Vulnerability Name CVE Severity
GraphQL Array-based Query Batching Allowed: Potential Batching Attack Vulnerability
GraphQL Circular-Query via Introspection Allowed: Potential DoS Vulnerability
GraphQL Field Suggestions Enabled
GraphQL Introspection Query Enabled
GraphQL Non-JSON Mutations over GET: Potential CSRF Vulnerability
GraphQL Non-JSON Queries over GET: Potential CSRF Vulnerability
GraphQL Non-JSON Queries over POST: Potential CSRF Vulnerability
GraphQL Unauthenticated Mutation Detected
GraphQL Unhandled Error Leakage
Hadoop cluster web interface
Handlebars Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-8861) CVE-2015-8861
Hashicorp Consul API is accessible without authentication
Hasura GraphQL API without authentication
Hesk Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3743) CVE-2011-3743
Hesk Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-5287) CVE-2011-5287
Hesk Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13897) CVE-2020-13897
Highcharts JS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29489) CVE-2021-29489
Host header attack
Hostile subdomain takeover
HTML form susceptible to spam
HTML Injection
HTTP Header Injection
HTTP header reflected in cached response
Httpoxy vulnerability
HTTP parameter pollution
HTTP response splitting with cloud storage
HTTPS connection uses outdated TLS version
HTTPS connection with weak key length
HTTP Strict Transport Security (HSTS) Policy Not Enabled
IBMHttpServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-1360) CVE-2011-1360
IBMHttpServer Other Vulnerability (CVE-2000-0505) CVE-2000-0505
IBMHttpServer Other Vulnerability (CVE-2001-0122) CVE-2001-0122
IBMHttpServer Other Vulnerability (CVE-2002-1822) CVE-2002-1822
IBMHttpServer Other Vulnerability (CVE-2004-0263) CVE-2004-0263
IBMHttpServer Other Vulnerability (CVE-2004-0493) CVE-2004-0493
IBMHttpServer Other Vulnerability (CVE-2006-3918) CVE-2006-3918
IBM RTC Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-29786) CVE-2021-29786
IBM RTC Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-0748) CVE-2012-0748
IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4691) CVE-2020-4691
IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4697) CVE-2020-4697
IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4733) CVE-2020-4733
IBM RTC CVE-2015-1971 Vulnerability (CVE-2015-1971) CVE-2015-1971
IBM RTC CVE-2017-1191 Vulnerability (CVE-2017-1191) CVE-2017-1191
IBM RTC CVE-2018-1694 Vulnerability (CVE-2018-1694) CVE-2018-1694
IBM RTC CVE-2019-4084 Vulnerability (CVE-2019-4084) CVE-2019-4084
IBM RTC CVE-2020-4964 Vulnerability (CVE-2020-4964) CVE-2020-4964
IBM RTC Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-4989) CVE-2020-4989
IBM RTC Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-29701) CVE-2021-29701
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3092) CVE-2014-3092
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6131) CVE-2014-6131
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-0113) CVE-2015-0113
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2865) CVE-2016-2865
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2987) CVE-2016-2987
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6024) CVE-2016-6024
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9700) CVE-2016-9700
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9735) CVE-2016-9735
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1099) CVE-2017-1099
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1240) CVE-2017-1240
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1251) CVE-2017-1251
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1488) CVE-2017-1488
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1507) CVE-2017-1507
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1509) CVE-2017-1509
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1524) CVE-2017-1524
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1559) CVE-2017-1559
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1570) CVE-2017-1570
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1725) CVE-2017-1725
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1734) CVE-2017-1734
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1423) CVE-2018-1423
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1606) CVE-2018-1606
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1734) CVE-2018-1734
IBM RTC Files or Directories Accessible to External Parties Vulnerability (CVE-2017-1602) CVE-2017-1602
IBM RTC Generation of Error Message Containing Sensitive Information (CVE-2020-4487) CVE-2020-4487
IBM RTC Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2020-4544) CVE-2020-4544
IBM RTC Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-1753) CVE-2017-1753
IBM RTC Improper Input Validation Vulnerability (CVE-2015-1928) CVE-2015-1928