Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-35613) CVE-2020-35613 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-23797) CVE-2022-23797 CWE-138 CWE-138 Critical Joomla Incorrect Authorization Vulnerability (CVE-2010-1435) CVE-2010-1435 CWE-863 CWE-863 Critical Joomla Other Vulnerability (CVE-2005-3773) CVE-2005-3773 Critical Joomla Other Vulnerability (CVE-2006-0303) CVE-2006-0303 Critical Joomla Other Vulnerability (CVE-2006-1047) CVE-2006-1047 Critical Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3225) CVE-2008-3225 CWE-264 CWE-264 Critical Joomla Session Fixation Vulnerability (CVE-2007-4188) CVE-2007-4188 CWE-384 CWE-384 Critical Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2010-1433) CVE-2010-1433 CWE-434 CWE-434 Critical Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-15882) CVE-2018-15882 CWE-434 CWE-434 Critical Juniper Junos OS J-Web RCE (CVE-2023-36845/CVE-2023-36846) CVE-2023-36845 CVE-2023-36846 CWE-473 CWE-473 Critical Kramer VIAware RCE (CVE-2021-36356/CVE-2021-35064) CVE-2021-36356 CVE-2019-17124 CVE-2021-35064 CWE-434 CWE-434 Critical Liferay DXP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42120) CVE-2022-42120 CWE-138 CWE-138 Critical Liferay Portal Deserialization of Untrusted Data Vulnerability (CVE-2020-7961) CVE-2020-7961 CWE-502 CWE-502 Critical Liferay Portal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42120) CVE-2022-42120 CWE-138 CWE-138 Critical Liferay Portal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42122) CVE-2022-42122 CWE-138 CWE-138 Critical Lighttpd Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-2323) CVE-2014-2323 CWE-138 CWE-138 Critical Lighttpd Integer Overflow or Wraparound Vulnerability (CVE-2019-11072) CVE-2019-11072 CWE-190 CWE-190 Critical LimeSurvey CVE-2008-2570 Vulnerability (CVE-2008-2570) CVE-2008-2570 Critical LimeSurvey Deserialization of Untrusted Data Vulnerability (CVE-2018-17057) CVE-2018-17057 CWE-502 CWE-502 Critical LimeSurvey Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-7556) CVE-2018-7556 CWE-200 CWE-200 Critical LimeSurvey Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-9960) CVE-2019-9960 CWE-22 CWE-22 Critical LimeSurvey Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2019-16184) CVE-2019-16184 CWE-1236 CWE-1236 Critical LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-25019) CVE-2019-25019 CWE-138 CWE-138 Critical LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-48008) CVE-2022-48008 CWE-434 CWE-434 Critical Lodash Other Vulnerability (CVE-2019-10744) CVE-2019-10744 Critical Lucee CF_CLIENT_ RCE CWE-200 CWE-200 Critical Lucee Unset Admin Password CWE-200 CWE-200 Critical Magento CVE-2019-8121 Vulnerability (CVE-2019-8121) CVE-2019-8121 Critical Magento CVE-2019-8136 Vulnerability (CVE-2019-8136) CVE-2019-8136 Critical Magento CVE-2019-8144 Vulnerability (CVE-2019-8144) CVE-2019-8144 Critical Magento CVE-2020-3718 Vulnerability (CVE-2020-3718) CVE-2020-3718 Critical Magento CVE-2020-9579 Vulnerability (CVE-2020-9579) CVE-2020-9579 Critical Magento CVE-2020-9580 Vulnerability (CVE-2020-9580) CVE-2020-9580 Critical Magento CVE-2020-9585 Vulnerability (CVE-2020-9585) CVE-2020-9585 Critical Magento CVE-2020-9631 Vulnerability (CVE-2020-9631) CVE-2020-9631 Critical Magento CVE-2020-9632 Vulnerability (CVE-2020-9632) CVE-2020-9632 Critical Magento Deserialization of Untrusted Data Vulnerability (CVE-2020-3716) CVE-2020-3716 CWE-502 CWE-502 Critical Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8707) CVE-2015-8707 CWE-200 CWE-200 Critical Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2020-9664) CVE-2020-9664 CWE-94 CWE-94 Critical Magento Improper Input Validation Vulnerability (CVE-2022-24086) CVE-2022-24086 CWE-20 CWE-20 Critical Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9691) CVE-2020-9691 CWE-707 CWE-707 Critical Magento Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2016-4010) CVE-2016-4010 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-8135) CVE-2019-8135 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9576) CVE-2020-9576 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9578) CVE-2020-9578 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9582) CVE-2020-9582 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9583) CVE-2020-9583 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-21016) CVE-2021-21016 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-21018) CVE-2021-21018 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-7139) CVE-2019-7139 CWE-138 CWE-138 Critical Magento Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-21024) CVE-2021-21024 CWE-138 CWE-138 Critical Magento Improper Privilege Management Vulnerability (CVE-2020-9630) CVE-2020-9630 CWE-269 CWE-269 Critical Magento Incorrect Authorization Vulnerability (CVE-2022-34256) CVE-2022-34256 CWE-863 CWE-863 Critical Magento Insufficient Session Expiration Vulnerability (CVE-2019-8149) CVE-2019-8149 CWE-613 CWE-613 Critical Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-24407) CVE-2020-24407 CWE-434 CWE-434 Critical Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-21014) CVE-2021-21014 CWE-434 CWE-434 Critical Magento XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2019-8158) CVE-2019-8158 CWE-91 CWE-91 Critical Magento XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2021-21019) CVE-2021-21019 CWE-91 CWE-91 Critical Magento XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2021-21025) CVE-2021-21025 CWE-91 CWE-91 Critical Malware Identified (SB) CWE-506 CWE-506 Critical Masa CMS Incorrect Authorization Vulnerability (CVE-2022-47002) CVE-2022-47002 CWE-863 CWE-863 Critical math.js Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-1001002) CVE-2017-1001002 CWE-94 CWE-94 Critical MediaWiki Credentials Management Errors Vulnerability (CVE-2015-8009) CVE-2015-8009 Critical MediaWiki Credentials Management Errors Vulnerability (CVE-2015-8626) CVE-2015-8626 Critical MediaWiki CVE-2022-28205 Vulnerability (CVE-2022-28205) CVE-2022-28205 Critical MediaWiki CVE-2022-28206 Vulnerability (CVE-2022-28206) CVE-2022-28206 Critical MediaWiki CVE-2022-28209 Vulnerability (CVE-2022-28209) CVE-2022-28209 Critical MediaWiki CVE-2023-29141 Vulnerability (CVE-2023-29141) CVE-2023-29141 Critical MediaWiki CVE-2023-37303 Vulnerability (CVE-2023-37303) CVE-2023-37303 Critical MediaWiki Improper Authentication Vulnerability (CVE-2021-36128) CVE-2021-36128 CWE-287 CWE-287 Critical MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-3550) CVE-2023-3550 CWE-707 CWE-707 Critical MediaWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2017-0372) CVE-2017-0372 CWE-138 CWE-138 Critical MediaWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2017-8809) CVE-2017-8809 CWE-138 CWE-138 Critical MediaWiki Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-29904) CVE-2022-29904 CWE-138 CWE-138 Critical 1...5678...19 6 / 19
