Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Citrix Gateway Open Redirect And XSS Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Internet Information Services Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2010-2730) CVE-2010-2730 CWE-119 CWE-119 Critical Internet Information Services Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2010-3972) CVE-2010-3972 CWE-119 CWE-119 Critical Internet Information Services Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-7269) CVE-2017-7269 CWE-119 CWE-119 Critical Internet Information Services Integer Overflow or Wraparound Vulnerability (CVE-2008-1446) CVE-2008-1446 CWE-190 CWE-190 Critical Internet Information Services Other Vulnerability (CVE-1999-0233) CVE-1999-0233 Critical Internet Information Services Other Vulnerability (CVE-1999-0407) CVE-1999-0407 Critical Internet Information Services Other Vulnerability (CVE-1999-1376) CVE-1999-1376 Critical Internet Information Services Other Vulnerability (CVE-2003-0224) CVE-2003-0224 Critical Internet Information Services Permissions, Privileges, and Access Controls Vulnerability (CVE-1999-1011) CVE-1999-1011 CWE-264 CWE-264 Critical Internet Information Services Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-2815) CVE-2007-2815 CWE-264 CWE-264 Critical Java Unspesificed Vulnerability (CVE-2018-3183) CVE-2018-3183 Critical Jboss Deserialization of Untrusted Data Vulnerability (CVE-2017-7504) CVE-2017-7504 CWE-502 CWE-502 Critical Jboss EAP CVE-2016-5018 Vulnerability (CVE-2016-5018) CVE-2016-5018 Critical Jboss EAP CVE-2018-8088 Vulnerability (CVE-2018-8088) CVE-2018-8088 Critical Jboss EAP CVE-2022-4492 Vulnerability (CVE-2022-4492) CVE-2022-4492 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2015-7501) CVE-2015-7501 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2016-3690) CVE-2016-3690 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-7525) CVE-2017-7525 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-12149) CVE-2017-12149 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-15095) CVE-2017-15095 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-17485) CVE-2017-17485 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2018-14720) CVE-2018-14720 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-10202) CVE-2019-10202 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-14540) CVE-2019-14540 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-14892) CVE-2019-14892 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-14893) CVE-2019-14893 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-16335) CVE-2019-16335 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-16942) CVE-2019-16942 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-16943) CVE-2019-16943 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-17267) CVE-2019-17267 CWE-502 CWE-502 Critical Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-17531) CVE-2019-17531 CWE-502 CWE-502 Critical Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-9788) CVE-2017-9788 CWE-200 CWE-200 Critical Jboss EAP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-7465) CVE-2017-7465 CWE-94 CWE-94 Critical Jboss EAP Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2019-14379) CVE-2019-14379 CWE-915 CWE-915 Critical Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-3873) CVE-2019-3873 CWE-707 CWE-707 Critical Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-7464) CVE-2017-7464 CWE-611 CWE-611 Critical Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-7503) CVE-2017-7503 CWE-611 CWE-611 Critical Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-12629) CVE-2017-12629 CWE-611 CWE-611 Critical Jboss EAP Inadequate Encryption Strength Vulnerability (CVE-2019-14887) CVE-2019-14887 CWE-326 CWE-326 Critical Jboss EAP Incomplete List of Disallowed Inputs Vulnerability (CVE-2018-7489) CVE-2018-7489 CWE-184 CWE-184 Critical Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-20444) CVE-2019-20444 CWE-444 CWE-444 Critical Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-20445) CVE-2019-20445 CWE-444 CWE-444 Critical Jboss EAP Insertion of Sensitive Information into Log File Vulnerability (CVE-2019-10212) CVE-2019-10212 CWE-532 CWE-532 Critical Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-2141) CVE-2016-2141 CWE-264 CWE-264 Critical Jboss EAP Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-14721) CVE-2018-14721 CWE-918 CWE-918 Critical Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2017-1000353) CVE-2017-1000353 CWE-502 CWE-502 Critical Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2018-1000861) CVE-2018-1000861 CWE-502 CWE-502 Critical Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0791) CVE-2016-0791 CWE-200 CWE-200 Critical Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1000362) CVE-2017-1000362 CWE-200 CWE-200 Critical Jenkins Improper Authorization Vulnerability (CVE-2021-21693) CVE-2021-21693 CWE-285 CWE-285 Critical Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-27898) CVE-2023-27898 CWE-707 CWE-707 Critical Jenkins Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') Vulnerability (CVE-2016-9299) CVE-2016-9299 CWE-138 CWE-138 Critical Jenkins Incomplete List of Disallowed Inputs Vulnerability (CVE-2021-21697) CVE-2021-21697 CWE-184 CWE-184 Critical Jenkins Incorrect Authorization Vulnerability (CVE-2021-21691) CVE-2021-21691 CWE-863 CWE-863 Critical Jenkins Incorrect Authorization Vulnerability (CVE-2021-21692 ) CVE-2021-21692 CWE-863 CWE-863 Critical Jenkins Incorrect Authorization Vulnerability (CVE-2021-21692) CVE-2021-21692 CWE-863 CWE-863 Critical Jenkins Missing Authorization Vulnerability (CVE-2021-21685) CVE-2021-21685 CWE-862 CWE-862 Critical Jenkins Missing Authorization Vulnerability (CVE-2021-21687) CVE-2021-21687 CWE-862 CWE-862 Critical Jenkins Missing Authorization Vulnerability (CVE-2021-21694) CVE-2021-21694 CWE-862 CWE-862 Critical Jenkins Other Vulnerability (CVE-2021-21689) CVE-2021-21689 Critical Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0788) CVE-2016-0788 CWE-264 CWE-264 Critical Jenkins Protection Mechanism Failure Vulnerability (CVE-2021-21690 ) CVE-2021-21690 CWE-693 CWE-693 Critical Jenkins Protection Mechanism Failure Vulnerability (CVE-2021-21690) CVE-2021-21690 CWE-693 CWE-693 Critical Jenkins Protection Mechanism Failure Vulnerability (CVE-2021-21696 ) CVE-2021-21696 CWE-693 CWE-693 Critical Jenkins Protection Mechanism Failure Vulnerability (CVE-2021-21696) CVE-2021-21696 CWE-693 CWE-693 Critical Jetty Improper Access Control Vulnerability (CVE-2016-4800) CVE-2016-4800 CWE-284 CWE-284 Critical Jetty Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-5047) CVE-2009-5047 CWE-119 CWE-119 Critical Jetty Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2017-7658) CVE-2017-7658 CWE-444 CWE-444 Critical Jetty Integer Overflow or Wraparound Vulnerability (CVE-2017-7657) CVE-2017-7657 CWE-190 CWE-190 Critical Joomla Credentials Management Errors Vulnerability (CVE-2016-9081) CVE-2016-9081 Critical Joomla CVE-2021-23127 Vulnerability (CVE-2021-23127) CVE-2021-23127 Critical Joomla CVE-2021-23128 Vulnerability (CVE-2021-23128) CVE-2021-23128 Critical Joomla CVE-2022-23799 Vulnerability (CVE-2022-23799) CVE-2022-23799 Critical Joomla Deserialization of Untrusted Data Vulnerability (CVE-2019-7743) CVE-2019-7743 CWE-502 CWE-502 Critical Joomla Deserialization of Untrusted Data Vulnerability (CVE-2019-11831) CVE-2019-11831 CWE-502 CWE-502 Critical 1...3456...17 4 / 17