Severity High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity .htaccess file readable CWE-443 CWE-443 Medium Access database found CWE-538 CWE-538 Medium Adminer Server Side Request Forgery (SSRF) CVE-2021-21311 CWE-918 CWE-918 Medium Adobe Experience Manager Information Disclosure via Apache Sling v2.3.6 vulnerability CVE-2016-0956 CWE-668 CWE-668 Medium Amazon S3 public bucket CWE-264 CWE-264 Medium Apache 2.x version equal to 2.0.51 CVE-2004-0811 CWE-264 CWE-264 Medium Apache 2.x version older than 2.0.43 CVE-2002-0840 CVE-2002-1156 CWE-538 CWE-538 Medium Apache 2.x version older than 2.0.45 CVE-2003-0132 CWE-400 CWE-400 Medium Apache 2.x version older than 2.0.46 CVE-2003-0083 CVE-2003-0134 CVE-2003-0189 CVE-2003-0245 CWE-20 CWE-20 Medium Apache 2.x version older than 2.0.47 CVE-2003-0192 CVE-2003-0253 CVE-2003-0254 CWE-20 CWE-20 Medium Apache 2.x version older than 2.0.48 CVE-2003-0542 CVE-2003-0789 CWE-119 CWE-119 Medium Apache 2.x version older than 2.0.49 CVE-2003-0020 CVE-2004-0113 CVE-2004-0174 CWE-20 CWE-20 Medium Apache 2.x version older than 2.0.51 CVE-2004-0747 CVE-2004-0748 CVE-2004-0751 CVE-2004-0786 CVE-2004-0809 CWE-119 CWE-119 Medium Apache 2.x version older than 2.0.55 CVE-2005-1268 CVE-2005-2088 CVE-2005-2491 CVE-2005-2700 CVE-2005-2728 CVE-2005-2970 CWE-119 CWE-119 Medium Apache 2.x version older than 2.0.61 CVE-2006-5752 CVE-2007-1863 CVE-2007-3304 CVE-2007-3847 CWE-701 CWE-701 Medium Apache 2.x version older than 2.0.63 CVE-2007-5000 CVE-2007-6388 CVE-2008-0005 CWE-79 CWE-79 Medium Apache 2.x version older than 2.2.3 CVE-2006-3747 CWE-189 CWE-189 Medium Apache 2.x version older than 2.2.6 CVE-2006-5752 CVE-2007-1862 CVE-2007-1863 CVE-2007-3304 CVE-2007-3847 CWE-20 CWE-20 Medium Apache 2.x version older than 2.2.8 CVE-2007-5000 CVE-2007-6388 CVE-2007-6421 CVE-2007-6422 CVE-2008-0005 CWE-79 CWE-79 Medium Apache 2.x version older than 2.2.9 CVE-2007-6420 CVE-2008-2364 CWE-399 CWE-399 Medium Apache Airflow Exposed configuration CWE-200 CWE-200 Medium Apache APISIX default token (CVE-2020-13945/CVE-2022-24112) CVE-2020-13945 CWE-259 CWE-259 Medium Apache Axis2 information disclosure CWE-200 CWE-200 Medium Apache balancer-manager application publicly accessible CWE-200 CWE-200 Medium Apache Cassandra Unauthorized Access Vulnerability CWE-200 CWE-200 Medium Apache configured to run as proxy CWE-441 CWE-441 Medium Apache error log escape sequence injection vulnerability CVE-2003-0020 CWE-20 CWE-20 Medium Apache httpd remote denial of service CVE-2011-3192 CWE-399 CWE-399 Medium Apache httpOnly cookie disclosure CVE-2012-0053 CWE-264 CWE-264 Medium Apache HTTP Server Source Code Disclosure CWE-540 CWE-540 Medium Apache JServ protocol service CWE-200 CWE-200 Medium Apache Kafka Unauthorized Access Vulnerability CWE-200 CWE-200 Medium Apache mod_jk access control bypass CVE-2018-11759 CWE-918 CWE-918 Medium Apache mod_rewrite open redirect CVE-2019-10098 CWE-601 CWE-601 Medium Apache perl-status enabled CWE-200 CWE-200 Medium Apache Proxy HTTP CONNECT method enabled CWE-441 CWE-441 Medium Apache server-info enabled CWE-200 CWE-200 Medium Apache server-status enabled CWE-200 CWE-200 Medium Apache Solr Parameter Injection CWE-88 CWE-88 Medium Apache Solr SSRF CVE-2017-3164 CWE-918 CWE-918 Medium Apache Spark Web UI Unauthorized Access Vulnerability CWE-200 CWE-200 Medium Apache Tomcat directory host Appbase authentication bypass vulnerability CVE-2009-2901 CWE-264 CWE-264 Medium Apache Tomcat examples directory vulnerabilities CWE-264 CWE-264 Medium Apache Tomcat sample files CWE-538 CWE-538 Medium Apache Tomcat version older than 4.1.37 CVE-2005-3164 CVE-2007-1355 CVE-2007-2449 CVE-2007-2450 CVE-2007-3382 CVE-2007-3383 CVE-2007-3385 CVE-2007-5333 CVE-2007-5461 CWE-79 CWE-79 Medium Apache Tomcat version older than 4.1.39 CVE-2008-0128 CVE-2008-1232 CVE-2008-2370 CWE-22 CWE-22 Medium Apache Tomcat version older than 5.5.25 CVE-2007-2449 CVE-2007-2450 CVE-2007-3382 CVE-2007-3385 CVE-2007-3386 CWE-79 CWE-79 Medium Apache Tomcat version older than 5.5.26 CVE-2007-5333 CVE-2007-5342 CVE-2007-5461 CVE-2007-6286 CWE-264 CWE-264 Medium Apache Tomcat version older than 5.5.27 CVE-2008-1232 CVE-2008-1947 CVE-2008-2370 CWE-22 CWE-22 Medium Apache Tomcat version older than 6.0.9 CVE-2008-0128 CWE-614 CWE-614 Medium Apache Tomcat version older than 6.0.10 CVE-2007-0450 CWE-22 CWE-22 Medium Apache Tomcat version older than 6.0.11 CVE-2005-2090 CVE-2007-1355 CWE-79 CWE-79 Medium Apache Tomcat version older than 6.0.14 CVE-2007-2449 CVE-2007-2450 CVE-2007-3382 CVE-2007-3385 CVE-2007-3386 CWE-79 CWE-79 Medium Apache Tomcat version older than 6.0.16 CVE-2007-5333 CVE-2007-5342 CVE-2007-5461 CVE-2007-6286 CVE-2008-0002 CWE-264 CWE-264 Medium Apache Tomcat version older than 6.0.18 CVE-2008-1232 CVE-2008-1947 CVE-2008-2370 CWE-79 CWE-79 Medium Apache Tomcat version older than 7.0.32 CVE-2012-4431 CWE-264 CWE-264 Medium Apache Tomcat WAR file directory traversal vulnerability CVE-2009-2693 CVE-2009-2901 CWE-22 CWE-22 Medium Apache version older than 1.3.27 CVE-2002-0839 CVE-2002-0840 CVE-2002-0843 CWE-119 CWE-119 Medium Apache version older than 1.3.28 CVE-2003-0460 CWE-20 CWE-20 Medium Apache version older than 1.3.29 CVE-2003-0542 CWE-119 CWE-119 Medium Apache version older than 1.3.31 CVE-2003-0020 CVE-2003-0987 CVE-2003-0993 CVE-2004-0174 CWE-264 CWE-264 Medium Apache version older than 1.3.34 CVE-2005-2088 CWE-20 CWE-20 Medium Apache version older than 1.3.37 CVE-2006-3747 CWE-189 CWE-189 Medium Apache version older than 1.3.39 CVE-2006-5752 CVE-2007-3304 CWE-79 CWE-79 Medium Apache version older than 1.3.41 CVE-2007-6388 CWE-79 CWE-79 Medium Apache ZooKeeper Unauthorized Access Vulnerability CWE-200 CWE-200 Medium apc.php page found CWE-538 CWE-538 Medium Application error messages CWE-209 CWE-209 Medium Arbitrary file existence disclosure in Action Pack CVE-2014-7829 CWE-200 CWE-200 Medium ASP.NET application-level tracing enabled CWE-215 CWE-215 Medium ASP.NET application trace enabled CWE-215 CWE-215 Medium ASP.NET ASPX debugging enabled CWE-11 CWE-11 Medium ASP.NET cookieless authentication enabled CWE-598 CWE-598 Medium ASP.NET Cookieless session state enabled CWE-598 CWE-598 Medium ASP.NET cookies accessible from client-side scripts CWE-1004 CWE-1004 Medium 12345 1 / 5