Web Application Vulnerabilities Index

This page lists X vulnerabilities classified as CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L that can be detected by Invicti.

Select Category

Critical

High

Select Vulnerability

Vulnerability Name

Classification

Severity

Boolean Based MongoDB Injection

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

,

CWE-943

,

OWASP 2013-A1

,

OWASP 2017-A1

,

PCI v3.2-6.5.1

,

High

JBoss Web Console JMX Invoker

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

,

CWE-200

,

High

MongoDB Operator Injection

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

,

CWE-943

,

OWASP 2013-A1

,

OWASP 2017-A1

,

PCI v3.2-6.5.1

,

High

Server-Side Request Forgery (AWS)

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

,

CWE-918

,

ISO27001-A.14.2.5

,

OWASP 2017-A5

,

High