-200 High Grafana Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-13379) CVE-2020-13379 CWE-918 CWE-918 High Grafana Snapshot Authentication Bypass (CVE-2021-39226) CVE-2021-39226 CWE-287 CWE-287 High Grafana Uncontrolled Resource Consumption Vulnerability (CVE-2026-21720) CVE-2026-21720 CWE-400 CWE-400 High Grafana URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-29170) CVE-2022-29170 CWE-601 CWE-601 High Grandnode Path Traversal (CVE-2019-12276) CVE-2019-12276 CWE-22 CWE-22 High Grav CMS Unauthenticated RCE (CVE-2021-21425) CVE-2021-21425 CWE-284 CWE-284 High GSAP CVE-2020-28478 Vulnerability (CVE-2020-28478) CVE-2020-28478 High Gunicorn Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2018-1000164) CVE-2018-1000164 CWE-707 CWE-707 High Hadoop YARN ResourceManager publicly accessible CWE-200 CWE-200 High Handlebars Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2026-33939) CVE-2026-33939 CWE-754 CWE-754 High Handlebars Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-20920) CVE-2019-20920 CWE-94 CWE-94 High Handlebars Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2026-33938) CVE-2026-33938 CWE-94 CWE-94 High Handlebars Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2026-33940) CVE-2026-33940 CWE-94 CWE-94 High Handlebars Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-33941) CVE-2026-33941 CWE-707 CWE-707 High Handlebars Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2019-20922) CVE-2019-20922 CWE-835 CWE-835 High Harbor Unauthorized Access Vulnerability CVE-2022-46463 CWE-200 CWE-200 High Hiawatha Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-8358) CVE-2019-8358 CWE-22 CWE-22 High Hibernate Query Language (HQL) Injection CWE-564 CWE-564 High Highcharts JS Incorrect Regular Expression Vulnerability (CVE-2018-20801) CVE-2018-20801 CWE-185 CWE-185 High HipChat for JIRA plugin - Velocity template injection CVE-2015-5603 CWE-94 CWE-94 High Horde/IMP Plesk webmail exploit CWE-20 CWE-20 High Horde Imp Unauthenticated Remote Command Execution CVE-2018-19518 CWE-94 CWE-94 High Horde remote code execution CVE-2014-1691 CWE-94 CWE-94 High Horizontal Broken Function Level Authorization (BFLA) CWE-639 CWE-639 High Horizontal IDOR/BOLA (Broken Object Level Authorization) CWE-639 CWE-639 High HTTP.sys remote code execution vulnerability CVE-2015-1635 CWE-119 CWE-119 High HTTP/2 pseudo-header server side request forgery CWE-918 CWE-918 High Http redirect security bypass CWE-20 CWE-20 High HTTP verb tampering via POST CWE-285 CWE-285 High IBMHttpServer Expired Pointer Dereference Vulnerability (CVE-2026-8854) CVE-2026-8854 CWE-825 CWE-825 High IBMHttpServer Heap-based Buffer Overflow Vulnerability (CVE-2026-8834) CVE-2026-8834 CWE-122 CWE-122 High IBMHttpServer Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2026-9170) CVE-2026-9170 CWE-94 CWE-94 High IBMHttpServer Improper Input Validation Vulnerability (CVE-2023-26281) CVE-2023-26281 CWE-20 CWE-20 High IBMHttpServer NULL Pointer Dereference Vulnerability (CVE-2026-8850) CVE-2026-8850 CWE-476 CWE-476 High IBMHttpServer Observable Discrepancy Vulnerability (CVE-2023-32342) CVE-2023-32342 CWE-203 CWE-203 High IBMHttpServer Other Vulnerability (CVE-2000-1168) CVE-2000-1168 High IBMHttpServer Other Vulnerability (CVE-2004-1082) CVE-2004-1082 High IBMHttpServer Reachable Assertion Vulnerability (CVE-2026-8852) CVE-2026-8852 CWE-617 CWE-617 High IBMHttpServer Untrusted Pointer Dereference Vulnerability (CVE-2026-8835) CVE-2026-8835 CWE-822 CWE-822 High IBM Lotus Domino web server Cross-Site Scripting vulnerabilities CVE-2012-3301 CVE-2012-3302 CWE-79 CWE-79 High IBM RTC Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-4252) CVE-2019-4252 CWE-22 CWE-22 High IBM RTC Improper Privilege Management Vulnerability (CVE-2021-29774) CVE-2021-29774 CWE-269 CWE-269 High IBM RTC Improper Restriction of XML External Entity Reference Vulnerability (CVE-2016-9707) CVE-2016-9707 CWE-611 CWE-611 High IBM RTC Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-1103) CVE-2017-1103 CWE-611 CWE-611 High IBM RTC Improper Restriction of XML External Entity Reference Vulnerability (CVE-2021-20502) CVE-2021-20502 CWE-611 CWE-611 High IBM RTC Inadequate Encryption Strength Vulnerability (CVE-2017-1701) CVE-2017-1701 CWE-326 CWE-326 High IBM RTC Inadequate Encryption Strength Vulnerability (CVE-2020-4965) CVE-2020-4965 CWE-326 CWE-326 High IBM RTC Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-7440) CVE-2015-7440 CWE-264 CWE-264 High IBM RTC Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-29844) CVE-2021-29844 CWE-918 CWE-918 High IBM Web Content Manager XPath injection CVE-2013-6735 CWE-643 CWE-643 High IBM WebSEAL 7PK - Security Features Vulnerability (CVE-2016-3025) CVE-2016-3025 High IBM WebSEAL CVE-2018-1850 Vulnerability (CVE-2018-1850) CVE-2018-1850 High IBM WebSEAL CVE-2019-4135 Vulnerability (CVE-2019-4135) CVE-2019-4135 High IBM WebSEAL CVE-2019-4145 Vulnerability (CVE-2019-4145) CVE-2019-4145 High IBM WebSEAL Improper Input Validation Vulnerability (CVE-2019-4036) CVE-2019-4036 CWE-20 CWE-20 High IBM WebSEAL Improper Restriction of XML External Entity Reference Vulnerability (CVE-2019-4707) CVE-2019-4707 CWE-611 CWE-611 High IBM WebSEAL Inadequate Encryption Strength Vulnerability (CVE-2018-1814) CVE-2018-1814 CWE-326 CWE-326 High IBM WebSEAL Insufficiently Protected Credentials Vulnerability (CVE-2021-20439) CVE-2021-20439 CWE-522 CWE-522 High IBM WebSEAL Other Vulnerability (CVE-2023-30997) CVE-2023-30997 High IBM WebSEAL Other Vulnerability (CVE-2023-30998) CVE-2023-30998 High IBM WebSEAL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2023-38371) CVE-2023-38371 CWE-327 CWE-327 High IBM WebSEAL Use of Hard-coded Credentials Vulnerability (CVE-2018-1887) CVE-2018-1887 CWE-798 CWE-798 High IBM WebSphere/WebLogic application source file exposure CWE-200 CWE-200 High IBM WebSphere administration console weak password CWE-200 CWE-200 High IBM WebSphere RCE Java Deserialization Vulnerability CVE-2015-7450 CWE-502 CWE-502 High 1...17181920...176 18 / 176
