Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Oracle JRE Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3174) CVE-2012-3174 CWE-264 CWE-264 Critical Oracle JRE Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0422) CVE-2013-0422 CWE-264 CWE-264 Critical Oracle PeopleSoft SSO weak secret key CWE-693 CWE-693 High Oracle Reports rwservlet vulnerabilities CVE-2012-3152 CVE-2012-3153 CWE-20 CWE-20 High Oracle Reports Services RWServlet environment variables disclosure CWE-200 CWE-200 Low Oracle Sun GlassFish/Java System Application Server Remote Authentication Bypass Vulnerability CVE-2011-0807 CWE-287 CWE-287 High Oracle Weblogic Async Component Deserialization RCE CVE-2019-2725 CVE-2019-2725 CWE-94 CWE-94 High Oracle WebLogic Authentication Bypass CVE-2018-2894 CWE-287 CWE-287 High Oracle WebLogic Remote Code Execution (CVE-2020-14882) CVE-2020-14882 CWE-78 CWE-78 Critical Oracle WebLogic Remote Code Execution via IIOP CVE-2020-2551 CWE-502 CWE-502 High Oracle WebLogic Remote Code Execution via T3 CVE-2018-3245 CWE-502 CWE-502 High Oracle Weblogic T3 XXE (CVE-2019-2647) CVE-2019-2647 CWE-611 CWE-611 High Oracle Weblogic T3 XXE (CVE-2019-2888) CVE-2019-2888 CWE-611 CWE-611 High Oracle Weblogic WLS-WSAT Component Deserialization RCE CVE-2017-3506 CVE-2017-10271 CWE-94 CWE-94 High Osclass Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-6308) CVE-2014-6308 CWE-22 CWE-22 Medium Osclass Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-8084) CVE-2014-8084 CWE-22 CWE-22 High Osclass Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10751) CVE-2016-10751 CWE-22 CWE-22 High Osclass Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5163) CVE-2012-5163 CWE-707 CWE-707 Medium Osclass Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-6280) CVE-2014-6280 CWE-707 CWE-707 Medium Osclass Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-14481) CVE-2018-14481 CWE-707 CWE-707 Medium Osclass Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-0973) CVE-2012-0973 CWE-138 CWE-138 High Osclass Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-5162) CVE-2012-5162 CWE-138 CWE-138 Medium Osclass Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-8083) CVE-2014-8083 CWE-138 CWE-138 High Osclass Other Vulnerability (CVE-2014-8085) CVE-2014-8085 Medium osCommerce Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-27975) CVE-2020-27975 CWE-352 CWE-352 High osCommerce Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2002-1991) CVE-2002-1991 CWE-94 CWE-94 High osCommerce Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2002-2019) CVE-2002-2019 CWE-94 CWE-94 High osCommerce Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-18573) CVE-2018-18573 CWE-94 CWE-94 High osCommerce Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-2965) CVE-2015-2965 CWE-22 CWE-22 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-29070) CVE-2020-29070 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-35212) CVE-2022-35212 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5111) CVE-2023-5111 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5112) CVE-2023-5112 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-6296) CVE-2023-6296 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-6609) CVE-2023-6609 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43702) CVE-2023-43702 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43703) CVE-2023-43703 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43704) CVE-2023-43704 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43705) CVE-2023-43705 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43706) CVE-2023-43706 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43707) CVE-2023-43707 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43708) CVE-2023-43708 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43709) CVE-2023-43709 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43710) CVE-2023-43710 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43711) CVE-2023-43711 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43712) CVE-2023-43712 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43713) CVE-2023-43713 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43714) CVE-2023-43714 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43715) CVE-2023-43715 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43716) CVE-2023-43716 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43717) CVE-2023-43717 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43718) CVE-2023-43718 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43719) CVE-2023-43719 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43720) CVE-2023-43720 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43721) CVE-2023-43721 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43722) CVE-2023-43722 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43723) CVE-2023-43723 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43724) CVE-2023-43724 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43725) CVE-2023-43725 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43726) CVE-2023-43726 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43727) CVE-2023-43727 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43728) CVE-2023-43728 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43729) CVE-2023-43729 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43730) CVE-2023-43730 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43731) CVE-2023-43731 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43732) CVE-2023-43732 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43733) CVE-2023-43733 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43734) CVE-2023-43734 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43735) CVE-2023-43735 CWE-707 CWE-707 Medium osCommerce Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-27976) CVE-2020-27976 CWE-138 CWE-138 Critical osCommerce Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-0719) CVE-2008-0719 CWE-138 CWE-138 High osCommerce Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-6579) CVE-2023-6579 CWE-138 CWE-138 Critical osCommerce Incorrect Comparison Vulnerability (CVE-2020-23360) CVE-2020-23360 CWE-697 CWE-697 Critical osCommerce Other Vulnerability (CVE-2003-1219) CVE-2003-1219 Medium osCommerce Other Vulnerability (CVE-2004-2021) CVE-2004-2021 Medium 1...122123124125...293 123 / 293
