Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity MODX Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-1000067) CVE-2017-1000067 CWE-138 CWE-138 High MODX Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-1000207) CVE-2018-1000207 CWE-732 CWE-732 High MODX Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-9069) CVE-2017-9069 CWE-434 CWE-434 High MODX Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-1010123) CVE-2019-1010123 CWE-434 CWE-434 High MODX Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-26149) CVE-2022-26149 CWE-434 CWE-434 High mod_ssl Other Vulnerability (CVE-2002-0082) CVE-2002-0082 High mod_ssl Other Vulnerability (CVE-2004-0700) CVE-2004-0700 High MoinMoin CVE-2012-6081 multiple arbitrary code execution vulnerabilities CVE-2012-6081 CWE-434 CWE-434 High Moment.js Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-24785) CVE-2022-24785 CWE-22 CWE-22 High Moment.js Other Vulnerability (CVE-2022-31129) CVE-2022-31129 High Moment.js Uncontrolled Resource Consumption Vulnerability (CVE-2017-18214) CVE-2017-18214 CWE-400 CWE-400 High MongoDB $where operator JavaScript injection CWE-943 CWE-943 High MongoDb Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-32036) CVE-2021-32036 CWE-770 CWE-770 High MongoDb CVE-2019-2390 Vulnerability (CVE-2019-2390) CVE-2019-2390 High MongoDb CVE-2024-7553 Vulnerability (CVE-2024-7553) CVE-2024-7553 High MongoDb Improper Authentication Vulnerability (CVE-2015-7882) CVE-2015-7882 CWE-287 CWE-287 High MongoDb Improper Certificate Validation Vulnerability (CVE-2023-1409) CVE-2023-1409 CWE-295 CWE-295 High MongoDb Improper Input Validation Vulnerability (CVE-2020-7925) CVE-2020-7925 CWE-20 CWE-20 High MongoDb Incorrect Comparison Vulnerability (CVE-2019-20925) CVE-2019-20925 CWE-697 CWE-697 High MongoDB injection CWE-943 CWE-943 High MongoDb Insufficient Session Expiration Vulnerability (CVE-2019-2386) CVE-2019-2386 CWE-613 CWE-613 High MongoDb Out-of-bounds Read Vulnerability (CVE-2017-14227) CVE-2017-14227 CWE-125 CWE-125 High MongoDb Out-of-bounds Write Vulnerability (CVE-2021-32040) CVE-2021-32040 CWE-787 CWE-787 High MongoDb Uncontrolled Resource Consumption Vulnerability (CVE-2016-3104) CVE-2016-3104 CWE-400 CWE-400 High Moodle 7PK - Security Features Vulnerability (CVE-2015-5267) CVE-2015-5267 High Moodle Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2020-14322) CVE-2020-14322 CWE-770 CWE-770 High Moodle Credentials Management Errors Vulnerability (CVE-2009-4304) CVE-2009-4304 High Moodle Credentials Management Errors Vulnerability (CVE-2014-7845) CVE-2014-7845 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5338) CVE-2015-5338 CWE-352 CWE-352 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-2157) CVE-2016-2157 CWE-352 CWE-352 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-3734) CVE-2016-3734 CWE-352 CWE-352 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-16854) CVE-2018-16854 CWE-352 CWE-352 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10186) CVE-2019-10186 CWE-352 CWE-352 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-43559) CVE-2021-43559 CWE-352 CWE-352 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-0335) CVE-2022-0335 CWE-352 CWE-352 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-2986) CVE-2022-2986 CWE-352 CWE-352 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-28335) CVE-2023-28335 CWE-352 CWE-352 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-34008) CVE-2024-34008 CWE-352 CWE-352 High Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-38276) CVE-2024-38276 CWE-352 CWE-352 High Moodle CVE-2018-10891 Vulnerability (CVE-2018-10891) CVE-2018-10891 High Moodle CVE-2020-25698 Vulnerability (CVE-2020-25698) CVE-2020-25698 High Moodle CVE-2023-23923 Vulnerability (CVE-2023-23923) CVE-2023-23923 High Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1155) CVE-2012-1155 CWE-200 CWE-200 High Moodle Improper Access Control Vulnerability (CVE-2020-25629) CVE-2020-25629 CWE-284 CWE-284 High Moodle Improper Authentication Vulnerability (CVE-2018-1082) CVE-2018-1082 CWE-287 CWE-287 High Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-5674) CVE-2013-5674 CWE-94 CWE-94 High Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-3541) CVE-2014-3541 CWE-94 CWE-94 High Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-1133) CVE-2018-1133 CWE-94 CWE-94 High Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-14630) CVE-2018-14630 CWE-94 CWE-94 High Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-20187) CVE-2021-20187 CWE-94 CWE-94 High Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-5539) CVE-2023-5539 CWE-94 CWE-94 High Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-5540) CVE-2023-5540 CWE-94 CWE-94 High Moodle Improper Input Validation Vulnerability (CVE-2012-0801) CVE-2012-0801 CWE-20 CWE-20 High Moodle Improper Input Validation Vulnerability (CVE-2012-1168) CVE-2012-1168 CWE-20 CWE-20 High Moodle Improper Input Validation Vulnerability (CVE-2018-1137) CVE-2018-1137 CWE-20 CWE-20 High Moodle Improper Input Validation Vulnerability (CVE-2019-3847) CVE-2019-3847 CWE-20 CWE-20 High Moodle Improper Input Validation Vulnerability (CVE-2020-1756) CVE-2020-1756 CWE-20 CWE-20 High Moodle Improper Input Validation Vulnerability (CVE-2020-10738) CVE-2020-10738 CWE-20 CWE-20 High Moodle Improper Input Validation Vulnerability (CVE-2022-35650) CVE-2022-35650 CWE-20 CWE-20 High Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-40313) CVE-2022-40313 CWE-707 CWE-707 High Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2006-0146) CVE-2006-0146 CWE-138 CWE-138 High Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2006-4785) CVE-2006-4785 CWE-138 CWE-138 High Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-6124) CVE-2008-6124 CWE-138 CWE-138 High Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-1615) CVE-2010-1615 CWE-138 CWE-138 High Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-4313) CVE-2013-4313 CWE-138 CWE-138 High Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-7919) CVE-2016-7919 CWE-138 CWE-138 High Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-32474) CVE-2021-32474 CWE-138 CWE-138 High Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-0983) CVE-2022-0983 CWE-138 CWE-138 High Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-28329) CVE-2023-28329 CWE-138 CWE-138 High Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30944) CVE-2023-30944 CWE-138 CWE-138 High Moodle Improper Privilege Management Vulnerability (CVE-2019-3849) CVE-2019-3849 CWE-269 CWE-269 High Moodle Improper Privilege Management Vulnerability (CVE-2020-25699) CVE-2020-25699 CWE-269 CWE-269 High Moodle Improper Validation of Integrity Check Value Vulnerability (CVE-2012-1170) CVE-2012-1170 CWE-354 CWE-354 High Moodle Incorrect Authorization Vulnerability (CVE-2020-14321) CVE-2020-14321 CWE-863 CWE-863 High Moodle Insertion of Sensitive Information into Log File Vulnerability (CVE-2012-1156) CVE-2012-1156 CWE-532 CWE-532 High 1...27282930...168 28 / 168
