Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Apache APISIX default token (CVE-2020-13945/CVE-2022-24112) CVE-2020-13945 CVE-2022-24112 CWE-259 CWE-259 Medium Apache Axis2 administration console weak password CWE-200 CWE-200 High Apache Axis2 information disclosure CWE-200 CWE-200 Medium Apache Axis2 web services enumeration CWE-200 CWE-200 Low Apache Axis2 xsd local file inclusion CWE-22 CWE-22 High Apache balancer-manager application publicly accessible CWE-200 CWE-200 Medium Apache Cassandra Unauthorized Access Vulnerability CWE-200 CWE-200 Medium Apache configured to run as proxy CWE-441 CWE-441 Medium Apache CouchDB JSON Remote Privilege Escalation Vulnerability CVE-2017-12635 CWE-285 CWE-285 High Apache Denial of service in mod_lua r:parsebody Vulnerability (CVE-2022-29404) CVE-2022-29404 Medium Apache error log escape sequence injection vulnerability CVE-2003-0020 CWE-20 CWE-20 Medium Apache Flink jobmanager/logs Path Traversal CVE-2020-17519 CWE-22 CWE-22 High Apache Geronimo default administrative credentials CWE-693 CWE-693 High Apache httpd remote denial of service CVE-2011-3192 CWE-399 CWE-399 Medium Apache httpOnly cookie disclosure CVE-2012-0053 CWE-264 CWE-264 Medium Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2005-2970) CVE-2005-2970 CWE-770 CWE-770 Medium Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2008-2364) CVE-2008-2364 CWE-770 CWE-770 Medium Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2011-0419) CVE-2011-0419 CWE-770 CWE-770 Medium Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9517) CVE-2019-9517 CWE-770 CWE-770 High Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-30522) CVE-2022-30522 CWE-770 CWE-770 High Apache HTTP Server Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2020-11984) CVE-2020-11984 CWE-120 CWE-120 Critical Apache HTTP Server Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2007-1741) CVE-2007-1741 CWE-362 CWE-362 Medium Apache HTTP Server Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2014-0226) CVE-2014-0226 CWE-362 CWE-362 Medium Apache HTTP Server Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2019-0217) CVE-2019-0217 CWE-362 CWE-362 High Apache HTTP Server Configuration Vulnerability (CVE-2009-1195) CVE-2009-1195 Medium Apache HTTP Server Confusion Attacks CVE-2024-38472 CVE-2024-39573 CVE-2024-38477 CVE-2024-38476 CVE-2024-38475 CVE-2024-38474 CVE-2024-38473 CVE-2023-38709 CWE-436 CWE-436 High Apache HTTP Server Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6420) CVE-2007-6420 CWE-352 CWE-352 Medium Apache HTTP Server Cryptographic Issues Vulnerability (CVE-2009-3555) CVE-2009-3555 Medium Apache HTTP Server Cryptographic Issues Vulnerability (CVE-2016-0736) CVE-2016-0736 High Apache HTTP Server CVE-1999-0070 Vulnerability (CVE-1999-0070) CVE-1999-0070 Medium Apache HTTP Server CVE-2002-0392 Vulnerability (CVE-2002-0392) CVE-2002-0392 High Apache HTTP Server CVE-2002-0839 Vulnerability (CVE-2002-0839) CVE-2002-0839 High Apache HTTP Server CVE-2003-0789 Vulnerability (CVE-2003-0789) CVE-2003-0789 Critical Apache HTTP Server CVE-2004-0751 Vulnerability (CVE-2004-0751) CVE-2004-0751 Medium Apache HTTP Server CVE-2004-0786 Vulnerability (CVE-2004-0786) CVE-2004-0786 Medium Apache HTTP Server CVE-2004-0809 Vulnerability (CVE-2004-0809) CVE-2004-0809 Medium Apache HTTP Server CVE-2005-2700 Vulnerability (CVE-2005-2700) CVE-2005-2700 Critical Apache HTTP Server CVE-2007-3304 Vulnerability (CVE-2007-3304) CVE-2007-3304 Medium Apache HTTP Server CVE-2009-1191 Vulnerability (CVE-2009-1191) CVE-2009-1191 Medium Apache HTTP Server CVE-2009-3720 Vulnerability (CVE-2009-3720) CVE-2009-3720 Medium Apache HTTP Server CVE-2010-0425 Vulnerability (CVE-2010-0425) CVE-2010-0425 Critical Apache HTTP Server CVE-2012-0031 Vulnerability (CVE-2012-0031) CVE-2012-0031 Medium Apache HTTP Server CVE-2012-0053 Vulnerability (CVE-2012-0053) CVE-2012-0053 Medium Apache HTTP Server CVE-2012-0883 Vulnerability (CVE-2012-0883) CVE-2012-0883 Medium Apache HTTP Server CVE-2013-1862 Vulnerability (CVE-2013-1862) CVE-2013-1862 Medium Apache HTTP Server CVE-2013-1896 Vulnerability (CVE-2013-1896) CVE-2013-1896 Medium Apache HTTP Server CVE-2013-2249 Vulnerability (CVE-2013-2249) CVE-2013-2249 High Apache HTTP Server CVE-2013-5704 Vulnerability (CVE-2013-5704) CVE-2013-5704 Medium Apache HTTP Server CVE-2013-6438 Vulnerability (CVE-2013-6438) CVE-2013-6438 Medium Apache HTTP Server CVE-2014-0098 Vulnerability (CVE-2014-0098) CVE-2014-0098 Medium Apache HTTP Server CVE-2016-5387 Vulnerability (CVE-2016-5387) CVE-2016-5387 High Apache HTTP Server CVE-2016-8743 Vulnerability (CVE-2016-8743) CVE-2016-8743 High Apache HTTP Server CVE-2018-1283 Vulnerability (CVE-2018-1283) CVE-2018-1283 Medium Apache HTTP Server CVE-2018-11763 Vulnerability (CVE-2018-11763) CVE-2018-11763 Medium Apache HTTP Server CVE-2019-0190 Vulnerability (CVE-2019-0190) CVE-2019-0190 High Apache HTTP Server CVE-2019-0215 Vulnerability (CVE-2019-0215) CVE-2019-0215 High Apache HTTP Server DEPRECATED: Code Vulnerability (CVE-2015-3183) CVE-2015-3183 Medium Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2003-1418) CVE-2003-1418 CWE-200 CWE-200 Medium Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-6514) CVE-2007-6514 CWE-200 CWE-200 Medium Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-0434) CVE-2010-0434 CWE-200 CWE-200 Medium Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2068) CVE-2010-2068 CWE-200 CWE-200 Medium Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2791) CVE-2010-2791 CWE-200 CWE-200 Medium Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-3502) CVE-2012-3502 CWE-200 CWE-200 Medium Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-30556) CVE-2022-30556 CWE-200 CWE-200 High Apache HTTP Server Improper Access Control Vulnerability (CVE-2016-4979) CVE-2016-4979 CWE-284 CWE-284 High Apache HTTP Server Improper Authentication Vulnerability (CVE-2017-3167) CVE-2017-3167 CWE-287 CWE-287 Critical Apache HTTP Server Improper Authentication Vulnerability (CVE-2018-1312) CVE-2018-1312 CWE-287 CWE-287 Critical Apache HTTP Server Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-3303) CVE-2007-3303 CWE-94 CWE-94 Medium Apache HTTP Server Improper Handling of Case Sensitivity Vulnerability (CVE-2001-0766) CVE-2001-0766 CWE-178 CWE-178 Critical Apache HTTP Server Improper Input Validation Vulnerability (CVE-2011-3368) CVE-2011-3368 CWE-20 CWE-20 Medium Apache HTTP Server Improper Input Validation Vulnerability (CVE-2011-3639) CVE-2011-3639 CWE-20 CWE-20 Medium Apache HTTP Server Improper Input Validation Vulnerability (CVE-2011-4317) CVE-2011-4317 CWE-20 CWE-20 Medium Apache HTTP Server Improper Input Validation Vulnerability (CVE-2011-4415) CVE-2011-4415 CWE-20 CWE-20 Low Apache HTTP Server Improper Input Validation Vulnerability (CVE-2012-0021) CVE-2012-0021 CWE-20 CWE-20 Low Apache HTTP Server Improper Input Validation Vulnerability (CVE-2014-0117) CVE-2014-0117 CWE-20 CWE-20 Medium 12345...293 2 / 293
