Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-38040) CVE-2023-38040 CWE-707 CWE-707 Medium ReviveAdserver Incorrect Authorization Vulnerability (CVE-2020-8142) CVE-2020-8142 CWE-863 CWE-863 Medium ReviveAdserver Other Vulnerability (CVE-2014-8875) CVE-2014-8875 Medium ReviveAdserver Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-7371) CVE-2015-7371 CWE-264 CWE-264 Medium ReviveAdserver Session Fixation Vulnerability (CVE-2017-5831) CVE-2017-5831 CWE-384 CWE-384 Medium ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-5433) CVE-2019-5433 CWE-601 CWE-601 Medium ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-8143) CVE-2020-8143 CWE-601 CWE-601 Medium ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-22873) CVE-2021-22873 CWE-601 CWE-601 Medium Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4076) CVE-2009-4076 CWE-352 CWE-352 Medium Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4077) CVE-2009-4077 CWE-352 CWE-352 Medium Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-12626) CVE-2020-12626 CWE-352 CWE-352 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-1433) CVE-2015-1433 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-8793) CVE-2015-8793 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-8864) CVE-2015-8864 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2016-4068) CVE-2016-4068 Medium Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-0464) CVE-2010-0464 CWE-200 CWE-200 Medium Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5382) CVE-2015-5382 CWE-200 CWE-200 Medium Roundcube Improper Input Validation Vulnerability (CVE-2011-1492) CVE-2011-1492 CWE-20 CWE-20 Medium Roundcube Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-1904) CVE-2013-1904 CWE-22 CWE-22 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0413) CVE-2009-0413 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2937) CVE-2011-2937 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3508) CVE-2012-3508 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4668) CVE-2012-4668 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6121) CVE-2012-6121 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5645) CVE-2013-5645 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5381) CVE-2015-5381 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6820) CVE-2017-6820 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-19206) CVE-2018-19206 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-12625) CVE-2020-12625 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13964) CVE-2020-13964 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13965) CVE-2020-13965 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15562) CVE-2020-15562 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-16145) CVE-2020-16145 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-18670) CVE-2020-18670 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-18671) CVE-2020-18671 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35730) CVE-2020-35730 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26925) CVE-2021-26925 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-44025) CVE-2021-44025 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-46144) CVE-2021-46144 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5631) CVE-2023-5631 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43770) CVE-2023-43770 CWE-707 CWE-707 Medium Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-47272) CVE-2023-47272 CWE-707 CWE-707 Medium Roundcube Multiple Cross-site Request Forgery (CSRF) Vulnerabilities (CVE-2014-9587) CVE-2014-9587 Medium Roundcube Resource Management Errors Vulnerability (CVE-2011-4078) CVE-2011-4078 Medium Roundcube Unspesificed Vulnerability (CVE-2019-10740) CVE-2019-10740 Medium Ruby 7PK - Security Features Vulnerability (CVE-2015-3900) CVE-2015-3900 Medium Ruby Cryptographic Issues Vulnerability (CVE-2011-2686) CVE-2011-2686 Medium Ruby Cryptographic Issues Vulnerability (CVE-2012-5371) CVE-2012-5371 Medium Ruby Cryptographic Issues Vulnerability (CVE-2013-4073) CVE-2013-4073 Medium Ruby Cryptographic Issues Vulnerability (CVE-2013-4287) CVE-2013-4287 Medium Ruby Cryptographic Issues Vulnerability (CVE-2013-4363) CVE-2013-4363 Medium Ruby CVE-2019-15845 Vulnerability (CVE-2019-15845) CVE-2019-15845 Medium Ruby Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-31810) CVE-2021-31810 CWE-668 CWE-668 Medium Ruby Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-10933) CVE-2020-10933 CWE-200 CWE-200 Medium RubyGems 7PK - Security Features Vulnerability (CVE-2015-3900) CVE-2015-3900 Medium RubyGems Cryptographic Issues Vulnerability (CVE-2012-2126) CVE-2012-2126 Medium RubyGems Cryptographic Issues Vulnerability (CVE-2013-4287) CVE-2013-4287 Medium RubyGems Cryptographic Issues Vulnerability (CVE-2013-4363) CVE-2013-4363 Medium RubyGems Improper Input Validation Vulnerability (CVE-2015-4020) CVE-2015-4020 CWE-20 CWE-20 Medium RubyGems Improper Input Validation Vulnerability (CVE-2018-1000077) CVE-2018-1000077 CWE-20 CWE-20 Medium RubyGems Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1000079) CVE-2018-1000079 CWE-22 CWE-22 Medium RubyGems Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1000078) CVE-2018-1000078 CWE-707 CWE-707 Medium RubyGems Other Vulnerability (CVE-2012-2125) CVE-2012-2125 Medium Ruby Improper Authentication Vulnerability (CVE-2007-5162) CVE-2007-5162 CWE-287 CWE-287 Medium Ruby Improper Authentication Vulnerability (CVE-2007-5770) CVE-2007-5770 CWE-287 CWE-287 Medium Ruby Improper Authentication Vulnerability (CVE-2008-3905) CVE-2008-3905 CWE-287 CWE-287 Medium Ruby Improper Authentication Vulnerability (CVE-2009-0642) CVE-2009-0642 CWE-287 CWE-287 Medium Ruby Improper Input Validation Vulnerability (CVE-2008-3790) CVE-2008-3790 CWE-20 CWE-20 Medium Ruby Improper Input Validation Vulnerability (CVE-2009-4492) CVE-2009-4492 CWE-20 CWE-20 Medium Ruby Improper Input Validation Vulnerability (CVE-2011-2705) CVE-2011-2705 CWE-20 CWE-20 Medium Ruby Improper Input Validation Vulnerability (CVE-2013-1821) CVE-2013-1821 CWE-20 CWE-20 Medium Ruby Improper Input Validation Vulnerability (CVE-2015-1855) CVE-2015-1855 CWE-20 CWE-20 Medium Ruby Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-1891) CVE-2008-1891 CWE-22 CWE-22 Medium Ruby Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2011-1004) CVE-2011-1004 CWE-59 CWE-59 Medium Ruby Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2017-17742) CVE-2017-17742 CWE-113 CWE-113 Medium 1...83848586...99 84 / 99
