v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2

Vulnerability Name

CVE

CWE

Severity

PHP Out-of-bounds Read Vulnerability (CVE-2019-11046)

CVE-2019-11046

CWE-125

High

PHP Other Vulnerability (CVE-2019-11044)

CVE-2019-11044

-

High

PHP Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2024-8926)

CVE-2024-8926

CWE-138

High

Moodle Files or Directories Accessible to External Parties Vulnerability (CVE-2025-26525)

CVE-2025-26525

CWE-552

High

Oracle JRE CVE-2018-2826 Vulnerability (CVE-2018-2826)

CVE-2018-2826

-

High

Drupal Improper Control of Dynamically-Managed Code Resources Vulnerability (CVE-2025-31674)

CVE-2025-31674

CWE-913

High

Phusion Passenger Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2018-12029)

CVE-2018-12029

CWE-362

High

Play Framework Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-13864)

CVE-2018-13864

CWE-22

High

concrete5 Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-13790)

CVE-2018-13790

CWE-918

High

Apache Tomcat Incomplete Cleanup Vulnerability (CVE-2025-31650)

CVE-2025-31650

CWE-459

High

Opencart Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-13067)

CVE-2018-13067

CWE-352

High

WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-12895)

CVE-2018-12895

CWE-22

High

Joomla Improper Input Validation Vulnerability (CVE-2018-12712)

CVE-2018-12712

CWE-20

High

phpMyAdmin Improper Authentication Vulnerability (CVE-2018-12613)

CVE-2018-12613

CWE-287

High

Jetty Session Fixation Vulnerability (CVE-2018-12538)

CVE-2018-12538

CWE-384

High

Phusion Passenger Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-12028)

CVE-2018-12028

CWE-732

High

Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-14630)

CVE-2018-14630

CWE-94

High

Phusion Passenger Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-12027)

CVE-2018-12027

CWE-200

High

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2018-12023)

CVE-2018-12023

CWE-502

High

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2018-12022)

CVE-2018-12022

CWE-502

High

Perl Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2018-12015)

CVE-2018-12015

CWE-59

High

Apache Traffic Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-11783)

CVE-2018-11783

CWE-200

High

Opencart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-11494)

CVE-2018-11494

CWE-22

High

Joomla Improper Privilege Management Vulnerability (CVE-2018-11323)

CVE-2018-11323

CWE-269

High

Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-11322)

CVE-2018-11322

CWE-434

High

WebLogic Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2018-11040)

CVE-2018-11040

CWE-829

High

WordPress Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-14028)

CVE-2018-14028

CWE-434

High

Python Missing Initialization of Resource Vulnerability (CVE-2018-14647)

CVE-2018-14647

CWE-909

High

PostgreSQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-10915)

CVE-2018-10915

CWE-138

High

e107 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-16388)

CVE-2018-16388

CWE-434

High

Nginx Uncontrolled Resource Consumption Vulnerability (CVE-2018-16844)

CVE-2018-16844

CWE-400

High

Nginx Uncontrolled Resource Consumption Vulnerability (CVE-2018-16843)

CVE-2018-16843

CWE-400

High

phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2018-16651)

CVE-2018-16651

CWE-1236

High

phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-16650)

CVE-2018-16650

CWE-352

High

Nexus Repository Manager Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') Vulnerability (CVE-2018-16621)

CVE-2018-16621

CWE-138

High

Nexus Repository Manager Incorrect Authorization Vulnerability (CVE-2018-16620)

CVE-2018-16620

CWE-863

High

Ruby on Rails Deserialization of Untrusted Data Vulnerability (CVE-2018-16476)

CVE-2018-16476

CWE-502

High

Ruby CVE-2018-16396 Vulnerability (CVE-2018-16396)

CVE-2018-16396

-

High

e107 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-15901)

CVE-2018-15901

CWE-352

High

Oracle Database Server Incorrect Authorization Vulnerability (CVE-2025-30751)

CVE-2025-30751

CWE-863

High

SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-30378)

CVE-2025-30378

CWE-502

High

Joomla CVE-2018-15881 Vulnerability (CVE-2018-15881)

CVE-2018-15881

-

High

WebLogic CVE-2018-15756 Vulnerability (CVE-2018-15756)

CVE-2018-15756

-

High

SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-30382)

CVE-2025-30382

CWE-502

High

PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-15132)

CVE-2018-15132

CWE-200

High

SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-30384)

CVE-2025-30384

CWE-502

High

PHP NULL Pointer Dereference Vulnerability (CVE-2018-14884)

CVE-2018-14884

CWE-476

High

PHP Integer Overflow or Wraparound Vulnerability (CVE-2018-14883)

CVE-2018-14883

CWE-190

High

Oracle JRE CVE-2025-30749 Vulnerability (CVE-2025-30749)

CVE-2025-30749

-

High

PostgreSQL Incorrect Authorization Vulnerability (CVE-2018-10925)

CVE-2018-10925

CWE-863

High

Jolokia Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-10899)

CVE-2018-10899

CWE-352

High

Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2018-16890)

CVE-2018-16890

CWE-125

High

Squid CVE-2018-1000024 Vulnerability (CVE-2018-1000024)

CVE-2018-1000024

-

High

WebLogic Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-1000180)

CVE-2018-1000180

CWE-327

High

Jboss EAP Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-1000180)

CVE-2018-1000180

CWE-327

High

Gunicorn Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2018-1000164)

CVE-2018-1000164

CWE-707

High

RubyGems Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1000075)

CVE-2018-1000075

CWE-835

High

RubyGems Deserialization of Untrusted Data Vulnerability (CVE-2018-1000074)

CVE-2018-1000074

CWE-502

High

RubyGems Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2018-1000073)

CVE-2018-1000073

CWE-59

High

Roundcube Unspesificed Vulnerability (CVE-2018-1000071)

CVE-2018-1000071

-

High

Squid NULL Pointer Dereference Vulnerability (CVE-2018-1000027)

CVE-2018-1000027

CWE-476

High

SharePoint Out-of-bounds Write Vulnerability (CVE-2018-0792)

CVE-2018-0792

CWE-787

High

Artifactory Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-1000206)

CVE-2018-1000206

CWE-352

High

OpenSSL Key Management Errors Vulnerability (CVE-2018-0732)

CVE-2018-0732

-

High

Zenphoto Improper Privilege Management Vulnerability (CVE-2018-0610)

CVE-2018-0610

CWE-269

High

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-9933)

CVE-2017-9933

CWE-200

High

Dolibarr Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-9840)

CVE-2017-9840

CWE-434

High

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-9839)

CVE-2017-9839

CWE-138

High

Apache HTTP Server Use After Free Vulnerability (CVE-2017-9798)

CVE-2017-9798

CWE-416

High

Apache HTTP Server Use After Free Vulnerability (CVE-2017-9789)

CVE-2017-9789

CWE-416

High

MediaWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2020-35475)

CVE-2020-35475

CWE-116

High

Jetty Observable Discrepancy Vulnerability (CVE-2017-9735)

CVE-2017-9735

CWE-203

High

Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1000194)

CVE-2018-1000194

CWE-22

High

MODX Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-1000207)

CVE-2018-1000207

CWE-732

High

Moodle CVE-2018-10891 Vulnerability (CVE-2018-10891)

CVE-2018-10891

-

High

«
1
...
26
27
28
...
196
»