Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

High Severity Vulnerabilities

Found 5145 vulnerabilities at High severity.

Reference
Title
Technology
CVE-2021-21355
TYPO3 Files or Directories Accessible to External Parties Vulnerability
TYPO3
CVE-2021-21339
TYPO3 Cleartext Storage of Sensitive Information Vulnerability
TYPO3
CVE-2021-41113
TYPO3 Cross-Site Request Forgery (CSRF) Vulnerability
TYPO3
CVE-2022-31050
TYPO3 Insufficient Session Expiration Vulnerability
TYPO3
CVE-2022-36104
TYPO3 Allocation of Resources Without Limits or Throttling Vulnerability
TYPO3
CVE-2022-23500
TYPO3 Uncontrolled Recursion Vulnerability
TYPO3
CVE-2022-23503
TYPO3 Improper Control of Generation of Code (Code Injection) Vulnerability
TYPO3
CVE-2024-25121
TYPO3 Vulnerability
TYPO3
CVE-2021-23358
Underscore.js Improper Control of Generation of Code (Code Injection) Vulnerability
Underscore.js
CVE-2020-28458
DataTables Prototype Pollution Vulnerability
DataTables
CVE-2021-23337
Lodash Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability
Lodash
CVE-2020-8203
Lodash Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution) Vulnerability
Lodash
CVE-2019-10742
axios Improper Input Validation Vulnerability
axios
CVE-2021-3749
axios Uncontrolled Resource Consumption Vulnerability
axios
CVE-2024-39338
axios Server-Side Request Forgery (SSRF) Vulnerability
axios
CVE-2012-1094
JBoss Application Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Jboss Application Server
CVE-2012-2312
JBoss Application Server Improper Privilege Management Vulnerability
Jboss Application Server
CVE-2006-5750
JBoss Application Server Directory Traversal Vulnerability
Jboss Application Server
CVE-2019-8358
Hiawatha Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Hiawatha
CVE-2020-12845
Cherokee NULL Pointer Dereference Vulnerability
Cherokee
CVE-2019-20799
Cherokee Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Cherokee
CVE-2019-20798
Cherokee Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Cherokee
CVE-2020-7743
math.js Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability
math.js
CVE-2016-10527
Riot.js Resource Management Errors Vulnerability
Riot.js
CVE-2020-28478
GSAP Vulnerability
GSAP
CVE-2017-16044
D3.js Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
D3.js
CVE-2018-20801
Highcharts JS Incorrect Regular Expression Vulnerability
Highcharts JS
No CVE number
Highcharts.js Cross-site Scripting (XSS) Vulnerability
Highcharts JS
CVE-2020-2963
WebLogic Vulnerability
WebLogic
CVE-2020-2867
WebLogic Vulnerability
WebLogic