Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Citrix Gateway Open Redirect And XSS Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Apache Log4j2 JNDI Remote Code Execution (404 page handler) CVE-2021-44228 CWE-78 CWE-78 Critical ASP.NET CustomErrors Is Disabled CWE-12 CWE-12 Medium ASP.NET error message CWE-12 CWE-12 Medium ASP.NET WCF service include exception details CWE-16 CWE-16 Medium CodeIgniter development mode enabled CWE-16 CWE-16 Medium Custom Error Pages Are Not Configured in WEB-INF/web.xml CWE-16 CWE-16 Medium Elmah.axd / Errorlog.axd Detected CWE-209 CWE-209 High Error messages CWE-209 CWE-209 Low Error page path disclosure CWE-200 CWE-200 Low Error page web server version disclosure CWE-200 CWE-200 Informational GraphQL Unhandled Error Leakage CWE-209 CWE-209 Medium Node.js Web Application does not handle uncaughtException CWE-248 CWE-248 Medium Node.js Web Application does not handle unhandledRejection CWE-248 CWE-248 Medium Padding oracle attack CWE-209 CWE-209 High PHP display_errors Is Enabled CWE-209 CWE-209 Low PHP errors enabled CWE-209 CWE-209 Medium Programming Error Messages CWE-209 CWE-209 Low Spring Boot Whitelabel Error Page SpEL CWE-94 CWE-94 High Symfony debug mode enabled (AcuSensor) CWE-16 CWE-16 Medium Symfony running in dev mode CWE-16 CWE-16 Medium
