Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0273) CVE-2008-0273 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0274) CVE-2008-0274 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0276) CVE-2008-0276 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0462) CVE-2008-0462 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1131) CVE-2008-1131 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1133) CVE-2008-1133 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3218) CVE-2008-3218 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3219) CVE-2008-3219 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3740) CVE-2008-3740 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3741) CVE-2008-3741 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6170) CVE-2008-6170 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6533) CVE-2008-6533 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1047) CVE-2009-1047 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1575) CVE-2009-1575 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1844) CVE-2009-1844 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-2373) CVE-2009-2373 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3156) CVE-2009-3156 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3479) CVE-2009-3479 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4369) CVE-2009-4369 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4370) CVE-2009-4370 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4371) CVE-2009-4371 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2250) CVE-2010-2250 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2472) CVE-2010-2472 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-3094) CVE-2010-3094 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-5312) CVE-2010-5312 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2714) CVE-2011-2714 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2339) CVE-2012-2339 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0244) CVE-2013-0244 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6387) CVE-2013-6387 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6388) CVE-2013-6388 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-1607) CVE-2014-1607 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5021) CVE-2014-5021 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5022) CVE-2014-5022 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6658) CVE-2015-6658 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6665) CVE-2015-6665 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7571) CVE-2016-7571 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6927) CVE-2017-6927 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6929) CVE-2017-6929 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-9861) CVE-2018-9861 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6341) CVE-2019-6341 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10909) CVE-2019-10909 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11876) CVE-2019-11876 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9281) CVE-2020-9281 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11022) CVE-2020-11022 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11023) CVE-2020-11023 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13666) CVE-2020-13666 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13668) CVE-2020-13668 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13669) CVE-2020-13669 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13672) CVE-2020-13672 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13688) CVE-2020-13688 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33829) CVE-2021-33829 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41164) CVE-2021-41164 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41165) CVE-2021-41165 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41182) CVE-2021-41182 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41183) CVE-2021-41183 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41184) CVE-2021-41184 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-24728) CVE-2022-24728 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-25276) CVE-2022-25276 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2020-28949) CVE-2020-28949 CWE-138 CWE-138 High Drupal Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2020-13664) CVE-2020-13664 CWE-138 CWE-138 High Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-2999) CVE-2008-2999 CWE-138 CWE-138 High Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-3223) CVE-2008-3223 CWE-138 CWE-138 High Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-2715) CVE-2011-2715 CWE-138 CWE-138 Critical Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-3704) CVE-2014-3704 CWE-138 CWE-138 High Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-6659) CVE-2015-6659 CWE-138 CWE-138 High Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-10910) CVE-2019-10910 CWE-138 CWE-138 Critical Drupal Improper Privilege Management Vulnerability (CVE-2017-6924) CVE-2017-6924 CWE-269 CWE-269 High Drupal Improper Removal of Sensitive Information Before Storage or Transfer Vulnerability (CVE-2022-31042) CVE-2022-31042 CWE-212 CWE-212 Medium Drupal Improper Removal of Sensitive Information Before Storage or Transfer Vulnerability (CVE-2022-31043) CVE-2022-31043 CWE-212 CWE-212 Medium Drupal Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2017-6381) CVE-2017-6381 CWE-829 CWE-829 High Drupal Incorrect Authorization Vulnerability (CVE-2011-2726) CVE-2011-2726 CWE-863 CWE-863 High Drupal Incorrect Authorization Vulnerability (CVE-2017-6377) CVE-2017-6377 CWE-863 CWE-863 High Drupal Incorrect Authorization Vulnerability (CVE-2020-13676) CVE-2020-13676 CWE-863 CWE-863 Medium Drupal Incorrect Authorization Vulnerability (CVE-2022-25270) CVE-2022-25270 CWE-863 CWE-863 Medium Drupal Incorrect Authorization Vulnerability (CVE-2022-25274) CVE-2022-25274 CWE-863 CWE-863 Medium 1...31323334...303 32 / 303
