Vulnerability Name CVE Severity
X-Forwarded-For HTTP header security bypass
Xdebug remote code execution via xdebug.remote_connect_back
XML entity injection
XML external entity injection
XML external entity injection (variant)
XML external entity injection and XML injection
XML External Entity Injection via external file
XML external entity injection via File Upload
XML quadratic blowup denial of service attack
XOOPS CVE-2009-3963 Vulnerability (CVE-2009-3963) CVE-2009-3963
XOOPS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3822) CVE-2011-3822
XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2006-2516) CVE-2006-2516
XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-0612) CVE-2008-0612
XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-3296) CVE-2008-3296
XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-6884) CVE-2008-6884
XOOPS Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-0613) CVE-2008-0613
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2003-1453) CVE-2003-1453
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2004-2756) CVE-2004-2756
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-2035) CVE-2008-2035
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3295) CVE-2008-3295
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4432) CVE-2008-4432
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4435) CVE-2008-4435
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6885) CVE-2008-6885
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-2783) CVE-2009-2783
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4565) CVE-2011-4565
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-0984) CVE-2012-0984
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7944) CVE-2017-7944
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12139) CVE-2017-12139
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16683) CVE-2019-16683
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16684) CVE-2019-16684
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-36217) CVE-2023-36217
XOOPS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2002-2391) CVE-2002-2391
XOOPS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-0611) CVE-2008-0611
XOOPS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-4433) CVE-2008-4433
XOOPS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5665) CVE-2008-5665
XOOPS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-7290) CVE-2017-7290
XOOPS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-11174) CVE-2017-11174
XOOPS Other Vulnerability (CVE-2005-0743) CVE-2005-0743
XOOPS Other Vulnerability (CVE-2005-2112) CVE-2005-2112
XOOPS Other Vulnerability (CVE-2005-2113) CVE-2005-2113
XOOPS Other Vulnerability (CVE-2005-3680) CVE-2005-3680
XOOPS Other Vulnerability (CVE-2006-5810) CVE-2006-5810
XOOPS Other Vulnerability (CVE-2007-0377) CVE-2007-0377
XOOPS Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4851) CVE-2009-4851
XOOPS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-12138) CVE-2017-12138
XPath injection vulnerability
XSLT injection
XSS on Apache HTTP Server 413 error pages via malformed HTTP method CVE-2007-6203
XWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-41932) CVE-2022-41932
XWiki Cleartext Storage of Sensitive Information Vulnerability (CVE-2023-50719) CVE-2023-50719
XWiki Credentials Management Errors Vulnerability (CVE-2005-4862) CVE-2005-4862
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-32730) CVE-2021-32730
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-32732) CVE-2021-32732
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-36095) CVE-2022-36095
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-41927) CVE-2022-41927
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-29213) CVE-2023-29213
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-37277) CVE-2023-37277
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-40572) CVE-2023-40572
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-46242) CVE-2023-46242
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-48293) CVE-2023-48293
XWiki CVE-2007-4898 Vulnerability (CVE-2007-4898) CVE-2007-4898
XWiki CVE-2022-31166 Vulnerability (CVE-2022-31166) CVE-2022-31166
XWiki CVE-2023-26471 Vulnerability (CVE-2023-26471) CVE-2023-26471
XWiki CVE-2023-26473 Vulnerability (CVE-2023-26473) CVE-2023-26473
XWiki CVE-2023-26474 Vulnerability (CVE-2023-26474) CVE-2023-26474
XWiki CVE-2023-35166 Vulnerability (CVE-2023-35166) CVE-2023-35166
XWiki CVE-2023-40573 Vulnerability (CVE-2023-40573) CVE-2023-40573
XWiki CVE-2023-48241 Vulnerability (CVE-2023-48241) CVE-2023-48241
XWiki CVE-2023-50720 Vulnerability (CVE-2023-50720) CVE-2023-50720
XWiki Exposure of Private Personal Information to an Unauthorized Actor Vulnerability (CVE-2022-24819) CVE-2022-24819
XWiki Exposure of Private Personal Information to an Unauthorized Actor Vulnerability (CVE-2022-41936) CVE-2022-41936
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-29203) CVE-2023-29203
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-29208) CVE-2023-29208
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-34467) CVE-2023-34467
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-35151) CVE-2023-35151