Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5747) CVE-2020-5747 CWE-707 CWE-707 Medium TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5748) CVE-2020-5748 CWE-707 CWE-707 Medium TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5749) CVE-2020-5749 CWE-707 CWE-707 Medium TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5750) CVE-2020-5750 CWE-707 CWE-707 Medium TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5751) CVE-2020-5751 CWE-707 CWE-707 Medium TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20111) CVE-2021-20111 CWE-707 CWE-707 Medium TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20112) CVE-2021-20112 CWE-707 CWE-707 Medium TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20115) CVE-2021-20115 CWE-707 CWE-707 Medium TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20116) CVE-2021-20116 CWE-707 CWE-707 Medium TCExam Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-4237) CVE-2012-4237 CWE-138 CWE-138 Medium TCExam Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-4601) CVE-2012-4601 CWE-138 CWE-138 Medium TCExam Missing Authorization Vulnerability (CVE-2023-6554) CVE-2023-6554 CWE-862 CWE-862 Medium TCExam Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2021-20113) CVE-2021-20113 Medium TCExam Other Vulnerability (CVE-2010-2153) CVE-2010-2153 Medium Test CGI script leaking environment variables Medium TestRail Information Disclosure (CVE-2021-40875) CVE-2021-40875 CWE-425 CWE-425 Medium The FREAK attack CVE-2015-0204 CWE-326 CWE-327 CWE-326 CWE-327 Medium The POODLE attack (SSLv3 with CBC cipher suites) CVE-2014-3566 CWE-326 CWE-326 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-1010091) CVE-2019-1010091 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-12648) CVE-2020-12648 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-17480) CVE-2020-17480 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23066) CVE-2020-23066 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23494) CVE-2022-23494 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45818) CVE-2023-45818 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45819) CVE-2023-45819 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-48219) CVE-2023-48219 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21908) CVE-2024-21908 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21910) CVE-2024-21910 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21911) CVE-2024-21911 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-29203) CVE-2024-29203 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-29881) CVE-2024-29881 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-47759) CVE-2026-47759 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-47760) CVE-2026-47760 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-47761) CVE-2026-47761 CWE-707 CWE-707 Medium TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-47762) CVE-2026-47762 CWE-707 CWE-707 Medium TLS/SSL certificate key size too small CWE-326 CWE-326 Medium TLS/SSL LOGJAM attack CVE-2015-4000 CWE-326 CWE-326 Medium TLS/SSL Sweet32 attack CVE-2016-2183 CVE-2016-6329 CWE-327 CWE-327 Medium TLS/SSL Weak Cipher Suites CWE-327 CWE-327 Medium Tornado debug mode CWE-489 CWE-489 Medium Tornado Improper Handling of Invalid Use of Special Elements Vulnerability (CVE-2026-35536) CVE-2026-35536 CWE-159 CWE-159 Medium Tornado Improper Input Validation Vulnerability (CVE-2012-2374) CVE-2012-2374 CWE-20 CWE-20 Medium Tornado Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-67724) CVE-2025-67724 CWE-707 CWE-707 Medium Tornado Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2014-9720) CVE-2014-9720 Medium Tornado URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-28370) CVE-2023-28370 CWE-601 CWE-601 Medium Tornado weak secret key CWE-693 CWE-693 Medium Trac URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2008-2951) CVE-2008-2951 CWE-601 CWE-601 Medium Tracy debugging tool enabled CWE-200 CWE-200 Medium Twisted Web HTTP Server Direct Request ('Forced Browsing') Vulnerability (CVE-2016-1000111) CVE-2016-1000111 CWE-425 CWE-425 Medium Twisted Web HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-39348) CVE-2022-39348 CWE-707 CWE-707 Medium Twisted Web HTTP Server Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-12387) CVE-2019-12387 CWE-138 CWE-138 Medium Twisted Web HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2023-46137) CVE-2023-46137 Medium TYPO3 Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-34358) CVE-2024-34358 CWE-770 CWE-770 Medium TYPO3 Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2025-7900) CVE-2025-7900 CWE-639 CWE-639 Medium TYPO3 Cleartext Transmission of Sensitive Information Vulnerability (CVE-2017-6370) CVE-2017-6370 CWE-319 CWE-319 Medium TYPO3 Cleartext Transmission of Sensitive Information Vulnerability (CVE-2022-31046) CVE-2022-31046 CWE-319 CWE-319 Medium TYPO3 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-3633) CVE-2009-3633 CWE-352 CWE-352 Medium TYPO3 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-55894) CVE-2024-55894 CWE-352 CWE-352 Medium TYPO3 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-55945) CVE-2024-55945 CWE-352 CWE-352 Medium TYPO3 Cryptographic Issues Vulnerability (CVE-2009-0255) CVE-2009-0255 Medium TYPO3 Cryptographic Issues Vulnerability (CVE-2012-3527) CVE-2012-3527 Medium TYPO3 Cryptographic Issues Vulnerability (CVE-2013-7075) CVE-2013-7075 Medium TYPO3 CVE-2010-0286 Vulnerability (CVE-2010-0286) CVE-2010-0286 Medium TYPO3 CVE-2013-7080 Vulnerability (CVE-2013-7080) CVE-2013-7080 Medium TYPO3 CVE-2023-38499 Vulnerability (CVE-2023-38499) CVE-2023-38499 Medium TYPO3 CVE-2023-47126 Vulnerability (CVE-2023-47126) CVE-2023-47126 Medium TYPO3 CVE-2024-25118 Vulnerability (CVE-2024-25118) CVE-2024-25118 Medium TYPO3 CVE-2024-25119 Vulnerability (CVE-2024-25119) CVE-2024-25119 Medium TYPO3 CVE-2024-25120 Vulnerability (CVE-2024-25120) CVE-2024-25120 Medium TYPO3 CVE-2024-34537 Vulnerability (CVE-2024-34537) CVE-2024-34537 Medium TYPO3 Exposed Dangerous Method or Function Vulnerability (CVE-2024-55893) CVE-2024-55893 CWE-749 CWE-749 Medium TYPO3 Exposed Dangerous Method or Function Vulnerability (CVE-2024-55920) CVE-2024-55920 CWE-749 CWE-749 Medium TYPO3 Exposed Dangerous Method or Function Vulnerability (CVE-2024-55922) CVE-2024-55922 CWE-749 CWE-749 Medium TYPO3 Exposed Dangerous Method or Function Vulnerability (CVE-2024-55923) CVE-2024-55923 CWE-749 CWE-749 Medium TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-0815) CVE-2009-0815 CWE-200 CWE-200 Medium 1...105106107108...118 106 / 118
