Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Owasp Api Bfla Owasp Api Bola Owasp Api Broken Auth Owasp Api Broken Object Prop Auth Owasp Api Dos Owasp Api Improper Inventory Management Owasp Api Misconfiguration Owasp Api Ssrf Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Paperclip gem SSRF (Server side request forgery) CVE-2017-0889 CWE-918 CWE-918 High Parallels Plesk SQL injection vulnerability CVE-2012-1557 CWE-89 CWE-89 High Parallels Plesk SSO XML External Entity and Cross-site scripting CWE-611 CWE-611 High Path Traversal in Oracle GlassFish server open source edition CWE-22 CWE-22 High Path traversal via misconfigured NGINX alias CWE-22 CWE-22 High Payara Files or Directories Accessible to External Parties Vulnerability (CVE-2022-45129) CVE-2022-45129 CWE-552 CWE-552 High Payara Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-37422) CVE-2022-37422 CWE-22 CWE-22 High Payara Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-8215) CVE-2024-8215 CWE-707 CWE-707 High Pentaho API Auth bypass (CVE-2021-31602) CVE-2021-31602 CWE-863 CWE-863 High Perl Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2020-12723) CVE-2020-12723 CWE-120 CWE-120 High Perl CVE-2016-6185 Vulnerability (CVE-2016-6185) CVE-2016-6185 High Perl Improper Certificate Validation Vulnerability (CVE-2023-31484) CVE-2023-31484 CWE-295 CWE-295 High Perl Improper Certificate Validation Vulnerability (CVE-2023-31486) CVE-2023-31486 CWE-295 CWE-295 High Perl Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-6329) CVE-2012-6329 CWE-94 CWE-94 High Perl Improper Input Validation Vulnerability (CVE-2015-8853) CVE-2015-8853 CWE-20 CWE-20 High Perl Improper Input Validation Vulnerability (CVE-2016-2381) CVE-2016-2381 CWE-20 CWE-20 High Perl Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2018-12015) CVE-2018-12015 CWE-59 CWE-59 High Perl Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-5195) CVE-2012-5195 CWE-119 CWE-119 High Perl Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-12837) CVE-2017-12837 CWE-119 CWE-119 High Perl Integer Overflow or Wraparound Vulnerability (CVE-2020-10878) CVE-2020-10878 CWE-190 CWE-190 High Perl Numeric Errors Vulnerability (CVE-2013-7422) CVE-2013-7422 High Perl Out-of-bounds Read Vulnerability (CVE-2018-6798) CVE-2018-6798 CWE-125 CWE-125 High Perl Out-of-bounds Write Vulnerability (CVE-2023-47038) CVE-2023-47038 CWE-787 CWE-787 High Perl Out-of-bounds Write Vulnerability (CVE-2023-47039) CVE-2023-47039 CWE-787 CWE-787 High Perl Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-1238) CVE-2016-1238 CWE-264 CWE-264 High Perl Resource Management Errors Vulnerability (CVE-2013-1667) CVE-2013-1667 High PHP-CGI remote code execution CVE-2012-1823 CVE-2012-2311 CWE-20 CWE-20 High PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5946) CVE-2008-5946 CWE-138 CWE-138 High PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-1803) CVE-2013-1803 CWE-138 CWE-138 High PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-7375) CVE-2013-7375 CWE-138 CWE-138 High PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-12461) CVE-2020-12461 CWE-138 CWE-138 High PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-14960) CVE-2020-14960 CWE-138 CWE-138 High PHP-Fusion Improper Privilege Management Vulnerability (CVE-2020-24949) CVE-2020-24949 CWE-269 CWE-269 High PHP-Fusion Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-3172) CVE-2021-3172 CWE-732 CWE-732 High PHP4 multiple vulnerabilities CVE-2003-0860 CVE-2003-0861 CWE-119 CWE-119 High PHP 5.3.9 remote code execution CVE-2012-0830 CWE-399 CWE-399 High PHP Address Book Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-2778) CVE-2013-2778 CWE-352 CWE-352 High PHP Address Book Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1911) CVE-2012-1911 CWE-138 CWE-138 High PHP Address Book Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-0135) CVE-2013-0135 CWE-138 CWE-138 High PHP Address Book Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-1748) CVE-2013-1748 CWE-138 CWE-138 High PHP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2017-7963) CVE-2017-7963 CWE-770 CWE-770 High PHP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-0568) CVE-2023-0568 CWE-770 CWE-770 High phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-16993) CVE-2019-16993 CWE-352 CWE-352 High phpBB CVE-2010-1630 Vulnerability (CVE-2010-1630) CVE-2010-1630 High phpBB Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-16108) CVE-2019-16108 CWE-94 CWE-94 High phpBB Improper Initialization Vulnerability (CVE-2001-1471) CVE-2001-1471 CWE-665 CWE-665 High phpBB Improper Input Validation Vulnerability (CVE-2019-9826) CVE-2019-9826 CWE-20 CWE-20 High phpBB Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2018-19274) CVE-2018-19274 CWE-915 CWE-915 High phpBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2003-1530) CVE-2003-1530 CWE-138 CWE-138 High phpBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-4653) CVE-2007-4653 CWE-138 CWE-138 High phpBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-5688) CVE-2007-5688 CWE-138 CWE-138 High phpBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-1000419) CVE-2017-1000419 CWE-918 CWE-918 High PHP Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2007-0455) CVE-2007-0455 CWE-120 CWE-120 High PHP Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2022-31626) CVE-2022-31626 CWE-120 CWE-120 High PHP code injection (pmwiki) CWE-94 CWE-94 High PHP Configuration Vulnerability (CVE-2008-5844) CVE-2008-5844 High PHP Cryptographic Issues Vulnerability (CVE-2015-8867) CVE-2015-8867 High PHP CVE-2006-5706 Vulnerability (CVE-2006-5706) CVE-2006-5706 High PHP CVE-2009-3292 Vulnerability (CVE-2009-3292) CVE-2009-3292 High PHP CVE-2009-3293 Vulnerability (CVE-2009-3293) CVE-2009-3293 High PHP CVE-2009-3559 Vulnerability (CVE-2009-3559) CVE-2009-3559 High PHP CVE-2014-3515 Vulnerability (CVE-2014-3515) CVE-2014-3515 High PHP CVE-2016-6174 Vulnerability (CVE-2016-6174) CVE-2016-6174 High PHP Data Processing Errors Vulnerability (CVE-2015-4025) CVE-2015-4025 High PHP Data Processing Errors Vulnerability (CVE-2015-4026) CVE-2015-4026 High PHP Data Processing Errors Vulnerability (CVE-2015-4147) CVE-2015-4147 High PHP DEPRECATED: Code Vulnerability (CVE-2014-9426) CVE-2014-9426 High PHP Deserialization of Untrusted Data Vulnerability (CVE-2017-11143) CVE-2017-11143 CWE-502 CWE-502 High PHP Deserialization of Untrusted Data Vulnerability (CVE-2018-19396) CVE-2018-19396 CWE-502 CWE-502 High PHP error logging format string vulnerability CVE-2000-0967 CWE-20 CWE-20 High PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8393) CVE-2015-8393 CWE-200 CWE-200 High PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-11145) CVE-2017-11145 CWE-200 CWE-200 High PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-15132) CVE-2018-15132 CWE-200 CWE-200 High PHPFusion Code Execution Vulnerability (CVE-2019-12099) CVE-2019-12099 High PHPFusion Multiple SQL Injection Vulnerabilities (CVE-2014-8596) CVE-2014-8596 High 1...36373839...169 37 / 169
