v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2

Vulnerability Name

CVE

CWE

Severity

PHP Other Vulnerability (CVE-2007-1900)

CVE-2007-1900

-

Medium

MyBB Other Vulnerability (CVE-2007-1964)

CVE-2007-1964

-

Medium

Grafana Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-43815)

CVE-2021-43815

CWE-22

Medium

Dotclear Other Vulnerability (CVE-2007-1989)

CVE-2007-1989

-

Medium

Oracle Database Server Other Vulnerability (CVE-2006-7141)

CVE-2006-7141

-

Medium

WordPress Other Vulnerability (CVE-2007-1049)

CVE-2007-1049

-

Medium

XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-29252)

CVE-2022-29252

CWE-707

Medium

phpMyAdmin Other Vulnerability (CVE-2007-2016)

CVE-2007-2016

-

Medium

Python Off-by-one Error Vulnerability (CVE-2007-2052)

CVE-2007-2052

CWE-193

Medium

XWiki Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-29253)

CVE-2022-29253

CWE-22

Medium

PostgreSQL Improper Certificate Validation Vulnerability (CVE-2021-43767)

CVE-2021-43767

CWE-295

Medium

Oracle Database Server CVE-2007-2108 Vulnerability (CVE-2007-2108)

CVE-2007-2108

-

Medium

Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-43687)

CVE-2021-43687

CWE-707

Medium

FluxBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-43677)

CVE-2021-43677

CWE-707

Medium

Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-43560)

CVE-2021-43560

CWE-668

Medium

Oracle Database Server CVE-2007-2109 Vulnerability (CVE-2007-2109)

CVE-2007-2109

-

Medium

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-43558)

CVE-2021-43558

CWE-707

Medium

Atlassian Jira Improper Authentication Vulnerability (CVE-2021-43946)

CVE-2021-43946

CWE-287

Medium

Atlassian Jira Incorrect Authorization Vulnerability (CVE-2021-43948)

CVE-2021-43948

CWE-863

Medium

Oracle Database Server CVE-2007-2110 Vulnerability (CVE-2007-2110)

CVE-2007-2110

-

Medium

Ruby on Rails URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-44528)

CVE-2021-44528

CWE-601

Medium

Artifactory Incorrect Authorization Vulnerability (CVE-2021-45074)

CVE-2021-45074

CWE-863

Medium

Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28979)

CVE-2022-28979

CWE-707

Medium

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-45038)

CVE-2021-45038

CWE-200

Medium

Apache HTTP Server Other Vulnerability (CVE-2007-1862)

CVE-2007-1862

-

Medium

Apache HTTP Server Other Vulnerability (CVE-2007-1863)

CVE-2007-1863

-

Medium

MediaWiki Improper Privilege Management Vulnerability (CVE-2021-44857)

CVE-2021-44857

CWE-269

Medium

MediaWiki Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2021-44856)

CVE-2021-44856

CWE-754

Medium

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-44855)

CVE-2021-44855

CWE-707

Medium

MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-44854)

CVE-2021-44854

CWE-668

Medium

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28980)

CVE-2022-28980

CWE-707

Medium

WebLogic Improper Input Validation Vulnerability (CVE-2021-44832)

CVE-2021-44832

CWE-20

Medium

Lighttpd Other Vulnerability (CVE-2007-1869)

CVE-2007-1869

-

Medium

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28982)

CVE-2022-28982

CWE-707

Medium

Envoy Proxy NULL Pointer Dereference Vulnerability (CVE-2022-29224)

CVE-2022-29224

CWE-476

Medium

PHP Other Vulnerability (CVE-2007-1884)

CVE-2007-1884

-

Medium

PHP Other Vulnerability (CVE-2007-1886)

CVE-2007-1886

-

Medium

CrushFTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-44076)

CVE-2021-44076

CWE-707

Medium

Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28982)

CVE-2022-28982

CWE-707

Medium

SharePoint CVE-2022-29108 Vulnerability (CVE-2022-29108)

CVE-2022-29108

-

Medium

Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-44025)

CVE-2021-44025

CWE-707

Medium

Nexus Repository Manager Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-43961)

CVE-2021-43961

CWE-138

Medium

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-43953)

CVE-2021-43953

CWE-352

Medium

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-43952)

CVE-2021-43952

CWE-352

Medium

Apache Tomcat Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2006-7196)

CVE-2006-7196

CWE-707

Medium

Atlassian Jira Improper Authentication Vulnerability (CVE-2021-43950)

CVE-2021-43950

CWE-287

Medium

Apache Tomcat Other Vulnerability (CVE-2006-7195)

CVE-2006-7195

-

Medium

XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-29258)

CVE-2022-29258

CWE-707

Medium

Mailman Insufficiently Protected Credentials Vulnerability (CVE-2021-43332)

CVE-2021-43332

CWE-522

Medium

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28979)

CVE-2022-28979

CWE-707

Medium

Undertow CVE-2022-2764 Vulnerability (CVE-2022-2764)

CVE-2022-2764

-

Medium

Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-2060)

CVE-2022-2060

CWE-707

Medium

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-42048)

CVE-2021-42048

CWE-707

Medium

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2006-6832)

CVE-2006-6832

CWE-707

Medium

OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2022-2097)

CVE-2022-2097

CWE-327

Medium

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-42047)

CVE-2021-42047

CWE-707

Medium

WordPress Other Vulnerability (CVE-2006-6808)

CVE-2006-6808

-

Medium

SugarCRM Other Vulnerability (CVE-2006-6712)

CVE-2006-6712

-

Medium

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-42046)

CVE-2021-42046

CWE-707

Medium

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-42045)

CVE-2021-42045

CWE-707

Medium

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-42044)

CVE-2021-42044

CWE-707

Medium

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-42043)

CVE-2021-42043

CWE-707

Medium

Jboss EAP CVE-2022-2764 Vulnerability (CVE-2022-2764)

CVE-2022-2764

-

Medium

Joomla Other Vulnerability (CVE-2006-6834)

CVE-2006-6834

-

Medium

YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-2829)

CVE-2022-2829

CWE-707

Medium

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-42042)

CVE-2021-42042

CWE-707

Medium

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-42041)

CVE-2021-42041

CWE-707

Medium

PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-2138)

CVE-2007-2138

CWE-264

Medium

YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-2885)

CVE-2022-2885

CWE-707

Medium

MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41866)

CVE-2021-41866

CWE-707

Medium

Artifactory Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-41834)

CVE-2021-41834

CWE-732

Medium

YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-2890)

CVE-2022-2890

CWE-707

Medium

phpMyAdmin Other Vulnerability (CVE-2007-2245)

CVE-2007-2245

-

Medium

YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-2924)

CVE-2022-2924

CWE-707

Medium

Moodle Other Vulnerability (CVE-2006-6626)

CVE-2006-6626

-

Medium

«
1
...
80
81
82
...
196
»