Web Application Vulnerabilities Index
Select Category
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Vulnerability Name
Classification
Severity
ActiveMQ - Remote Code Execution (CVE-2023-46604)
Bash Command Injection Vulnerability (Shellshock Bug)
Blind Command Injection
Blind SQL Injection
Boolean Based SQL Injection
Code Evaluation (Apache Struts)
Code Evaluation (Apache Struts S02-53)
Code Evaluation (Apache Struts) S2-016
Code Evaluation (Apache Struts) S2-045
Code Evaluation (Apache Struts) S2-046
Code Evaluation (ASP)
Code Evaluation (Node.js)
Code Evaluation (Perl)
Code Evaluation (PHP)
Code Evaluation (PHP) - IAST
Code Evaluation (Python)
Code Evaluation (RoR)
Code Evaluation (RoR - JSON)
Code Evaluation (Ruby)
Code Evaluation via Local File Inclusion (PHP)
Code Execution via File Upload
Code Execution via Local File Inclusion
Code Execution via SSTI
Code Execution via SSTI (ASP.NET Razor)
Code Execution via SSTI (Java FreeMarker)
Code Execution via SSTI (Java Pebble)
Code Execution via SSTI (Java Velocity)
Code Execution via SSTI (JinJava)
Code Execution via SSTI (Node.js Dot)
Code Execution via SSTI (Node.js EJS)
Code Execution via SSTI (Node.js Marko)
Code Execution via SSTI (Node.js Nunjucks)
Code Execution via SSTI (Node.js Pug (Jade))
Code Execution via SSTI (PHP Smarty)
Code Execution via SSTI (PHP Twig)
Code Execution via SSTI (Python Jinja)
Code Execution via SSTI (Python Mako)
Code Execution via SSTI (Python Tornado)
Code Execution via SSTI (Ruby ERB)
Code Execution via SSTI (Ruby Slim)
Code Execution via WebDAV
Command Injection
Command Injection (IAST)
CVE-2024-6297 WordPress Plugin Backdoor
Drupal Core - Remote Code Execution (CVE-2019-6340)
Ivanti ICS and IPS Command Injection - CVE-2024-2188
Ivanti ICS and IPS Command Injection - CVE-2024-21887
JWT kid Parameter Out of Band Command Injection
LDAP Injection (IAST)
Mail Header Injection (IAST)
MongoDB Injection (IAST)
OpenSSL Heartbleed
Oracle EBS - Unauthenticated Remote Code Execution
Oracle WebLogic Remote Code Execution (CVE-2020-14882)
Out of Band Code Evaluation (Apache Struts 2)
Out of Band Code Evaluation (Apache Struts 2) S2-053
Out of Band Code Evaluation (ASP)
Out of Band Code Evaluation (Log4j)
Out of Band Code Evaluation (Node.js)
Out of Band Code Evaluation (Perl)
Out of Band Code Evaluation (PHP)
Out of Band Code Evaluation (Python)
Out of Band Code Evaluation (RoR)
Out of Band Code Evaluation (RoR - JSON)
Out of Band Code Evaluation (Ruby)
Out of Band Code Execution via SSTI