Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Sensitive Information Disclosure Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Xss - Known Vulnerabilities Vulnerability Name CVE CWE CWE Severity Vanilla Forums Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-1000432) CVE-2017-1000432 CWE-352 CWE-352 High Vanilla Forums CVE-2013-3528 Vulnerability (CVE-2013-3528) CVE-2013-3528 High Vanilla Forums Deserialization of Untrusted Data Vulnerability (CVE-2018-19499) CVE-2018-19499 CWE-502 CWE-502 High Vanilla Forums Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3613) CVE-2011-3613 CWE-200 CWE-200 High Vanilla Forums Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10073) CVE-2016-10073 CWE-200 CWE-200 High Vanilla Forums Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-3527) CVE-2013-3527 CWE-138 CWE-138 High Varnish Cache Integer Overflow or Wraparound Vulnerability (CVE-2017-12425) CVE-2017-12425 CWE-190 CWE-190 High Varnish Cache Other Vulnerability (CVE-2013-4090) CVE-2013-4090 High Varnish Cache Other Vulnerability (CVE-2015-8852) CVE-2015-8852 High Varnish Cache Reachable Assertion Vulnerability (CVE-2019-15892) CVE-2019-15892 CWE-617 CWE-617 High vBSEO 3.6.0 PHP code injection CVE-2012-5223 CWE-94 CWE-94 High vBulletin 4 (up to 4.1.2) search.php SQL injection CWE-89 CWE-89 High vBulletin 5 CONNECT remote code execution CWE-94 CWE-94 High vBulletin 5.1.2 SQL injection CVE-2014-5102 CWE-89 CWE-89 High vBulletin 5.6.1 nodeId SQL injection CVE-2020-12720 CWE-94 CWE-94 High vBulletin 5.x 0day pre-auth RCE CWE-94 CWE-94 High vBulletin customer number disclosure CVE-2013-6129 CWE-264 CWE-264 High vBulletin PHP object injection vulnerability CWE-915 CWE-915 High vBulletin Pre-Auth RCE Vulnerability CVE-2020-17496 CWE-94 CWE-94 High vBulletin routestring Local File Inclusion CWE-98 CWE-98 High Vertical Broken Function Level Authorization (BFLA) CWE-639 CWE-639 High Vertical IDOR/BOLA (Broken Object Level Authorization) CWE-639 CWE-639 High Virtual Host locations misconfiguration CWE-200 CWE-200 High VirtueMart access control bypass CWE-287 CWE-287 High Vite Arbitrary File Read (CVE-2025-30208, CVE-2025-31125) CVE-2025-30208 CVE-2025-31125 CWE-200 CWE-200 High VMware directory traversal and privilege escalation vulnerabilities CVE-2009-2267 CVE-2009-3733 CWE-22 CWE-22 High VMware Horizon Log4Shell RCE CVE-2021-44228 CWE-78 CWE-78 High VMware vCenter Log4Shell RCE CVE-2021-44228 CWE-78 CWE-78 High VMware vCenter Server Unauthorized Remote Code Execution CVE-2021-21972 CWE-78 CWE-78 High VMware vCenter vcavbootstrap Arbitrary File Read High VMware vRealize Operations Server Side Request Forgery (SSRF) vulnerability CVE-2021-21975 CWE-918 CWE-918 High VMware Workspace ONE Access SSTI (CVE-2022-22954) CVE-2022-22954 CWE-94 CWE-94 High Vulnerabilities in SharePoint could allow elevation of privilege CVE-2012-1859 CWE-79 CWE-79 High Vulnerable package dependencies [high] CWE-1104 CWE-1104 High Vulnerable project dependencies CWE-937 CWE-937 High W3 Total Cache CVE-2019-6715 Vulnerability (CVE-2019-6715) CVE-2019-6715 High Weak password CWE-200 CWE-200 High Weak Secret is Used to Sign JWT CWE-345 CWE-345 High Weak WordPress security key CWE-16 CWE-16 High web.xml configuration file disclosure CWE-538 CWE-538 High webadmin.php script CWE-552 CWE-552 High Web application default/weak credentials CWE-200 CWE-200 High Web Cache Deception High Web Cache Poisoning CWE-44 CWE-44 High Web Cache Poisoning through HTTP/2 pseudo-headers CWE-44 CWE-44 High Web Cache Poisoning via Fat GET Request CWE-44 CWE-44 High Web Cache Poisoning via Host Header CWE-44 CWE-44 High Web Cache Poisoning via JSONP and UTM_ parameter CWE-44 CWE-44 High Web Cache Poisoning via POST Request CWE-44 CWE-44 High Web Cache Poisoning via semicolon query separator CWE-44 CWE-44 High WebDAV Directory Has Write Permissions CWE-264 CWE-264 High WebERP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-19434) CVE-2018-19434 CWE-138 CWE-138 High WebERP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-19435) CVE-2018-19435 CWE-138 CWE-138 High WebERP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-19436) CVE-2018-19436 CWE-138 CWE-138 High WebERP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-7755) CVE-2019-7755 CWE-138 CWE-138 High WeBid Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1000882) CVE-2018-1000882 CWE-22 CWE-22 High WeBid Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-7116) CVE-2008-7116 CWE-138 CWE-138 High WeBid Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-7119) CVE-2008-7119 CWE-138 CWE-138 High WeBid Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-1000867) CVE-2018-1000867 CWE-138 CWE-138 High WeBid Other Vulnerability (CVE-2014-5114) CVE-2014-5114 High WebLogic admin console weak credentials CWE-693 CWE-693 High WebLogic Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-17359) CVE-2019-17359 CWE-770 CWE-770 High WebLogic Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2020-7226) CVE-2020-7226 CWE-770 CWE-770 High WebLogic Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2020-28491) CVE-2020-28491 CWE-770 CWE-770 High WebLogic CVE-2008-2579 Vulnerability (CVE-2008-2579) CVE-2008-2579 High WebLogic CVE-2016-0572 Vulnerability (CVE-2016-0572) CVE-2016-0572 High WebLogic CVE-2016-0573 Vulnerability (CVE-2016-0573) CVE-2016-0573 High WebLogic CVE-2016-0574 Vulnerability (CVE-2016-0574) CVE-2016-0574 High WebLogic CVE-2016-0577 Vulnerability (CVE-2016-0577) CVE-2016-0577 High WebLogic CVE-2016-3505 Vulnerability (CVE-2016-3505) CVE-2016-3505 High WebLogic CVE-2017-3506 Vulnerability (CVE-2017-3506) CVE-2017-3506 High WebLogic CVE-2017-3531 Vulnerability (CVE-2017-3531) CVE-2017-3531 High WebLogic CVE-2017-10147 Vulnerability (CVE-2017-10147) CVE-2017-10147 High WebLogic CVE-2017-10271 Vulnerability (CVE-2017-10271) CVE-2017-10271 High WebLogic CVE-2018-2935 Vulnerability (CVE-2018-2935) CVE-2018-2935 High 1...52535455...169 53 / 169
