Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9786) CVE-2017-9786 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-7202) CVE-2018-7202 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11533) CVE-2019-11533 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-40888) CVE-2021-40888 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0607) CVE-2023-0607 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-53906) CVE-2023-53906 CWE-707 CWE-707 Medium Prototype Improper Privilege Management Vulnerability (CVE-2020-7993) CVE-2020-7993 CWE-269 CWE-269 Medium Pyramid debug mode CWE-489 CWE-489 Medium Pyramid DebugToolbar enabled CWE-200 CWE-200 Medium Pyramid framework weak secret key CWE-693 CWE-693 Medium Python Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2010-3493) CVE-2010-3493 CWE-362 CWE-362 Medium Python Cryptographic Issues Vulnerability (CVE-2012-1150) CVE-2012-1150 Medium Python Cryptographic Issues Vulnerability (CVE-2013-7040) CVE-2013-7040 Medium Python CVE-2023-6507 Vulnerability (CVE-2023-6507) CVE-2023-6507 Medium Python CVE-2023-40217 Vulnerability (CVE-2023-40217) CVE-2023-40217 Medium Python Data Processing Errors Vulnerability (CVE-2013-7440) CVE-2013-7440 Medium Python Divide By Zero Vulnerability (CVE-2017-18207) CVE-2017-18207 CWE-369 CWE-369 Medium Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-1015) CVE-2011-1015 CWE-200 CWE-200 Medium Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-3426) CVE-2021-3426 CWE-200 CWE-200 Medium Python Improper Encoding or Escaping of Output Vulnerability (CVE-2026-6019) CVE-2026-6019 CWE-116 CWE-116 Medium Python Improper Input Validation Vulnerability (CVE-2013-4238) CVE-2013-4238 CWE-20 CWE-20 Medium Python Improper Input Validation Vulnerability (CVE-2018-20852) CVE-2018-20852 CWE-20 CWE-20 Medium Python Improper Input Validation Vulnerability (CVE-2020-8315) CVE-2020-8315 CWE-20 CWE-20 Medium Python Improper Input Validation Vulnerability (CVE-2023-27043) CVE-2023-27043 CWE-20 CWE-20 Medium Python Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2007-4559) CVE-2007-4559 CWE-22 CWE-22 Medium Python Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2019-9740) CVE-2019-9740 CWE-707 CWE-707 Medium Python Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2019-9947) CVE-2019-9947 CWE-707 CWE-707 Medium Python Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2016-5699) CVE-2016-5699 CWE-113 CWE-113 Medium Python Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16935) CVE-2019-16935 CWE-707 CWE-707 Medium Python Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-28359) CVE-2021-28359 CWE-707 CWE-707 Medium Python Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-18348) CVE-2019-18348 CWE-138 CWE-138 Medium Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2010-2089) CVE-2010-2089 CWE-119 CWE-119 Medium Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-4616) CVE-2014-4616 CWE-119 CWE-119 Medium Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2018-1000117) CVE-2018-1000117 CWE-119 CWE-119 Medium Python Improper Restriction of XML External Entity Reference Vulnerability (CVE-2013-0340) CVE-2013-0340 CWE-611 CWE-611 Medium Python Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2021-23336) CVE-2021-23336 CWE-444 CWE-444 Medium Python Incorrect Type Conversion or Cast Vulnerability (CVE-2025-12781) CVE-2025-12781 CWE-704 CWE-704 Medium Python Inefficient Algorithmic Complexity Vulnerability (CVE-2025-12084) CVE-2025-12084 CWE-407 CWE-407 Medium Python Integer Overflow or Wraparound Vulnerability (CVE-2007-4965) CVE-2007-4965 CWE-190 CWE-190 Medium Python Integer Overflow or Wraparound Vulnerability (CVE-2008-1679) CVE-2008-1679 CWE-190 CWE-190 Medium Python Integer Overflow or Wraparound Vulnerability (CVE-2008-3144) CVE-2008-3144 CWE-190 CWE-190 Medium Python Integer Overflow or Wraparound Vulnerability (CVE-2015-1283) CVE-2015-1283 CWE-190 CWE-190 Medium Python Numeric Errors Vulnerability (CVE-2010-1634) CVE-2010-1634 Medium Python Numeric Errors Vulnerability (CVE-2014-7185) CVE-2014-7185 Medium Python object deserialization of user-supplied data CWE-20 CWE-20 Medium Python Off-by-one Error Vulnerability (CVE-2007-2052) CVE-2007-2052 CWE-193 CWE-193 Medium Python Other Vulnerability (CVE-2002-1119) CVE-2002-1119 Medium Python Other Vulnerability (CVE-2010-3492) CVE-2010-3492 Medium Python Other Vulnerability (CVE-2012-2135) CVE-2012-2135 Medium Python Other Vulnerability (CVE-2014-9365) CVE-2014-9365 Medium Python Other Vulnerability (CVE-2016-3189) CVE-2016-3189 Medium Python Out-of-bounds Write Vulnerability (CVE-2009-4134) CVE-2009-4134 CWE-787 CWE-787 Medium Python Protection Mechanism Failure Vulnerability (CVE-2016-0772) CVE-2016-0772 CWE-693 CWE-693 Medium Python Resource Management Errors Vulnerability (CVE-2011-1521) CVE-2011-1521 Medium Python Resource Management Errors Vulnerability (CVE-2012-0845) CVE-2012-0845 Medium Python Resource Management Errors Vulnerability (CVE-2013-2099) CVE-2013-2099 Medium Python Unchecked Return Value Vulnerability (CVE-2021-4189) CVE-2021-4189 CWE-252 CWE-252 Medium Python Uncontrolled Resource Consumption Vulnerability (CVE-2012-0876) CVE-2012-0876 CWE-400 CWE-400 Medium Python Uncontrolled Resource Consumption Vulnerability (CVE-2020-8492) CVE-2020-8492 CWE-400 CWE-400 Medium Python Uncontrolled Resource Consumption Vulnerability (CVE-2020-14422) CVE-2020-14422 CWE-400 CWE-400 Medium Python Uncontrolled Resource Consumption Vulnerability (CVE-2021-3733) CVE-2021-3733 CWE-400 CWE-400 Medium Python Uncontrolled Resource Consumption Vulnerability (CVE-2022-48564) CVE-2022-48564 CWE-400 CWE-400 Medium Python Uncontrolled Resource Consumption Vulnerability (CVE-2025-6075) CVE-2025-6075 CWE-400 CWE-400 Medium Python Uncontrolled Resource Consumption Vulnerability (CVE-2025-13837) CVE-2025-13837 CWE-400 CWE-400 Medium Python Untrusted Search Path Vulnerability (CVE-2008-5983) CVE-2008-5983 CWE-426 CWE-426 Medium Python URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-1000110) CVE-2016-1000110 CWE-601 CWE-601 Medium qdPM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8390) CVE-2019-8390 CWE-707 CWE-707 Medium qdPM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8391) CVE-2019-8391 CWE-707 CWE-707 Medium qdPM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-18468) CVE-2020-18468 CWE-707 CWE-707 Medium qdPM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-19515) CVE-2020-19515 CWE-707 CWE-707 Medium qdPM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-26166) CVE-2020-26166 CWE-707 CWE-707 Medium qdPM Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2020-11814) CVE-2020-11814 CWE-138 CWE-138 Medium qdPM Multiple Cross-site Scripting (XSS) Vulnerabilities (CVE-2015-3883) CVE-2015-3883 Medium qdPM Sensitive Information Disclosure Vulnerability (CVE-2015-3882) CVE-2015-3882 Medium rack-mini-profiler environment variables disclosure CWE-287 CWE-287 Medium 1...95969798...118 96 / 118
