Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Citrix Gateway Open Redirect And XSS Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Joomla Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2018-11325) CVE-2018-11325 CWE-209 CWE-209 Critical Joomla Improper Access Control Vulnerability (CVE-2016-9836) CVE-2016-9836 CWE-284 CWE-284 Critical Joomla Improper Authentication Vulnerability (CVE-2017-16634) CVE-2017-16634 CWE-287 CWE-287 Critical Joomla Improper Authentication Vulnerability (CVE-2022-23795) CVE-2022-23795 CWE-287 CWE-287 Critical Joomla Improper Input Validation Vulnerability (CVE-2016-8869) CVE-2016-8869 CWE-20 CWE-20 Critical Joomla Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-10945) CVE-2019-10945 CWE-22 CWE-22 Critical Joomla Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2019-12765) CVE-2019-12765 CWE-1236 CWE-1236 Critical Joomla Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2016-10033) CVE-2016-10033 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2016-10045) CVE-2016-10045 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') Vulnerability (CVE-2017-14596) CVE-2017-14596 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-1151) CVE-2011-1151 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-8917) CVE-2017-8917 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-6376) CVE-2018-6376 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-19846) CVE-2019-19846 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-10243) CVE-2020-10243 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-35613) CVE-2020-35613 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-23797) CVE-2022-23797 CWE-138 CWE-138 Critical Joomla Incorrect Authorization Vulnerability (CVE-2010-1435) CVE-2010-1435 CWE-863 CWE-863 Critical Joomla Other Vulnerability (CVE-2005-3773) CVE-2005-3773 Critical Joomla Other Vulnerability (CVE-2006-0303) CVE-2006-0303 Critical Joomla Other Vulnerability (CVE-2006-1047) CVE-2006-1047 Critical Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3225) CVE-2008-3225 CWE-264 CWE-264 Critical Joomla Session Fixation Vulnerability (CVE-2007-4188) CVE-2007-4188 CWE-384 CWE-384 Critical Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2010-1433) CVE-2010-1433 CWE-434 CWE-434 Critical Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-15882) CVE-2018-15882 CWE-434 CWE-434 Critical Juniper Junos OS J-Web RCE (CVE-2023-36845/CVE-2023-36846) CVE-2023-36845 CVE-2023-36846 CWE-473 CWE-473 Critical Liferay DXP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42120) CVE-2022-42120 CWE-138 CWE-138 Critical Liferay Portal Deserialization of Untrusted Data Vulnerability (CVE-2020-7961) CVE-2020-7961 CWE-502 CWE-502 Critical Liferay Portal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42120) CVE-2022-42120 CWE-138 CWE-138 Critical Liferay Portal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42122) CVE-2022-42122 CWE-138 CWE-138 Critical Lighttpd Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-2323) CVE-2014-2323 CWE-138 CWE-138 Critical Lighttpd Integer Overflow or Wraparound Vulnerability (CVE-2019-11072) CVE-2019-11072 CWE-190 CWE-190 Critical LimeSurvey CVE-2008-2570 Vulnerability (CVE-2008-2570) CVE-2008-2570 Critical LimeSurvey Deserialization of Untrusted Data Vulnerability (CVE-2018-17057) CVE-2018-17057 CWE-502 CWE-502 Critical LimeSurvey Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-7556) CVE-2018-7556 CWE-200 CWE-200 Critical LimeSurvey Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-9960) CVE-2019-9960 CWE-22 CWE-22 Critical LimeSurvey Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2019-16184) CVE-2019-16184 CWE-1236 CWE-1236 Critical LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-25019) CVE-2019-25019 CWE-138 CWE-138 Critical LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-48008) CVE-2022-48008 CWE-434 CWE-434 Critical Local File Inclusion CWE-20 CWE-20 Critical Lodash Other Vulnerability (CVE-2019-10744) CVE-2019-10744 Critical Magento CVE-2019-8121 Vulnerability (CVE-2019-8121) CVE-2019-8121 Critical Magento CVE-2019-8136 Vulnerability (CVE-2019-8136) CVE-2019-8136 Critical Magento CVE-2019-8144 Vulnerability (CVE-2019-8144) CVE-2019-8144 Critical Magento CVE-2020-3718 Vulnerability (CVE-2020-3718) CVE-2020-3718 Critical Magento CVE-2020-9579 Vulnerability (CVE-2020-9579) CVE-2020-9579 Critical Magento CVE-2020-9580 Vulnerability (CVE-2020-9580) CVE-2020-9580 Critical Magento CVE-2020-9585 Vulnerability (CVE-2020-9585) CVE-2020-9585 Critical Magento CVE-2020-9631 Vulnerability (CVE-2020-9631) CVE-2020-9631 Critical Magento CVE-2020-9632 Vulnerability (CVE-2020-9632) CVE-2020-9632 Critical Magento Deserialization of Untrusted Data Vulnerability (CVE-2020-3716) CVE-2020-3716 CWE-502 CWE-502 Critical Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8707) CVE-2015-8707 CWE-200 CWE-200 Critical Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2020-9664) CVE-2020-9664 CWE-94 CWE-94 Critical Magento Improper Input Validation Vulnerability (CVE-2022-24086) CVE-2022-24086 CWE-20 CWE-20 Critical Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9691) CVE-2020-9691 CWE-707 CWE-707 Critical Magento Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2016-4010) CVE-2016-4010 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-8135) CVE-2019-8135 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9576) CVE-2020-9576 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9578) CVE-2020-9578 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9582) CVE-2020-9582 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9583) CVE-2020-9583 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-21016) CVE-2021-21016 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-21018) CVE-2021-21018 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-7139) CVE-2019-7139 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-21024) CVE-2021-21024 CWE-138 CWE-138 Critical Magento Improper Privilege Management Vulnerability (CVE-2020-9630) CVE-2020-9630 CWE-269 CWE-269 Critical Magento Incorrect Authorization Vulnerability (CVE-2022-34256) CVE-2022-34256 CWE-863 CWE-863 Critical Magento Insufficient Session Expiration Vulnerability (CVE-2019-8149) CVE-2019-8149 CWE-613 CWE-613 Critical Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-24407) CVE-2020-24407 CWE-434 CWE-434 Critical Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-21014) CVE-2021-21014 CWE-434 CWE-434 Critical Magento XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2019-8158) CVE-2019-8158 CWE-91 CWE-91 Critical Magento XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2021-21019) CVE-2021-21019 CWE-91 CWE-91 Critical Magento XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2021-21025) CVE-2021-21025 CWE-91 CWE-91 Critical Malware Identified (SB) CWE-506 CWE-506 Critical math.js Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-1001002) CVE-2017-1001002 CWE-94 CWE-94 Critical 1...4567...17 5 / 17
