Vulnerability Name CVE Severity
Craft CMS Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') Vulnerability (CVE-2026-33157) CVE-2026-33157
Craft CMS Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2022-29933) CVE-2022-29933
CRMEB SQL Injection (CVE-2024-36837) CVE-2024-36837
Cross-site Scripting
Cross-site Scripting (DOM based)
Cross-site Scripting via File Upload
Cross-site Scripting via Remote File Inclusion
Cross-site scripting vulnerability in Google Web Toolkit CVE-2012-4563
Cross-site scripting vulnerability in Google Web Toolkit (CVE-2012-5920) CVE-2012-5920
Cross site scripting (XSS) in ASP.NET via ResolveUrl
Cross site scripting in HTTP-01 ACME challenge implementation
Cross site scripting via Bootstrap
CubeCart Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-38130) CVE-2023-38130
CubeCart Improper Input Validation Vulnerability (CVE-2013-1465) CVE-2013-1465
CubeCart Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2023-47675) CVE-2023-47675
CubeCart Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2026-21719) CVE-2026-21719
CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-4060) CVE-2009-4060
CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-1931) CVE-2010-1931
CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-4903) CVE-2010-4903
CubeCart Insufficient Session Expiration Vulnerability (CVE-2025-59335) CVE-2025-59335
CubeCart Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-3904) CVE-2009-3904
CubeCart Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2024-33438) CVE-2024-33438
Custom Vulnerability Alert
D3.js Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-16044) CVE-2017-16044
Database User Has Admin Privileges
Data Binding Expression Vulnerability in Spring Web Flow CVE-2017-4971
DataTables Prototype Pollution Vulnerability (CVE-2020-28458) CVE-2020-28458
Delve Debugger Unauthorized Access Vulnerability
Deserialization of Untrusted Data (.NET BinaryFormatter Object Deserialization)
Deserialization of Untrusted Data (Java JSON Deserialization) Fastjson
Deserialization of Untrusted Data (Java JSON Deserialization) Genson
Deserialization of Untrusted Data (Java JSON Deserialization) Jackson CVE-2017-7525
Deserialization of Untrusted Data (Java JSON Deserialization) JsonIO
Deserialization of Untrusted Data (Java Object Deserialization)
Deserialization of Untrusted Data (XStream) CVE-2013-7285 CVE-2020-26258 CVE-2020-26217
Devise weak password
Directory traversal
Directory Traversal (lib/translation.functions.php) (CMS Made Simple) v1.6.x CVE-2010-2797
Directory Traversal (lib/translation.functions.php) (CMS Made Simple) v1.8.x CVE-2010-2797
Directory Traversal with spring-cloud-config-server CVE-2020-5410
Django 7PK - Security Features Vulnerability (CVE-2016-7401) CVE-2016-7401
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-6975) CVE-2019-6975
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-23969) CVE-2023-23969
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-46695) CVE-2023-46695
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-53907) CVE-2024-53907
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-56374) CVE-2024-56374
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2025-26699) CVE-2025-26699
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2025-27556) CVE-2025-27556
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2025-32873) CVE-2025-32873
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-25673) CVE-2026-25673
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-33034) CVE-2026-33034
Django Authentication Bypass by Spoofing Vulnerability (CVE-2026-3902) CVE-2026-3902
Django CVE-2024-24680 Vulnerability (CVE-2024-24680) CVE-2024-24680
Django CVE-2024-41989 Vulnerability (CVE-2024-41989) CVE-2024-41989
Django CVE-2024-41990 Vulnerability (CVE-2024-41990) CVE-2024-41990
Django CVE-2024-45230 Vulnerability (CVE-2024-45230) CVE-2024-45230
Django Download of Code Without Integrity Check Vulnerability (CVE-2022-36359) CVE-2022-36359
Django Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-45116) CVE-2021-45116
Django Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-6188) CVE-2018-6188
Django Improper Authentication Vulnerability (CVE-2021-44420) CVE-2021-44420
Django Improper Handling of Length Parameter Inconsistency Vulnerability (CVE-2024-38875) CVE-2024-38875
Django Improper Handling of Length Parameter Inconsistency Vulnerability (CVE-2024-39614) CVE-2024-39614
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2011-0698) CVE-2011-0698
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-33203) CVE-2021-33203
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2512) CVE-2016-2512
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-9402) CVE-2020-9402
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-57833) CVE-2025-57833
Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-41164) CVE-2023-41164
Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-43665) CVE-2023-43665
Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2024-41991) CVE-2024-41991
Django Incorrect Default Permissions Vulnerability (CVE-2020-24583) CVE-2020-24583
Django Incorrect Default Permissions Vulnerability (CVE-2020-24584) CVE-2020-24584
Django Inefficient Algorithmic Complexity Vulnerability (CVE-2025-14550) CVE-2025-14550
Django Inefficient Algorithmic Complexity Vulnerability (CVE-2025-64458) CVE-2025-64458
Django Inefficient Algorithmic Complexity Vulnerability (CVE-2025-64460) CVE-2025-64460