Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity PrestaShop Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4545) CVE-2011-4545 CWE-94 CWE-94 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6503) CVE-2008-6503 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4544) CVE-2011-4544 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2517) CVE-2012-2517 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6641) CVE-2012-6641 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-20001) CVE-2012-20001 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4791) CVE-2013-4791 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1175) CVE-2015-1175 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-5681) CVE-2018-5681 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11876) CVE-2019-11876 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5264) CVE-2020-5264 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5265) CVE-2020-5265 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5269) CVE-2020-5269 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5271) CVE-2020-5271 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5272) CVE-2020-5272 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5276) CVE-2020-5276 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5278) CVE-2020-5278 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5285) CVE-2020-5285 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5286) CVE-2020-5286 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-6632) CVE-2020-6632 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11074) CVE-2020-11074 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15083) CVE-2020-15083 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15161) CVE-2020-15161 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15162) CVE-2020-15162 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-21967) CVE-2020-21967 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-21398) CVE-2021-21398 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31508) CVE-2023-31508 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-39527) CVE-2023-39527 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21627) CVE-2024-21627 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21628) CVE-2024-21628 CWE-707 CWE-707 Medium PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30545) CVE-2023-30545 CWE-138 CWE-138 Medium PrestaShop Improper Privilege Management Vulnerability (CVE-2023-43663) CVE-2023-43663 CWE-269 CWE-269 Medium PrestaShop Improper Privilege Management Vulnerability (CVE-2023-43664) CVE-2023-43664 CWE-269 CWE-269 Medium PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5279) CVE-2020-5279 CWE-863 CWE-863 Medium PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5287) CVE-2020-5287 CWE-863 CWE-863 Medium PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5288) CVE-2020-5288 CWE-863 CWE-863 Medium PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5293) CVE-2020-5293 CWE-863 CWE-863 Medium PrestaShop URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-5270) CVE-2020-5270 CWE-601 CWE-601 Medium ProjectSend Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2017-20101) CVE-2017-20101 CWE-639 CWE-639 Medium ProjectSend Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2024-7658) CVE-2024-7658 CWE-639 CWE-639 Medium ProjectSend Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-40886) CVE-2021-40886 CWE-22 CWE-22 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9783) CVE-2017-9783 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9786) CVE-2017-9786 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-7202) CVE-2018-7202 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11533) CVE-2019-11533 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-40888) CVE-2021-40888 CWE-707 CWE-707 Medium ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0607) CVE-2023-0607 CWE-707 CWE-707 Medium Prototype Improper Privilege Management Vulnerability (CVE-2020-7993) CVE-2020-7993 CWE-269 CWE-269 Medium Pyramid debug mode CWE-489 CWE-489 Medium Pyramid DebugToolbar enabled CWE-200 CWE-200 Medium Pyramid framework weak secret key CWE-693 CWE-693 Medium Python Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2010-3493) CVE-2010-3493 CWE-362 CWE-362 Medium Python Cryptographic Issues Vulnerability (CVE-2012-1150) CVE-2012-1150 Medium Python Cryptographic Issues Vulnerability (CVE-2013-7040) CVE-2013-7040 Medium Python CVE-2023-6507 Vulnerability (CVE-2023-6507) CVE-2023-6507 Medium Python CVE-2023-40217 Vulnerability (CVE-2023-40217) CVE-2023-40217 Medium Python Data Processing Errors Vulnerability (CVE-2013-7440) CVE-2013-7440 Medium Python Divide By Zero Vulnerability (CVE-2017-18207) CVE-2017-18207 CWE-369 CWE-369 Medium Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-1015) CVE-2011-1015 CWE-200 CWE-200 Medium Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-3426) CVE-2021-3426 CWE-200 CWE-200 Medium Python Improper Input Validation Vulnerability (CVE-2013-4238) CVE-2013-4238 CWE-20 CWE-20 Medium Python Improper Input Validation Vulnerability (CVE-2018-20852) CVE-2018-20852 CWE-20 CWE-20 Medium Python Improper Input Validation Vulnerability (CVE-2020-8315) CVE-2020-8315 CWE-20 CWE-20 Medium Python Improper Input Validation Vulnerability (CVE-2023-27043) CVE-2023-27043 CWE-20 CWE-20 Medium Python Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2007-4559) CVE-2007-4559 CWE-22 CWE-22 Medium Python Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2019-9740) CVE-2019-9740 CWE-707 CWE-707 Medium Python Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2019-9947) CVE-2019-9947 CWE-707 CWE-707 Medium Python Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2016-5699) CVE-2016-5699 CWE-113 CWE-113 Medium Python Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16935) CVE-2019-16935 CWE-707 CWE-707 Medium Python Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-28359) CVE-2021-28359 CWE-707 CWE-707 Medium Python Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-18348) CVE-2019-18348 CWE-138 CWE-138 Medium Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2010-2089) CVE-2010-2089 CWE-119 CWE-119 Medium Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-4616) CVE-2014-4616 CWE-119 CWE-119 Medium Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2018-1000117) CVE-2018-1000117 CWE-119 CWE-119 Medium Python Improper Restriction of XML External Entity Reference Vulnerability (CVE-2013-0340) CVE-2013-0340 CWE-611 CWE-611 Medium 1...81828384...99 82 / 99
