Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Apache Axis2 administration console weak password CWE-200 CWE-200 High Apache mod_negotiation filename bruteforcing CWE-538 CWE-538 Low CodeIgniter weak encryption key CWE-200 CWE-200 High Devise weak password CWE-200 CWE-200 High Drupal Views module information disclosure vulnerability CWE-200 CWE-200 Medium GlassFish admin console weak credentials CWE-693 CWE-693 High IBM WebSphere administration console weak password CWE-200 CWE-200 High Jenkins weak password CWE-200 CWE-200 High Ruby on Rails weak/known secret token CVE-2013-0156 CWE-200 CWE-200 High Typo3 Admin publicly accessible CWE-200 CWE-200 Informational Weak password CWE-200 CWE-200 High Web application default/weak credentials CWE-200 CWE-200 High WebLogic admin console weak credentials CWE-693 CWE-693 High Webmail weak password CWE-200 CWE-200 High WordPress default administrator account CWE-16 CWE-16 Low WordPress username enumeration CWE-200 CWE-200 Medium
