Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Python Uncontrolled Resource Consumption Vulnerability (CVE-2020-8492) CVE-2020-8492 CWE-400 CWE-400 Medium Python Uncontrolled Resource Consumption Vulnerability (CVE-2020-14422) CVE-2020-14422 CWE-400 CWE-400 Medium Python Uncontrolled Resource Consumption Vulnerability (CVE-2021-3733) CVE-2021-3733 CWE-400 CWE-400 Medium Python Uncontrolled Resource Consumption Vulnerability (CVE-2022-48564) CVE-2022-48564 CWE-400 CWE-400 Medium Python Untrusted Search Path Vulnerability (CVE-2008-5983) CVE-2008-5983 CWE-426 CWE-426 Medium Python URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-1000110) CVE-2016-1000110 CWE-601 CWE-601 Medium qdPM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8390) CVE-2019-8390 CWE-707 CWE-707 Medium qdPM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8391) CVE-2019-8391 CWE-707 CWE-707 Medium qdPM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-18468) CVE-2020-18468 CWE-707 CWE-707 Medium qdPM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-19515) CVE-2020-19515 CWE-707 CWE-707 Medium qdPM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-26166) CVE-2020-26166 CWE-707 CWE-707 Medium qdPM Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2020-11814) CVE-2020-11814 CWE-138 CWE-138 Medium qdPM Multiple Cross-site Scripting (XSS) Vulnerabilities (CVE-2015-3883) CVE-2015-3883 Medium qdPM Sensitive Information Disclosure Vulnerability (CVE-2015-3882) CVE-2015-3882 Medium rack-mini-profiler environment variables disclosure CWE-287 CWE-287 Medium Rails application running in development mode CWE-200 CWE-200 Medium Rails controller possible sensitive information disclosure CWE-200 CWE-200 Medium React Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-6341) CVE-2018-6341 CWE-707 CWE-707 Medium Redis Unauthorized Access Vulnerability CWE-200 CWE-200 Medium Resin Application Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2012-2968) CVE-2012-2968 CWE-22 CWE-22 Medium Resin Application Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-2462) CVE-2008-2462 CWE-707 CWE-707 Medium Resin Application Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2032) CVE-2010-2032 CWE-707 CWE-707 Medium Resin Application Server Other Vulnerability (CVE-2004-0281) CVE-2004-0281 Medium Resin Application Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2969) CVE-2012-2969 CWE-264 CWE-264 Medium Resin Application Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2966) CVE-2014-2966 CWE-264 CWE-264 Medium Resource Accessible Without Required Authentication CWE-287 CWE-287 Medium reveal.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8127) CVE-2020-8127 CWE-707 CWE-707 Medium reveal.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-0776) CVE-2022-0776 CWE-707 CWE-707 Medium Reverse proxy bypass CVE-2011-3368 CWE-20 CWE-20 Medium Reverse proxy misrouting through HTTP/2 pseudo-headers (SSRF) CWE-918 CWE-918 Medium ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-5954) CVE-2013-5954 CWE-352 CWE-352 Medium ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9407) CVE-2014-9407 CWE-352 CWE-352 Medium ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-7364) CVE-2015-7364 CWE-352 CWE-352 Medium ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-7366) CVE-2015-7366 CWE-352 CWE-352 Medium ReviveAdserver Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9129) CVE-2016-9129 CWE-200 CWE-200 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8793) CVE-2014-8793 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-7365) CVE-2015-7365 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-7370) CVE-2015-7370 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-7373) CVE-2015-7373 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9126) CVE-2016-9126 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9128) CVE-2016-9128 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9130) CVE-2016-9130 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9454) CVE-2016-9454 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9457) CVE-2016-9457 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9472) CVE-2016-9472 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-5832) CVE-2017-5832 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-5833) CVE-2017-5833 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8115) CVE-2020-8115 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-22871) CVE-2021-22871 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-22872) CVE-2021-22872 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-22874) CVE-2021-22874 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-22875) CVE-2021-22875 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-22888) CVE-2021-22888 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-22889) CVE-2021-22889 CWE-707 CWE-707 Medium ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-38040) CVE-2023-38040 CWE-707 CWE-707 Medium ReviveAdserver Incorrect Authorization Vulnerability (CVE-2020-8142) CVE-2020-8142 CWE-863 CWE-863 Medium ReviveAdserver Other Vulnerability (CVE-2014-8875) CVE-2014-8875 Medium ReviveAdserver Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-7371) CVE-2015-7371 CWE-264 CWE-264 Medium ReviveAdserver Session Fixation Vulnerability (CVE-2017-5831) CVE-2017-5831 CWE-384 CWE-384 Medium ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-5433) CVE-2019-5433 CWE-601 CWE-601 Medium ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-8143) CVE-2020-8143 CWE-601 CWE-601 Medium ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-22873) CVE-2021-22873 CWE-601 CWE-601 Medium Revoked SSL Certificate CWE-295 CWE-295 Medium RoR Development Mode enabled CWE-200 CWE-200 Medium Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4076) CVE-2009-4076 CWE-352 CWE-352 Medium Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4077) CVE-2009-4077 CWE-352 CWE-352 Medium Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-12626) CVE-2020-12626 CWE-352 CWE-352 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-1433) CVE-2015-1433 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-8793) CVE-2015-8793 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-8864) CVE-2015-8864 Medium Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2016-4068) CVE-2016-4068 Medium Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-0464) CVE-2010-0464 CWE-200 CWE-200 Medium Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5382) CVE-2015-5382 CWE-200 CWE-200 Medium Roundcube Improper Input Validation Vulnerability (CVE-2011-1492) CVE-2011-1492 CWE-20 CWE-20 Medium Roundcube Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-1904) CVE-2013-1904 CWE-22 CWE-22 Medium 1...87888990...107 88 / 107
