Detections
Analytics

Plugins Search

IDNameProductFamilyPublishedUpdatedSeverity
114797MCP Inspector DetectedWeb App ScanningArtificial Intelligence5/22/20255/22/2025
info
114928MCP Server Prompt InjectionWeb App ScanningArtificial Intelligence7/31/20257/31/2025
high
114793MCP Manifest DetectedWeb App ScanningArtificial Intelligence5/22/20255/22/2025
info
114965MCP Server Tools DetectedWeb App ScanningArtificial Intelligence9/19/20259/19/2025
info
114803MCP Client Configuration File DetectedWeb App ScanningArtificial Intelligence5/23/20255/23/2025
medium
114790MCP Server DetectedWeb App ScanningArtificial Intelligence5/22/20253/5/2026
info
114921MCP Server Tool PoisoningWeb App ScanningArtificial Intelligence7/18/20257/18/2025
high
114791MCP Server Unauthenticated AccessWeb App ScanningArtificial Intelligence6/11/20256/18/2025
info
114918OAuth Dynamic Client Registration DetectedWeb App ScanningWeb Applications7/18/20257/18/2025
info
114885MCP Server SSE DNS RebindingWeb App ScanningArtificial Intelligence6/20/20257/3/2025
medium
114919OAuth Dynamic Client Registration Permissive Redirect URIWeb App ScanningWeb Applications7/18/20257/18/2025
low
115146Claude Code Settings File DetectedWeb App ScanningArtificial Intelligence2/17/20264/14/2026
medium
114906MCP Inspector < 0.14.1 Remote Code ExecutionWeb App ScanningArtificial Intelligence7/4/20257/4/2025
critical
115212Nginx UI < 2.3.5 Unauthenticated MCP EndpointWeb App ScanningComponent Vulnerability4/3/20264/3/2026
critical
114920OAuth Dynamic Client Registration Permissive Metadata FieldWeb App ScanningWeb Applications7/18/20257/18/2025
low
98780Java Object DeserializationWeb App ScanningWeb Applications10/7/202012/1/2023
critical
98125Local File InclusionWeb App ScanningFile Inclusion3/31/20174/17/2025
high
113317Expression Language InjectionWeb App ScanningInjection8/8/20227/6/2023
high
114135Input ReflectedWeb App ScanningInjection12/18/202312/18/2023
info
98122Code Injection (Timing Attack)Web App ScanningCode Execution3/31/20171/23/2023
critical
98117Blind SQL Injection (differential analysis)Web App ScanningInjection3/31/20173/18/2025
high
98118Blind SQL Injection (timing attack)Web App ScanningInjection3/31/20172/8/2023
high
98119Blind NoSQL Injection (differential analysis)Web App ScanningInjection3/31/20171/20/2025
high
98124Operating System Command Injection (Timing Attack)Web App ScanningCode Execution3/31/20177/18/2022
critical
113229Python Object DeserializationWeb App ScanningWeb Applications5/18/20225/18/2022
critical
113310Blind XPath Injection (differential analysis)Web App ScanningInjection8/8/20227/24/2025
high
114503Virtual Hosts DetectedWeb App ScanningWeb Applications11/20/202411/26/2024
info
112697JSON Web Token Weak SecretWeb App ScanningWeb Applications2/11/20217/1/2024
high
113237PHP Object DeserializationWeb App ScanningWeb Applications6/28/20222/8/2024
critical
98123Operating System Command InjectionWeb App ScanningCode Execution3/31/20174/17/2025
critical
98126Remote File InclusionWeb App ScanningFile Inclusion3/31/20177/13/2023
critical
98127LDAP InjectionWeb App ScanningInjection3/31/20178/9/2023
high
98115SQL InjectionWeb App ScanningInjection3/31/20173/5/2026
high
112550Full Path DisclosureWeb App ScanningData Exposure12/13/201810/3/2024
info
114116XML InjectionWeb App ScanningInjection12/1/20231/19/2026
high
98120Code InjectionWeb App ScanningCode Execution3/31/20175/25/2022
critical
98100Path TraversalWeb App ScanningWeb Applications3/31/20174/17/2025
high
112439Server-Side Request ForgeryWeb App ScanningWeb Applications6/9/20207/3/2025
high
98114XPath InjectionWeb App ScanningInjection3/31/20178/12/2024
high
98116NoSQL InjectionWeb App ScanningInjection3/31/20178/9/2023
high
112686JSON Web Token DetectedWeb App ScanningWeb Applications2/8/20212/11/2026
info
98920Disclosed US Social Security NumberWeb App ScanningData Exposure7/17/20194/3/2025
medium
98779Source Code Passive DisclosureWeb App ScanningData Exposure12/19/20199/3/2025
medium
98098Source Code DisclosureWeb App ScanningData Exposure3/31/201711/22/2023
medium
112703JSON Web Token None Hashing AlgorithmWeb App ScanningWeb Applications2/16/20212/11/2026
high
98611Error MessageWeb App ScanningData Exposure5/26/201911/4/2025
info
114129Generic Secret DisclosureWeb App ScanningData Exposure12/11/20232/11/2026
high
114276Database Connection String DisclosureWeb App ScanningData Exposure5/6/202412/17/2025
high
115062Third-Party Service Secret DisclosureWeb App ScanningData Exposure12/4/20254/3/2026
high
115063AI Service Secret DisclosureWeb App ScanningData Exposure12/4/20254/3/2026
high