Acunetix Web Vulnerabilities Index

Vulnerability Name CVE CWE Severity
.htaccess file readable CWE-16 Medium
Access database found CWE-538 Medium
Amazon S3 public bucket CWE-264 Medium
Apache 2.x version equal to 2.0.51 CVE-2004-0811 CWE-264 Medium
Apache 2.x version older than 2.0.43 CVE-2002-0840 CVE-2002-1156 CWE-538 Medium
Apache 2.x version older than 2.0.45 CVE-2003-0132 CWE-400 Medium
Apache 2.x version older than 2.0.46 CVE-2003-0083 CVE-2003-0134 CVE-2003-0189 CVE-2003-0245 CWE-20 Medium
Apache 2.x version older than 2.0.47 CVE-2003-0192 CVE-2003-0253 CVE-2003-0254 CWE-20 Medium
Apache 2.x version older than 2.0.48 CVE-2003-0542 CVE-2003-0789 CWE-119 Medium
Apache 2.x version older than 2.0.49 CVE-2003-0020 CVE-2004-0113 CVE-2004-0174 CWE-20 Medium
Apache 2.x version older than 2.0.51 CVE-2004-0747 CVE-2004-0748 CVE-2004-0751 CVE-2004-0786 CVE-2004-0809 CWE-119 Medium
Apache 2.x version older than 2.0.55 CVE-2005-1268 CVE-2005-2088 CVE-2005-2491 CVE-2005-2700 CVE-2005-2728 CVE-2005-2970 CWE-119 Medium
Apache 2.x version older than 2.0.61 CVE-2006-5752 CVE-2007-1863 CVE-2007-3304 CVE-2007-3847 CWE-701 Medium
Apache 2.x version older than 2.0.63 CVE-2007-5000 CVE-2007-6388 CVE-2008-0005 CWE-79 Medium
Apache 2.x version older than 2.2.3 CVE-2006-3747 CWE-189 Medium
Apache 2.x version older than 2.2.6 CVE-2006-5752 CVE-2007-1862 CVE-2007-1863 CVE-2007-3304 CVE-2007-3847 CWE-20 Medium
Apache 2.x version older than 2.2.8 CVE-2007-5000 CVE-2007-6388 CVE-2007-6421 CVE-2007-6422 CVE-2008-0005 CWE-79 Medium
Apache 2.x version older than 2.2.9 CVE-2007-6420 CVE-2008-2364 CWE-399 Medium
Apache Axis2 information disclosure CWE-200 Medium
Apache configured to run as proxy CWE-16 Medium
Apache error log escape sequence injection vulnerability CVE-2003-0020 CWE-20 Medium
Apache httpd remote denial of service CVE-2011-3192 CWE-399 Medium
Apache httpOnly cookie disclosure CVE-2012-0053 CWE-264 Medium
Apache JServ protocol service CWE-16 Medium
Apache perl-status enabled CWE-200 Medium
Apache Proxy HTTP CONNECT method enabled CWE-16 Medium
Apache server-info enabled CWE-200 Medium
Apache server-status enabled CWE-200 Medium
Apache Tomcat directory host Appbase authentication bypass vulnerability CVE-2009-2901 CWE-264 Medium
Apache Tomcat directory traversal CVE-2007-0450 CWE-22 Medium
Apache Tomcat examples directory vulnerabilities CWE-264 Medium
Apache Tomcat sample files CWE-538 Medium
Apache Tomcat version older than 4.1.37 CVE-2005-3164 CVE-2007-1355 CVE-2007-2449 CVE-2007-2450 CVE-2007-3382 CVE-2007-3383 CVE-2007-3385 CVE-2007-5333 CVE-2007-5461 CWE-79 Medium
Apache Tomcat version older than 4.1.39 CVE-2008-0128 CVE-2008-1232 CVE-2008-2370 CWE-22 Medium
Apache Tomcat version older than 5.5.25 CVE-2007-2449 CVE-2007-2450 CVE-2007-3382 CVE-2007-3385 CVE-2007-3386 CWE-79 Medium
Apache Tomcat version older than 5.5.26 CVE-2007-5333 CVE-2007-5342 CVE-2007-5461 CVE-2007-6286 CWE-264 Medium
Apache Tomcat version older than 5.5.27 CVE-2008-1232 CVE-2008-1947 CVE-2008-2370 CWE-22 Medium
Apache Tomcat version older than 6.0.9 CVE-2008-0128 CWE-16 Medium
Apache Tomcat version older than 6.0.10 CVE-2007-0450 CWE-22 Medium
Apache Tomcat version older than 6.0.11 CVE-2005-2090 CVE-2007-1355 CWE-79 Medium
Apache Tomcat version older than 6.0.14 CVE-2007-2449 CVE-2007-2450 CVE-2007-3382 CVE-2007-3385 CVE-2007-3386 CWE-79 Medium
Apache Tomcat version older than 6.0.16 CVE-2007-5333 CVE-2007-5342 CVE-2007-5461 CVE-2007-6286 CVE-2008-0002 CWE-264 Medium
Apache Tomcat version older than 6.0.18 CVE-2008-1232 CVE-2008-1947 CVE-2008-2370 CWE-79 Medium
Apache Tomcat WAR file directory traversal vulnerability CVE-2009-2693 CVE-2009-2901 CWE-22 Medium
Apache version older than 1.3.27 CVE-2002-0839 CVE-2002-0840 CVE-2002-0843 CWE-119 Medium
Apache version older than 1.3.28 CVE-2003-0460 CWE-20 Medium
Apache version older than 1.3.29 CVE-2003-0542 CWE-119 Medium
Apache version older than 1.3.31 CVE-2003-0020 CVE-2003-0987 CVE-2003-0993 CVE-2004-0174 CWE-264 Medium
Apache version older than 1.3.34 CVE-2005-2088 CWE-20 Medium
Apache version older than 1.3.37 CVE-2006-3747 CWE-189 Medium
Apache version older than 1.3.39 CVE-2006-5752 CVE-2007-3304 CWE-79 Medium
Apache version older than 1.3.41 CVE-2007-6388 CWE-79 Medium
apc.php page found CWE-538 Medium
Application error message CWE-200 Medium
Arbitrary file existence disclosure in Action Pack CVE-2014-7829 CWE-200 Medium
ASP.NET: failure to require SSL for authentication cookies (AcuSensor) CWE-16 Medium
ASP.NET application-level tracing enabled (AcuSensor) CWE-16 Medium
ASP.NET application trace enabled CWE-16 Medium
ASP.NET ASPX debugging enabled (AcuSensor) CWE-16 Medium
ASP.NET cookieless authentication enabled (AcuSensor) CWE-16 Medium
ASP.NET Cookieless session state enabled (AcuSensor) CWE-16 Medium
ASP.NET cookies accessible from client-side scripts (AcuSensor) CWE-16 Medium
ASP.NET custom errors disabled (AcuSensor) CWE-16 Medium
ASP.NET diagnostic page CWE-200 Medium
ASP.NET EnableViewStateMac turned off (AcuSensor) CWE-16 Medium
ASP.NET error message CWE-16 Medium
ASP.NET login credentials stored in plain text (AcuSensor) CWE-16 Medium
ASP.NET ValidateRequest globally disabled (AcuSensor) CWE-16 Medium
Atlassian Confluence Access Restriction Bypass CVE-2017-9505 Medium
Atlassian Confluence Stored Cross Site Scripting CVE-2016-6283 Medium
AWStats script CWE-538 Medium
Backup files CWE-538 Medium
Backup files CWE-538 Medium
Basic authentication over HTTP CWE-16 Medium
BREACH attack CVE-2013-3587 CWE-310 Medium