Acunetix Web Vulnerabilities Index

Vulnerability Name CVE CWE Severity
Broken links CWE-16 Informational
Content Security Policy (CSP) not implemented CWE-16 Informational
Content type is not specified CWE-16 Informational
Daytime service running CWE-16 Informational
Email address found CWE-200 Informational
Error page web server version disclosure CWE-200 Informational
Files listed in robots.txt but not linked CWE-200 Informational
Internet Explorer XSS Protection disabled on this page CWE-16 Informational
Javascript eval() usage CWE-200 Informational
Microsoft Frontpage configuration information CWE-200 Informational
Microsoft IIS version disclosure CWE-200 Informational
Microsoft Office possible sensitive information CWE-200 Informational
Password type input with auto-complete enabled CWE-200 Informational
PHP eval() used on user input CWE-95 Informational
Possible CSRF (Cross-site request forgery) CWE-352 Informational
Possible internal IP address disclosure CWE-200 Informational
Possible server path disclosure (Unix) CWE-200 Informational
Possible server path disclosure (Windows) CWE-200 Informational
Possible username or password disclosure CWE-200 Informational
Subresource Integrity (SRI) not implemented CWE-16 Informational
Suspicious comment CWE-200 Informational
TLS 1.1 enabled CWE-16 Informational
Web Application Firewall detected CWE-16 Informational
Web server default welcome page CWE-16 Informational
Windows Terminal Services server running CWE-16 Informational
WordPress readme.html file CWE-16 Informational
WordPress user registration enabled CWE-16 Informational