v.26.4.2314

Missing Update

This page lists 23101 vulnerabilities in this category.

Critical: 1474 High: 12458 Medium: 8395 Low: 770 Information: 4

Vulnerability Name

CVE

CWE

Severity

Apache Tomcat Exposure of Resource to Wrong Sphere Vulnerability (CVE-2017-5648)

CVE-2017-5648

CWE-668

Critical

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-13447)

CVE-2018-13447

CWE-138

Critical

Joomla Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2024-27185)

CVE-2024-27185

-

Critical

XWikiplatform Missing Authorization Vulnerability (CVE-2025-29926)

CVE-2025-29926

CWE-862

Critical

WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2017-5645)

CVE-2017-5645

CWE-502

Critical

WebLogic Improper Handling of Exceptional Conditions Vulnerability (CVE-2017-5638)

CVE-2017-5638

CWE-755

Critical

WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-5611)

CVE-2017-5611

CWE-138

Critical

PHP Other Vulnerability (CVE-2000-0967)

CVE-2000-0967

-

Critical

Drupal Data Processing Errors Vulnerability (CVE-2017-6920)

CVE-2017-6920

-

Critical

LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-41375)

CVE-2025-41375

CWE-138

Critical

Oracle Database Server Deserialization of Untrusted Data Vulnerability (CVE-2018-14719)

CVE-2018-14719

CWE-502

Critical

WebLogic CVE-2018-3197 Vulnerability (CVE-2018-3197)

CVE-2018-3197

-

Critical

MySQL CVE-2016-9841 Vulnerability (CVE-2016-9841)

CVE-2016-9841

-

Critical

XWikiplatform Missing Authorization Vulnerability (CVE-2025-46557)

CVE-2025-46557

CWE-862

Critical

WebLogic CVE-2018-3201 Vulnerability (CVE-2018-3201)

CVE-2018-3201

-

Critical

WebERP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-46052)

CVE-2025-46052

CWE-138

Critical

WebLogic CVE-2024-21216 Vulnerability (CVE-2024-21216)

CVE-2024-21216

-

Critical

MySQL CVE-2016-9843 Vulnerability (CVE-2016-9843)

CVE-2016-9843

-

Critical

phpMyAdmin Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9849)

CVE-2016-9849

CWE-264

Critical

Jetty Integer Overflow or Wraparound Vulnerability (CVE-2017-7657)

CVE-2017-7657

CWE-190

Critical

PostgreSQL Other Vulnerability (CVE-2002-1399)

CVE-2002-1399

-

Critical

WebLogic CVE-2018-3191 Vulnerability (CVE-2018-3191)

CVE-2018-3191

-

Critical

PostgreSQL Improper Authentication Vulnerability (CVE-2017-7546)

CVE-2017-7546

CWE-287

Critical

Java Unspesificed Vulnerability (CVE-2018-3183)

CVE-2018-3183

-

Critical

Microsoft SQL Server Other Vulnerability (CVE-2002-1145)

CVE-2002-1145

-

Critical

phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-9865)

CVE-2016-9865

-

Critical

XWikiplatform Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-46558)

CVE-2025-46558

CWE-707

Critical

Jetty Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2017-7658)

CVE-2017-7658

CWE-444

Critical

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-7525)

CVE-2017-7525

CWE-502

Critical

ReviveAdserver 7PK - Security Features Vulnerability (CVE-2016-9470)

CVE-2016-9470

-

Critical

MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-9416)

CVE-2016-9416

CWE-138

Critical

Python Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2018-1000802)

CVE-2018-1000802

CWE-138

Critical

MyBB Improper Input Validation Vulnerability (CVE-2016-9420)

CVE-2016-9420

CWE-20

Critical

Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2018-1000861)

CVE-2018-1000861

CWE-502

Critical

Dolibarr Inadequate Encryption Strength Vulnerability (CVE-2017-7888)

CVE-2017-7888

CWE-326

Critical

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-7886)

CVE-2017-7886

CWE-138

Critical

Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-7679)

CVE-2017-7679

CWE-119

Critical

Joomla Improper Access Control Vulnerability (CVE-2016-9836)

CVE-2016-9836

CWE-284

Critical

WebLogic CVE-2024-21181 Vulnerability (CVE-2024-21181)

CVE-2024-21181

-

Critical

Oracle Database Server CVE-2018-3259 Vulnerability (CVE-2018-3259)

CVE-2018-3259

-

Critical

WebLogic CVE-2018-3252 Vulnerability (CVE-2018-3252)

CVE-2018-3252

-

Critical

WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2018-3245)

CVE-2018-3245

CWE-502

Critical

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-10094)

CVE-2018-10094

CWE-138

Critical

Zikula Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2016-9835)

CVE-2016-9835

CWE-138

Critical

phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-9866)

CVE-2016-9866

CWE-352

Critical

Jboss Deserialization of Untrusted Data Vulnerability (CVE-2017-7504)

CVE-2017-7504

CWE-502

Critical

Moodle CVE-2025-67856 Vulnerability (CVE-2025-67856)

CVE-2025-67856

-

Critical

Apache Tomcat Improper Certificate Validation Vulnerability (CVE-2025-66614)

CVE-2025-66614

CWE-295

Critical

Internet Information Services Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-7269)

CVE-2017-7269

CWE-119

Critical

GlassFish Improper Authentication Vulnerability (CVE-2017-1000030)

CVE-2017-1000030

CWE-287

Critical

Liferay DXP Missing Authorization Vulnerability (CVE-2025-43773)

CVE-2025-43773

CWE-862

Critical

Python Integer Overflow or Wraparound Vulnerability (CVE-2017-1000158)

CVE-2017-1000158

CWE-190

Critical

Liferay Portal Missing Authorization Vulnerability (CVE-2025-43773)

CVE-2025-43773

CWE-862

Critical

Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2017-1000353)

CVE-2017-1000353

CWE-502

Critical

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1000362)

CVE-2017-1000362

CWE-200

Critical

Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-64459)

CVE-2025-64459

CWE-138

Critical

Liferay DXP Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2025-43766)

CVE-2025-43766

CWE-434

Critical

Liferay Portal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2025-43766)

CVE-2025-43766

CWE-434

Critical

MediaWiki Improper Input Validation Vulnerability (CVE-2025-67484)

CVE-2025-67484

CWE-20

Critical

b2evolution Improper Input Validation Vulnerability (CVE-2017-1000423)

CVE-2017-1000423

CWE-20

Critical

Joomla Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2018-11325)

CVE-2018-11325

CWE-209

Critical

Drupal CVE-2017-6925 Vulnerability (CVE-2017-6925)

CVE-2017-6925

-

Critical

SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-64672)

CVE-2025-64672

CWE-707

Critical

axios Unintended Proxy or Intermediary ('Confused Deputy') Vulnerability (CVE-2025-62718)

CVE-2025-62718

CWE-441

Critical

Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-7503)

CVE-2017-7503

CWE-611

Critical

MODX Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-7324)

CVE-2017-7324

CWE-94

Critical

PHP Out-of-bounds Read Vulnerability (CVE-2016-9935)

CVE-2016-9935

CWE-125

Critical

PHP Use After Free Vulnerability (CVE-2016-9936)

CVE-2016-9936

CWE-416

Critical

XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-21650)

CVE-2024-21650

CWE-94

Critical

Jboss EAP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-7465)

CVE-2017-7465

CWE-94

Critical

Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-7464)

CVE-2017-7464

CWE-611

Critical

Oracle Database Server CVE-2018-3110 Vulnerability (CVE-2018-3110)

CVE-2018-3110

-

Critical

Microsoft SQL Server Other Vulnerability (CVE-2002-0721)

CVE-2002-0721

-

Critical

ATutor Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-1000004)

CVE-2017-1000004

CWE-138

Critical

MediaWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2017-0372)

CVE-2017-0372

CWE-138

Critical

«
1
...
15
16
17
...
309
»