Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Citrix Gateway Open Redirect And XSS Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Apache Tomcat version older than 6.0.10 CVE-2007-0450 CWE-22 CWE-22 Medium Apache Tomcat WAR file directory traversal vulnerability CVE-2009-2693 CVE-2009-2901 CWE-22 CWE-22 Medium Path Traversal in Next.js up to 9.3.1 CVE-2020-5284 CWE-22 CWE-22 Medium Payara Micro File Read (CVE-2021-41381) CVE-2021-41381 CWE-22 CWE-22 Medium PHP object deserialization of user-supplied data CWE-20 CWE-20 Medium Python object deserialization of user-supplied data CWE-20 CWE-20 Medium