Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Liferay Portal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-29053) CVE-2021-29053 CWE-138 CWE-138 High Liferay Portal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42121) CVE-2022-42121 CWE-138 CWE-138 High Liferay Portal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-33945) CVE-2023-33945 CWE-138 CWE-138 High Liferay Portal Incorrect Authorization Vulnerability (CVE-2021-33335) CVE-2021-33335 CWE-863 CWE-863 High Liferay Portal Inefficient Regular Expression Complexity Vulnerability (CVE-2022-42124) CVE-2022-42124 CWE-1333 CWE-1333 High Liferay Portal Inefficient Regular Expression Complexity Vulnerability (CVE-2023-33950) CVE-2023-33950 CWE-1333 CWE-1333 High Liferay Portal Insecure Default Initialization of Resource Vulnerability (CVE-2023-33949) CVE-2023-33949 CWE-1188 CWE-1188 High Liferay Portal Insufficient Session Expiration Vulnerability (CVE-2021-33322) CVE-2021-33322 CWE-613 CWE-613 High Liferay Portal Missing Authorization Vulnerability (CVE-2023-33948) CVE-2023-33948 CWE-862 CWE-862 High Liferay Portal Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-5327) CVE-2010-5327 CWE-264 CWE-264 High Liferay Portal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-10795) CVE-2018-10795 CWE-434 CWE-434 High Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-24554) CVE-2020-24554 CWE-601 CWE-601 High Liferay Portal Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-33321) CVE-2021-33321 CWE-640 CWE-640 High Liferay TunnelServlet Deserialization Remote Code Execution CWE-502 CWE-502 High Liferay version older than 7.0 CWE-502 CWE-502 High Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-4359) CVE-2008-4359 CWE-200 CWE-200 High Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-4360) CVE-2008-4360 CWE-200 CWE-200 High Lighttpd Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-19052) CVE-2018-19052 CWE-22 CWE-22 High Lighttpd Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2015-3200) CVE-2015-3200 CWE-138 CWE-138 High Lighttpd Inadequate Encryption Strength Vulnerability (CVE-2013-4508) CVE-2013-4508 CWE-326 CWE-326 High Lighttpd Missing Release of Memory after Effective Lifetime Vulnerability (CVE-2022-41556) CVE-2022-41556 CWE-401 CWE-401 High Lighttpd NULL Pointer Dereference Vulnerability (CVE-2022-37797) CVE-2022-37797 CWE-476 CWE-476 High Lighttpd Other Vulnerability (CVE-2007-1870) CVE-2007-1870 High Lighttpd Other Vulnerability (CVE-2007-3949) CVE-2007-3949 High Lighttpd Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4559) CVE-2013-4559 CWE-264 CWE-264 High Lighttpd Uncontrolled Resource Consumption Vulnerability (CVE-2022-30780) CVE-2022-30780 CWE-400 CWE-400 High lighttpd v1.4.34 SQL injection and path traversal CVE-2014-2323 CVE-2014-2324 CWE-89 CWE-89 High LimeSurvey CVE-2009-1604 Vulnerability (CVE-2009-1604) CVE-2009-1604 High LimeSurvey Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-16177) CVE-2019-16177 CWE-200 CWE-200 High LimeSurvey Improper Input Validation Vulnerability (CVE-2019-15640) CVE-2019-15640 CWE-20 CWE-20 High LimeSurvey Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1000659) CVE-2018-1000659 CWE-22 CWE-22 High LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-4927) CVE-2012-4927 CWE-138 CWE-138 High LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-5017) CVE-2014-5017 CWE-138 CWE-138 High LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-43279) CVE-2022-43279 CWE-138 CWE-138 High LimeSurvey Improper Restriction of XML External Entity Reference Vulnerability (CVE-2019-16174) CVE-2019-16174 CWE-611 CWE-611 High LimeSurvey Incorrect Default Permissions Vulnerability (CVE-2019-16185) CVE-2019-16185 CWE-276 CWE-276 High LimeSurvey Incorrect Default Permissions Vulnerability (CVE-2019-16186) CVE-2019-16186 CWE-276 CWE-276 High LimeSurvey Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2019-16187) CVE-2019-16187 CWE-732 CWE-732 High LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-1000658) CVE-2018-1000658 CWE-434 CWE-434 High LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-44967) CVE-2021-44967 CWE-434 CWE-434 High Local File Inclusion CWE-20 CWE-20 High Lodash Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2020-8203) CVE-2020-8203 CWE-1321 CWE-1321 High Lodash Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2021-23337) CVE-2021-23337 CWE-138 CWE-138 High Long password denial of service CWE-400 CWE-400 High Lotus Notes formula injection CWE-89 CWE-89 High Lucee Server Arbitrary File Creation CVE-2021-21307 CWE-22 CWE-22 High Macromedia Dreamweaver remote database scripts CVE-2004-1893 CWE-200 CWE-200 High Magento (2.2.0 to 2.3.0) Unauthenticated SQL Injection Vulnerability CVE-2019-7139 CWE-89 CWE-89 High Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7854) CVE-2019-7854 CWE-639 CWE-639 High Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7890) CVE-2019-7890 CWE-639 CWE-639 High Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7950) CVE-2019-7950 CWE-639 CWE-639 High Magento Cacheleak CWE-200 CWE-200 High Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7865) CVE-2019-7865 CWE-352 CWE-352 High Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-8109) CVE-2019-8109 CWE-352 CWE-352 High Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-8155) CVE-2019-8155 CWE-352 CWE-352 High Magento Cryptographic Issues Vulnerability (CVE-2019-7858) CVE-2019-7858 High Magento Cryptographic Issues Vulnerability (CVE-2019-7860) CVE-2019-7860 High Magento Cryptographic Issues Vulnerability (CVE-2019-7886) CVE-2019-7886 High Magento CVE-2019-7876 Vulnerability (CVE-2019-7876) CVE-2019-7876 High Magento CVE-2019-7895 Vulnerability (CVE-2019-7895) CVE-2019-7895 High Magento CVE-2019-7896 Vulnerability (CVE-2019-7896) CVE-2019-7896 High Magento CVE-2019-7915 Vulnerability (CVE-2019-7915) CVE-2019-7915 High Magento CVE-2019-7928 Vulnerability (CVE-2019-7928) CVE-2019-7928 High Magento CVE-2019-8091 Vulnerability (CVE-2019-8091) CVE-2019-8091 High Magento CVE-2019-8110 Vulnerability (CVE-2019-8110) CVE-2019-8110 High Magento CVE-2019-8111 Vulnerability (CVE-2019-8111) CVE-2019-8111 High Magento CVE-2019-8119 Vulnerability (CVE-2019-8119) CVE-2019-8119 High Magento CVE-2019-8122 Vulnerability (CVE-2019-8122) CVE-2019-8122 High Magento CVE-2019-8125 Vulnerability (CVE-2019-8125) CVE-2019-8125 High Magento CVE-2019-8137 Vulnerability (CVE-2019-8137) CVE-2019-8137 High Magento CVE-2019-8150 Vulnerability (CVE-2019-8150) CVE-2019-8150 High Magento CVE-2019-8229 Vulnerability (CVE-2019-8229) CVE-2019-8229 High Magento CVE-2019-8230 Vulnerability (CVE-2019-8230) CVE-2019-8230 High Magento CVE-2019-8231 Vulnerability (CVE-2019-8231) CVE-2019-8231 High Magento CVE-2021-36021 Vulnerability (CVE-2021-36021) CVE-2021-36021 High 1...23242526...165 24 / 165
