v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2

Vulnerability Name

CVE

CWE

Severity

Kong Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)

CVE-2023-44487

CWE-400

High

Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2021-3690)

CVE-2021-3690

CWE-400

High

Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2021-3629)

CVE-2021-3629

CWE-400

High

Apache Traffic Server CVE-2023-44487 Vulnerability (CVE-2023-44487)

CVE-2023-44487

-

High

Next.js CVE-2023-46298 Vulnerability (CVE-2023-46298)

CVE-2023-46298

-

High

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37148)

CVE-2021-37148

CWE-20

High

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37147)

CVE-2021-37147

CWE-20

High

Sqlite CVE-2021-36690 Vulnerability (CVE-2021-36690)

CVE-2021-36690

-

High

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-36625)

CVE-2021-36625

CWE-138

High

Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-36396)

CVE-2021-36396

CWE-918

High

Moodle Uncontrolled Recursion Vulnerability (CVE-2021-36395)

CVE-2021-36395

CWE-674

High

XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-46242)

CVE-2023-46242

CWE-352

High

XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46243)

CVE-2023-46243

CWE-94

High

XWiki Incorrect Authorization Vulnerability (CVE-2023-46244)

CVE-2023-46244

CWE-863

High

Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2021-36160)

CVE-2021-36160

CWE-125

High

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37150)

CVE-2021-37150

CWE-20

High

MediaWiki Incorrect Authorization Vulnerability (CVE-2021-36132)

CVE-2021-36132

CWE-863

High

Apache Tomcat Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2023-46589)

CVE-2023-46589

-

High

Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-46695)

CVE-2023-46695

CWE-770

High

MediaWiki Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-36125)

CVE-2021-36125

CWE-835

High

Squid Improper Certificate Validation Vulnerability (CVE-2023-46724)

CVE-2023-46724

CWE-295

High

Magento Improper Access Control Vulnerability (CVE-2021-36036)

CVE-2021-36036

CWE-284

High

Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-36023)

CVE-2021-36023

CWE-138

High

Magento CVE-2021-36021 Vulnerability (CVE-2021-36021)

CVE-2021-36021

-

High

Squid NULL Pointer Dereference Vulnerability (CVE-2023-46728)

CVE-2023-46728

CWE-476

High

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37149)

CVE-2021-37149

CWE-20

High

Dolibarr Incorrect Authorization Vulnerability (CVE-2021-37517)

CVE-2021-37517

CWE-863

High

Nginx Improper Certificate Validation Vulnerability (CVE-2021-3618)

CVE-2021-3618

CWE-295

High

Envoy Proxy Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2021-39162)

CVE-2021-39162

CWE-754

High

WebLogic Improper Certificate Validation Vulnerability (CVE-2021-3450)

CVE-2021-3450

CWE-295

High

OpenSSL Improper Certificate Validation Vulnerability (CVE-2021-3450)

CVE-2021-3450

CWE-295

High

ZenCart Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-3291)

CVE-2021-3291

CWE-138

High

PHP-Fusion Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-3172)

CVE-2021-3172

CWE-732

High

GibbonEdu Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-45880)

CVE-2023-45880

CWE-22

High

Werkzeug WSGI Out-of-bounds Write Vulnerability (CVE-2023-46136)

CVE-2023-46136

CWE-787

High

Grafana Improper Authentication Vulnerability (CVE-2021-39226)

CVE-2021-39226

CWE-287

High

Envoy Proxy Incorrect Authorization Vulnerability (CVE-2021-39206)

CVE-2021-39206

CWE-863

High

Envoy Proxy Excessive Iteration Vulnerability (CVE-2021-39204)

CVE-2021-39204

CWE-834

High

Atlassian Jira Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-39128)

CVE-2021-39128

CWE-138

High

Contao Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-37626)

CVE-2021-37626

CWE-94

High

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-39126)

CVE-2021-39126

CWE-352

High

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-39124)

CVE-2021-39124

CWE-352

High

Atlassian Jira CVE-2021-39123 Vulnerability (CVE-2021-39123)

CVE-2021-39123

-

High

Atlassian Confluence Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-39114)

CVE-2021-39114

CWE-138

High

Atlassian Jira Insufficient Session Expiration Vulnerability (CVE-2021-39113)

CVE-2021-39113

CWE-613

High

Liferay DXP CVE-2021-38266 Vulnerability (CVE-2021-38266)

CVE-2021-38266

-

High

Liferay Portal CVE-2021-38266 Vulnerability (CVE-2021-38266)

CVE-2021-38266

-

High

Apache Traffic Server Improper Authentication Vulnerability (CVE-2021-38161)

CVE-2021-38161

CWE-287

High

Contao Improper Privilege Management Vulnerability (CVE-2021-37627)

CVE-2021-37627

CWE-269

High

Caddy Web Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)

CVE-2023-44487

CWE-400

High

Mailman Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-42097)

CVE-2021-42097

CWE-352

High

Oracle HTTP Server CVE-2021-35666 Vulnerability (CVE-2021-35666)

CVE-2021-35666

-

High

Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2022-0819)

CVE-2022-0819

CWE-94

High

MySQL CVE-2022-21278 Vulnerability (CVE-2022-21278)

CVE-2022-21278

-

High

PostgreSQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-1552)

CVE-2022-1552

CWE-138

High

OpenSSL Incomplete Cleanup Vulnerability (CVE-2022-1473)

CVE-2022-1473

CWE-459

High

Undertow Unchecked Return Value Vulnerability (CVE-2022-1319)

CVE-2022-1319

CWE-252

High

Jenkins Incorrect Default Permissions Vulnerability (CVE-2023-43496)

CVE-2023-43496

CWE-276

High

Undertow CVE-2022-1259 Vulnerability (CVE-2022-1259)

CVE-2022-1259

-

High

Jboss EAP CVE-2022-1259 Vulnerability (CVE-2022-1259)

CVE-2022-1259

-

High

Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-0983)

CVE-2022-0983

CWE-138

High

Jboss EAP Missing Release of Memory after Effective Lifetime Vulnerability (CVE-2022-0853)

CVE-2022-0853

CWE-401

High

phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-0813)

CVE-2022-0813

CWE-200

High

MySQL CVE-2022-21351 Vulnerability (CVE-2022-21351)

CVE-2022-21351

-

High

OpenSSL Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2022-0778)

CVE-2022-0778

CWE-835

High

Jenkins Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-43497)

CVE-2023-43497

CWE-434

High

Jenkins CVE-2023-43498 Vulnerability (CVE-2023-43498)

CVE-2023-43498

-

High

Artifactory Deserialization of Untrusted Data Vulnerability (CVE-2022-0573)

CVE-2022-0573

CWE-502

High

Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-43622)

CVE-2023-43622

CWE-400

High

Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2022-0538)

CVE-2022-0538

CWE-502

High

Oracle HTTP Server Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2022-0391)

CVE-2022-0391

CWE-138

High

Python Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2022-0391)

CVE-2022-0391

CWE-138

High

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-0335)

CVE-2022-0335

CWE-352

High

WebLogic CVE-2022-21292 Vulnerability (CVE-2022-21292)

CVE-2022-21292

-

High

WebLogic Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-21371)

CVE-2022-21371

CWE-22

High

«
1
...
39
40
41
...
196
»