Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7320) CVE-2017-7320 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9068) CVE-2017-9068 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9070) CVE-2017-9070 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9071) CVE-2017-9071 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-11744) CVE-2017-11744 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-1000223) CVE-2017-1000223 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-10382) CVE-2018-10382 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20755) CVE-2018-20755 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20756) CVE-2018-20756 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20757) CVE-2018-20757 CWE-707 CWE-707 Medium MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20758) CVE-2018-20758 CWE-707 CWE-707 Medium MODX Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-2311) CVE-2014-2311 CWE-138 CWE-138 High MODX Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-2736) CVE-2014-2736 CWE-138 CWE-138 High MODX Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-1000067) CVE-2017-1000067 CWE-138 CWE-138 High MODX Improper Restriction of XML External Entity Reference Vulnerability (CVE-2020-25911) CVE-2020-25911 CWE-611 CWE-611 Critical MODX Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-1000207) CVE-2018-1000207 CWE-732 CWE-732 High MODX Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-9069) CVE-2017-9069 CWE-434 CWE-434 High MODX Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-1010123) CVE-2019-1010123 CWE-434 CWE-434 High MODX Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-26149) CVE-2022-26149 CWE-434 CWE-434 High mod_ssl Other Vulnerability (CVE-2002-0082) CVE-2002-0082 High mod_ssl Other Vulnerability (CVE-2004-0700) CVE-2004-0700 High MoinMoin CVE-2012-6081 multiple arbitrary code execution vulnerabilities CVE-2012-6081 CWE-434 CWE-434 High Mojolicious weak secret key CWE-693 CWE-693 Medium Moment.js Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-24785) CVE-2022-24785 CWE-22 CWE-22 High Moment.js Other Vulnerability (CVE-2022-31129) CVE-2022-31129 High Moment.js Uncontrolled Resource Consumption Vulnerability (CVE-2016-4055) CVE-2016-4055 CWE-400 CWE-400 Medium Moment.js Uncontrolled Resource Consumption Vulnerability (CVE-2017-18214) CVE-2017-18214 CWE-400 CWE-400 High MongoDB $where operator JavaScript injection CWE-943 CWE-943 High MongoDb Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-32036) CVE-2021-32036 CWE-770 CWE-770 High MongoDb CVE-2017-15535 Vulnerability (CVE-2017-15535) CVE-2017-15535 Critical MongoDb CVE-2019-2390 Vulnerability (CVE-2019-2390) CVE-2019-2390 High MongoDb CVE-2024-6384 Vulnerability (CVE-2024-6384) CVE-2024-6384 Medium MongoDb Excessive Iteration Vulnerability (CVE-2018-20805) CVE-2018-20805 CWE-834 CWE-834 Medium MongoDb Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6494) CVE-2016-6494 CWE-200 CWE-200 Medium MongoDB HTTP status interface CWE-200 CWE-200 Medium MongoDb Improper Authentication Vulnerability (CVE-2014-8180) CVE-2014-8180 CWE-287 CWE-287 Medium MongoDb Improper Authentication Vulnerability (CVE-2015-7882) CVE-2015-7882 CWE-287 CWE-287 High MongoDb Improper Certificate Validation Vulnerability (CVE-2023-1409) CVE-2023-1409 CWE-295 CWE-295 High MongoDb Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2019-20924) CVE-2019-20924 CWE-754 CWE-754 Medium MongoDb Improper Encoding or Escaping of Output Vulnerability (CVE-2021-20333) CVE-2021-20333 CWE-116 CWE-116 Medium MongoDb Improper Handling of Exceptional Conditions Vulnerability (CVE-2020-7923) CVE-2020-7923 CWE-755 CWE-755 Medium MongoDb Improper Handling of Exceptional Conditions Vulnerability (CVE-2020-7926) CVE-2020-7926 CWE-755 CWE-755 Medium MongoDb Improper Input Validation Vulnerability (CVE-2012-6619) CVE-2012-6619 CWE-20 CWE-20 Medium MongoDb Improper Input Validation Vulnerability (CVE-2013-1892) CVE-2013-1892 CWE-20 CWE-20 Medium MongoDb Improper Input Validation Vulnerability (CVE-2014-3971) CVE-2014-3971 CWE-20 CWE-20 Medium MongoDb Improper Input Validation Vulnerability (CVE-2015-1609) CVE-2015-1609 CWE-20 CWE-20 Medium MongoDb Improper Input Validation Vulnerability (CVE-2018-20804) CVE-2018-20804 CWE-20 CWE-20 Medium MongoDb Improper Input Validation Vulnerability (CVE-2018-25004) CVE-2018-25004 CWE-20 CWE-20 Medium MongoDb Improper Input Validation Vulnerability (CVE-2019-2389) CVE-2019-2389 CWE-20 CWE-20 Medium MongoDb Improper Input Validation Vulnerability (CVE-2020-7925) CVE-2020-7925 CWE-20 CWE-20 High MongoDb Improper Input Validation Vulnerability (CVE-2021-20330) CVE-2021-20330 CWE-20 CWE-20 Medium MongoDb Incorrect Authorization Vulnerability (CVE-2020-7921) CVE-2020-7921 CWE-863 CWE-863 Medium MongoDb Incorrect Comparison Vulnerability (CVE-2019-20925) CVE-2019-20925 CWE-697 CWE-697 High MongoDb Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-20326) CVE-2021-20326 CWE-732 CWE-732 Medium MongoDB injection CWE-943 CWE-943 High MongoDb Insufficiently Protected Credentials Vulnerability (CVE-2021-32039) CVE-2021-32039 CWE-522 CWE-522 Medium MongoDb Insufficient Session Expiration Vulnerability (CVE-2019-2386) CVE-2019-2386 CWE-613 CWE-613 High MongoDb Integer Overflow or Wraparound Vulnerability (CVE-2019-2392) CVE-2019-2392 CWE-190 CWE-190 Medium MongoDb Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-20803) CVE-2018-20803 CWE-835 CWE-835 Medium MongoDb Missing Authorization Vulnerability (CVE-2024-6375) CVE-2024-6375 CWE-862 CWE-862 Medium MongoDb Other Vulnerability (CVE-2013-2132) CVE-2013-2132 Medium MongoDb Other Vulnerability (CVE-2018-20802) CVE-2018-20802 Medium MongoDb Other Vulnerability (CVE-2019-20923) CVE-2019-20923 Medium MongoDb Other Vulnerability (CVE-2020-7928) CVE-2020-7928 Medium MongoDb Other Vulnerability (CVE-2020-7929) CVE-2020-7929 Medium MongoDb Out-of-bounds Read Vulnerability (CVE-2017-14227) CVE-2017-14227 CWE-125 CWE-125 High MongoDb Out-of-bounds Write Vulnerability (CVE-2021-32040) CVE-2021-32040 CWE-787 CWE-787 High MongoDb Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4650) CVE-2013-4650 CWE-264 CWE-264 Medium MongoDb Reachable Assertion Vulnerability (CVE-2021-32037) CVE-2021-32037 CWE-617 CWE-617 Medium MongoDb Reachable Assertion Vulnerability (CVE-2022-24272) CVE-2022-24272 CWE-617 CWE-617 Medium MongoDb Resource Management Errors Vulnerability (CVE-2013-3969) CVE-2013-3969 Medium MongoDb Uncontrolled Resource Consumption Vulnerability (CVE-2016-3104) CVE-2016-3104 CWE-400 CWE-400 High MongoDb Use After Free Vulnerability (CVE-2019-2393) CVE-2019-2393 CWE-416 CWE-416 Medium Moodle 7PK - Security Features Vulnerability (CVE-2015-5267) CVE-2015-5267 High Moodle 7PK - Security Features Vulnerability (CVE-2015-5331) CVE-2015-5331 Medium 1...74757677...293 75 / 293
