Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Citrix Gateway Open Redirect And XSS Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Cookie signed with weak secret key CWE-693 CWE-693 Medium Django weak secret key CWE-693 CWE-693 Medium Express cookie-session weak secret key CWE-693 CWE-693 Medium Flask weak secret key CWE-693 CWE-693 Medium Laravel framework weak secret key CWE-693 CWE-693 Medium Mojolicious weak secret key CWE-693 CWE-693 Medium Play framework weak secret key CWE-693 CWE-693 Medium Pyramid framework weak secret key CWE-693 CWE-693 Medium Tornado weak secret key CWE-693 CWE-693 Medium Web2py weak secret key CWE-693 CWE-693 Medium Yii2 weak secret key CWE-693 CWE-693 Medium