Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Sensitive Information Disclosure Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity PostgreSQL Resource Management Errors Vulnerability (CVE-2009-0922) CVE-2009-0922 Medium PostgreSQL Resource Management Errors Vulnerability (CVE-2012-2655) CVE-2012-2655 Medium PrestaShop Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-4792) CVE-2013-4792 CWE-352 CWE-352 Medium PrestaShop CVE-2024-34717 Vulnerability (CVE-2024-34717) CVE-2024-34717 Medium PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3796) CVE-2011-3796 CWE-200 CWE-200 Medium PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-5682) CVE-2018-5682 CWE-200 CWE-200 Medium PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15080) CVE-2020-15080 CWE-200 CWE-200 Medium PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15081) CVE-2020-15081 CWE-200 CWE-200 Medium PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-46158) CVE-2022-46158 CWE-200 CWE-200 Medium PrestaShop Files or Directories Accessible to External Parties Vulnerability (CVE-2020-5250) CVE-2020-5250 CWE-552 CWE-552 Medium PrestaShop Improper Authentication Vulnerability (CVE-2020-15079) CVE-2020-15079 CWE-287 CWE-287 Medium PrestaShop Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4545) CVE-2011-4545 CWE-94 CWE-94 Medium PrestaShop Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-26129) CVE-2024-26129 CWE-22 CWE-22 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6503) CVE-2008-6503 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4544) CVE-2011-4544 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2517) CVE-2012-2517 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6641) CVE-2012-6641 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-20001) CVE-2012-20001 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4791) CVE-2013-4791 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1175) CVE-2015-1175 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-5681) CVE-2018-5681 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11876) CVE-2019-11876 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5264) CVE-2020-5264 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5265) CVE-2020-5265 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5269) CVE-2020-5269 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5271) CVE-2020-5271 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5272) CVE-2020-5272 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5276) CVE-2020-5276 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5278) CVE-2020-5278 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5285) CVE-2020-5285 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5286) CVE-2020-5286 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-6632) CVE-2020-6632 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11074) CVE-2020-11074 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15083) CVE-2020-15083 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15161) CVE-2020-15161 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15162) CVE-2020-15162 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-21967) CVE-2020-21967 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-21398) CVE-2021-21398 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31508) CVE-2023-31508 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-39527) CVE-2023-39527 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21627) CVE-2024-21627 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21628) CVE-2024-21628 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-34716) CVE-2024-34716 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30545) CVE-2023-30545 CWE-138 CWE-138 Medium PrestaShop Improper Privilege Management Vulnerability (CVE-2023-43663) CVE-2023-43663 CWE-269 CWE-269 Medium PrestaShop Improper Privilege Management Vulnerability (CVE-2023-43664) CVE-2023-43664 CWE-269 CWE-269 Medium PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5279) CVE-2020-5279 CWE-863 CWE-863 Medium PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5287) CVE-2020-5287 CWE-863 CWE-863 Medium PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5288) CVE-2020-5288 CWE-863 CWE-863 Medium PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5293) CVE-2020-5293 CWE-863 CWE-863 Medium PrestaShop URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-5270) CVE-2020-5270 CWE-601 CWE-601 Medium ProjectSend Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2017-20101) CVE-2017-20101 CWE-639 CWE-639 Medium ProjectSend Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2024-7658) CVE-2024-7658 CWE-639 CWE-639 Medium ProjectSend Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-40886) CVE-2021-40886 CWE-22 CWE-22 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9783) CVE-2017-9783 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9786) CVE-2017-9786 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-7202) CVE-2018-7202 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11533) CVE-2019-11533 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-40888) CVE-2021-40888 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0607) CVE-2023-0607 CWE-707 CWE-707 Medium Prototype Improper Privilege Management Vulnerability (CVE-2020-7993) CVE-2020-7993 CWE-269 CWE-269 Medium Pyramid debug mode CWE-489 CWE-489 Medium Pyramid DebugToolbar enabled CWE-200 CWE-200 Medium Pyramid framework weak secret key CWE-693 CWE-693 Medium Python Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2010-3493) CVE-2010-3493 CWE-362 CWE-362 Medium Python Cryptographic Issues Vulnerability (CVE-2012-1150) CVE-2012-1150 Medium Python Cryptographic Issues Vulnerability (CVE-2013-7040) CVE-2013-7040 Medium Python CVE-2023-6507 Vulnerability (CVE-2023-6507) CVE-2023-6507 Medium Python CVE-2023-40217 Vulnerability (CVE-2023-40217) CVE-2023-40217 Medium Python Data Processing Errors Vulnerability (CVE-2013-7440) CVE-2013-7440 Medium Python Divide By Zero Vulnerability (CVE-2017-18207) CVE-2017-18207 CWE-369 CWE-369 Medium Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-1015) CVE-2011-1015 CWE-200 CWE-200 Medium Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-3426) CVE-2021-3426 CWE-200 CWE-200 Medium Python Improper Input Validation Vulnerability (CVE-2013-4238) CVE-2013-4238 CWE-20 CWE-20 Medium Python Improper Input Validation Vulnerability (CVE-2018-20852) CVE-2018-20852 CWE-20 CWE-20 Medium 1...86878889...108 87 / 108
