Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-22889) CVE-2021-22889 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-38040) CVE-2023-38040 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-7149) CVE-2013-7149 CWE-138 CWE-138 High ReviveAdserver Incorrect Authorization Vulnerability (CVE-2020-8142) CVE-2020-8142 CWE-863 CWE-863 Medium ReviveAdserver Other Vulnerability (CVE-2014-8875) CVE-2014-8875 Medium ReviveAdserver Other Vulnerability (CVE-2016-9471) CVE-2016-9471 Low ReviveAdserver Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-7371) CVE-2015-7371 CWE-264 CWE-264 Medium ReviveAdserver Session Fixation Vulnerability (CVE-2016-9125) CVE-2016-9125 CWE-384 CWE-384 Critical ReviveAdserver Session Fixation Vulnerability (CVE-2017-5831) CVE-2017-5831 CWE-384 CWE-384 Medium ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-5433) CVE-2019-5433 CWE-601 CWE-601 Medium ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-8143) CVE-2020-8143 CWE-601 CWE-601 Medium ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-22873) CVE-2021-22873 CWE-601 CWE-601 Medium ReviveAdserver Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2021-22948) CVE-2021-22948 CWE-327 CWE-327 High ReviveAdserver Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability (CVE-2019-5440) CVE-2019-5440 CWE-338 CWE-338 High Revoked SSL Certificate CWE-295 CWE-295 Medium Riot.js Resource Management Errors Vulnerability (CVE-2016-10527) CVE-2016-10527 High ROBOT Attack Detected (Strong Oracle) High ROBOT Attack Detected (Weak Oracle) High RoR Database Configuration File Detected CWE-538 CWE-538 High RoR Development Mode enabled CWE-200 CWE-200 Medium Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4076) CVE-2009-4076 CWE-352 CWE-352 Medium Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4077) CVE-2009-4077 CWE-352 CWE-352 Medium Roundcube Cross-site Request Forgery (CSRF) Vulnerability (CVE-2016-4069) CVE-2016-4069 High Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-12626) CVE-2020-12626 CWE-352 CWE-352 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-1433) CVE-2015-1433 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-8105) CVE-2015-8105 Low Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-8793) CVE-2015-8793 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-8864) CVE-2015-8864 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2016-4068) CVE-2016-4068 Medium Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-0464) CVE-2010-0464 CWE-200 CWE-200 Medium Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5382) CVE-2015-5382 CWE-200 CWE-200 Medium Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5383) CVE-2015-5383 CWE-200 CWE-200 High Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-19205) CVE-2018-19205 CWE-200 CWE-200 High Roundcube Files or Directories Accessible to External Parties Vulnerability (CVE-2017-16651) CVE-2017-16651 CWE-552 CWE-552 High Roundcube Improper Access Control Vulnerability (CVE-2016-9920) CVE-2016-9920 CWE-284 CWE-284 High Roundcube Improper Input Validation Vulnerability (CVE-2011-1491) CVE-2011-1491 CWE-20 CWE-20 Low Roundcube Improper Input Validation Vulnerability (CVE-2011-1492) CVE-2011-1492 CWE-20 CWE-20 Medium Roundcube Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-1904) CVE-2013-1904 CWE-22 CWE-22 Medium Roundcube Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-12640) CVE-2020-12640 CWE-22 CWE-22 Critical Roundcube Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') Vulnerability (CVE-2020-12641) CVE-2020-12641 CWE-707 CWE-707 Critical Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0413) CVE-2009-0413 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2937) CVE-2011-2937 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-1253) CVE-2012-1253 CWE-707 CWE-707 Low Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3507) CVE-2012-3507 CWE-707 CWE-707 Low Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3508) CVE-2012-3508 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4668) CVE-2012-4668 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6121) CVE-2012-6121 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5645) CVE-2013-5645 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5381) CVE-2015-5381 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6820) CVE-2017-6820 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-19206) CVE-2018-19206 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-12625) CVE-2020-12625 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13964) CVE-2020-13964 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13965) CVE-2020-13965 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15562) CVE-2020-15562 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-16145) CVE-2020-16145 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-18670) CVE-2020-18670 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-18671) CVE-2020-18671 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35730) CVE-2020-35730 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26925) CVE-2021-26925 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-44025) CVE-2021-44025 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-46144) CVE-2021-46144 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5631) CVE-2023-5631 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43770) CVE-2023-43770 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-47272) CVE-2023-47272 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-37383) CVE-2024-37383 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-42008) CVE-2024-42008 CWE-707 CWE-707 Critical Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-42009) CVE-2024-42009 CWE-707 CWE-707 Critical Roundcube Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-6172) CVE-2013-6172 CWE-138 CWE-138 High Roundcube Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-44026) CVE-2021-44026 CWE-138 CWE-138 Critical Roundcube Improper Privilege Management Vulnerability (CVE-2017-8114) CVE-2017-8114 CWE-269 CWE-269 High Roundcube Multiple Buffer Overflow Vulnerabilities (CVE-2015-2181) CVE-2015-2181 High Roundcube Multiple Cross-site Request Forgery (CSRF) Vulnerabilities (CVE-2014-9587) CVE-2014-9587 Medium Roundcube Resource Management Errors Vulnerability (CVE-2008-5620) CVE-2008-5620 High Roundcube Resource Management Errors Vulnerability (CVE-2011-4078) CVE-2011-4078 Medium 1...157158159160...306 158 / 306
