Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

High Severity Vulnerabilities

Found 5145 vulnerabilities at High severity.

Reference
Title
Technology
CVE-2024-43434
Moodle Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Moodle
CVE-2024-43431
Moodle Missing Authorization Vulnerability
Moodle
CVE-2024-43428
Moodle Insufficient Verification of Data Authenticity Vulnerability
Moodle
CVE-2024-43425
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
Moodle
CVE-2020-5745
TCExam Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TCExam
CVE-2021-20114
TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
TCExam
CVE-2020-24986
concrete5 Unrestricted Upload of File with Dangerous Type Vulnerability
concrete5
CVE-2020-11476
concrete5 Unrestricted Upload of File with Dangerous Type Vulnerability
concrete5
CVE-2015-4724
concrete5 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
concrete5
CVE-2018-13790
concrete5 Server-Side Request Forgery (SSRF) Vulnerability
concrete5
CVE-2021-3980
Elgg Exposure of Private Personal Information to an Unauthorized Actor Vulnerability
Elgg
CVE-2019-11378
ProjectSend Unrestricted Upload of File with Dangerous Type Vulnerability
ProjectSend
CVE-2020-28874
ProjectSend Improper Privilege Management Vulnerability
ProjectSend
CVE-2021-40884
ProjectSend Incorrect Authorization Vulnerability
ProjectSend
CVE-2018-7201
ProjectSend Improper Neutralization of Formula Elements in a CSV File Vulnerability
ProjectSend
CVE-2019-11492
ProjectSend Insertion of Sensitive Information into Log File Vulnerability
ProjectSend
CVE-2024-7659
ProjectSend Use of Insufficiently Random Values Vulnerability
ProjectSend
CVE-2020-7746
Chart.js Improper Input Validation Vulnerability
Chart.js
CVE-2020-28496
Three.js Uncontrolled Resource Consumption Vulnerability
Three.js
CVE-2019-11458
CakePHP Deserialization of Untrusted Data Vulnerability
CakePHP
CVE-2016-4793
CakePHP Improper Input Validation Vulnerability
CakePHP
CVE-2020-35239
CakePHP Cross-Site Request Forgery (CSRF) Vulnerability
CakePHP
CVE-2010-4335
CakePHP Improper Input Validation Vulnerability
CakePHP
CVE-2015-8379
CakePHP Cross-Site Request Forgery (CSRF) Vulnerability
CakePHP
CVE-2017-5480
b2evolution Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
b2evolution
CVE-2016-9479
b2evolution Credentials Management Errors Vulnerability
b2evolution
CVE-2007-2681
b2evolution Other Vulnerability
b2evolution
CVE-2007-2358
b2evolution Other Vulnerability
b2evolution
CVE-2006-6417
b2evolution Other Vulnerability
b2evolution
CVE-2021-28242
b2evolution Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability
b2evolution