Web Application Vulnerabilities

This page lists 23441 vulnerabilities in 68 categories.

Critical: 1499 High: 12791 Medium: 8230 Low: 857 Information: 64

Vulnerability Name

CVE

CWE

Severity

Apache Airflow Exposed configuration

-

CWE-200

Medium

Apache Airflow Unauthorized Access Vulnerability

-

CWE-200

High

Apache APISIX default token (CVE-2020-13945/CVE-2022-24112)

CVE-2022-24112

CWE-259

Medium

Apache Axis2 administration console weak password

-

CWE-200

High

Apache Axis2 information disclosure

-

CWE-200

Medium

Apache Axis2 web services enumeration

-

CWE-200

Low

Apache Axis2 xsd local file inclusion

-

CWE-22

High

Apache balancer-manager application publicly accessible

-

CWE-200

Medium

Apache Cassandra Unauthorized Access Vulnerability

-

CWE-200

Medium

Apache configured to run as proxy

-

CWE-441

Medium

Apache CouchDB JSON Remote Privilege Escalation Vulnerability

CVE-2017-12635

CWE-285

High

Apache Denial of service in mod_lua r:parsebody Vulnerability (CVE-2022-29404)

CVE-2022-29404

-

Medium

Apache Flink jobmanager/logs Path Traversal

CVE-2020-17519

CWE-22

High

Apache Geronimo default administrative credentials

-

CWE-693

High

Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2005-2970)

CVE-2005-2970

CWE-770

Medium

Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2008-2364)

CVE-2008-2364

CWE-770

Medium

Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2011-0419)

CVE-2011-0419

CWE-770

Medium

Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9517)

CVE-2019-9517

CWE-770

High

Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-30522)

CVE-2022-30522

CWE-770

High

Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-27316)

CVE-2024-27316

CWE-770

High

Apache HTTP Server Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2020-11984)

CVE-2020-11984

CWE-120

Critical

Apache HTTP Server Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2007-1741)

CVE-2007-1741

CWE-362

Medium

Apache HTTP Server Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2014-0226)

CVE-2014-0226

CWE-362

Medium

Apache HTTP Server Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2019-0217)

CVE-2019-0217

CWE-362

High

Apache HTTP Server Configuration Vulnerability (CVE-2009-1195)

CVE-2009-1195

-

Medium

Apache HTTP Server Confusion Attacks

CVE-2023-38709

CWE-436

High

Apache HTTP Server Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6420)

CVE-2007-6420

CWE-352

Medium

Apache HTTP Server Cryptographic Issues Vulnerability (CVE-2009-3555)

CVE-2009-3555

-

Medium

Apache HTTP Server Cryptographic Issues Vulnerability (CVE-2016-0736)

CVE-2016-0736

-

High

Apache HTTP Server CVE-1999-0070 Vulnerability (CVE-1999-0070)

CVE-1999-0070

-

Medium

Apache HTTP Server CVE-1999-0236 Vulnerability (CVE-1999-0236)

CVE-1999-0236

-

High

Apache HTTP Server CVE-2002-0392 Vulnerability (CVE-2002-0392)

CVE-2002-0392

-

High

Apache HTTP Server CVE-2002-0839 Vulnerability (CVE-2002-0839)

CVE-2002-0839

-

High

Apache HTTP Server CVE-2003-0789 Vulnerability (CVE-2003-0789)

CVE-2003-0789

-

Critical

Apache HTTP Server CVE-2004-0751 Vulnerability (CVE-2004-0751)

CVE-2004-0751

-

Medium

Apache HTTP Server CVE-2004-0786 Vulnerability (CVE-2004-0786)

CVE-2004-0786

-

Medium

Apache HTTP Server CVE-2004-0809 Vulnerability (CVE-2004-0809)

CVE-2004-0809

-

Medium

Apache HTTP Server CVE-2005-2700 Vulnerability (CVE-2005-2700)

CVE-2005-2700

-

Critical

Apache HTTP Server CVE-2007-3304 Vulnerability (CVE-2007-3304)

CVE-2007-3304

-

Medium

Apache HTTP Server CVE-2009-1191 Vulnerability (CVE-2009-1191)

CVE-2009-1191

-

Medium

Apache HTTP Server CVE-2009-3720 Vulnerability (CVE-2009-3720)

CVE-2009-3720

-

Medium

Apache HTTP Server CVE-2010-0425 Vulnerability (CVE-2010-0425)

CVE-2010-0425

-

Critical

Apache HTTP Server CVE-2012-0031 Vulnerability (CVE-2012-0031)

CVE-2012-0031

-

Medium

Apache HTTP Server CVE-2012-0053 Vulnerability (CVE-2012-0053)

CVE-2012-0053

-

Medium

Apache HTTP Server CVE-2012-0883 Vulnerability (CVE-2012-0883)

CVE-2012-0883

-

Medium

Apache HTTP Server CVE-2013-1862 Vulnerability (CVE-2013-1862)

CVE-2013-1862

-

Medium

Apache HTTP Server CVE-2013-1896 Vulnerability (CVE-2013-1896)

CVE-2013-1896

-

Medium

Apache HTTP Server CVE-2013-2249 Vulnerability (CVE-2013-2249)

CVE-2013-2249

-

High

Apache HTTP Server CVE-2013-5704 Vulnerability (CVE-2013-5704)

CVE-2013-5704

-

Medium

Apache HTTP Server CVE-2013-6438 Vulnerability (CVE-2013-6438)

CVE-2013-6438

-

Medium

Apache HTTP Server CVE-2014-0098 Vulnerability (CVE-2014-0098)

CVE-2014-0098

-

Medium

Apache HTTP Server CVE-2016-5387 Vulnerability (CVE-2016-5387)

CVE-2016-5387

-

High

Apache HTTP Server CVE-2016-8743 Vulnerability (CVE-2016-8743)

CVE-2016-8743

-

High

Apache HTTP Server CVE-2018-11763 Vulnerability (CVE-2018-11763)

CVE-2018-11763

-

Medium

Apache HTTP Server CVE-2018-1283 Vulnerability (CVE-2018-1283)

CVE-2018-1283

-

Medium

Apache HTTP Server CVE-2019-0190 Vulnerability (CVE-2019-0190)

CVE-2019-0190

-

High

Apache HTTP Server CVE-2019-0215 Vulnerability (CVE-2019-0215)

CVE-2019-0215

-

High

Apache HTTP Server CVE-2024-38476 Vulnerability (CVE-2024-38476)

CVE-2024-38476

-

Critical

Apache HTTP Server CVE-2024-39884 Vulnerability (CVE-2024-39884)

CVE-2024-39884

-

Medium

Apache HTTP Server CVE-2024-40725 Vulnerability (CVE-2024-40725)

CVE-2024-40725

-

Medium

Apache HTTP Server DEPRECATED: Code Vulnerability (CVE-2015-3183)

CVE-2015-3183

-

Medium

Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2003-1418)

CVE-2003-1418

CWE-200

Medium

Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-6514)

CVE-2007-6514

CWE-200

Medium

Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-0434)

CVE-2010-0434

CWE-200

Medium

Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2068)

CVE-2010-2068

CWE-200

Medium

Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2791)

CVE-2010-2791

CWE-200

Medium

Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-3502)

CVE-2012-3502

CWE-200

Medium

Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-30556)

CVE-2022-30556

CWE-200

High

Apache HTTP Server Improper Access Control Vulnerability (CVE-2016-4979)

CVE-2016-4979

CWE-284

High

Apache HTTP Server Improper Access Control Vulnerability (CVE-2025-23048)

CVE-2025-23048

CWE-284

Critical

Apache HTTP Server Improper Authentication Vulnerability (CVE-2017-3167)

CVE-2017-3167

CWE-287

Critical

Apache HTTP Server Improper Authentication Vulnerability (CVE-2018-1312)

CVE-2018-1312

CWE-287

Critical

Apache HTTP Server Improper Authentication Vulnerability (CVE-2025-49812)

CVE-2025-49812

CWE-287

High

Apache HTTP Server Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-3303)

CVE-2007-3303

CWE-94

Medium

Apache HTTP Server Improper Encoding or Escaping of Output Vulnerability (CVE-2024-38473)

CVE-2024-38473

CWE-116

High

«
1
2
3
4
...
313
»