| 114273 | CrushFTP < 10.7.1 / 11.x < 11.1.0 VFS Sandbox Escape | high |
| 114272 | PHP 8.1.x < 8.1.28 Multiple Vulnerabilities | critical |
| 114271 | PHP 8.2.x < 8.2.18 Multiple Vulnerabilities | critical |
| 114270 | PHP 8.3.x < 8.3.6 Multiple Vulnerabilities | critical |
| 114269 | Django Debug Mode Enabled | high |
| 114268 | Formidable PRO2PDF Plugin for WordPress < 3.11 SQL Injection | high |
| 114267 | Gift Cards (Gift Vouchers and Packages) Plugin for WordPress < 4.3.3 SQL Injection | critical |
| 114266 | WP Popup Banners Plugin for WordPress <= 1.2.5 SQL Injection | high |
| 114265 | Events Made Easy Plugin for WordPress <= 2.3.14 SQL Injection | high |
| 114264 | One-click Countdowns Plugin for WordPress <= 0.6.2 SQL Injection | high |
| 114263 | ReviewX Plugin for WordPress < 1.6.3 SQL Injection | high |
| 114261 | WSO2 Management Console Cross-Site Scripting | medium |
| 114260 | Keycloak Information Disclosure | medium |
| 114259 | Adobe ColdFusion Arbitrary File Read | high |
| 114258 | LayerSlider Plugin for WordPress 7.9.11 < 7.10.1 SQL Injection | high |
| 114256 | WordPress 6.5.x < 6.5.2 Cross-Site Scripting | medium |
| 114255 | WordPress 6.4.x < 6.4.4 Cross-Site Scripting | medium |
| 114254 | WordPress 6.3.x < 6.3.4 Cross-Site Scripting | medium |
| 114253 | WordPress 6.2.x < 6.2.5 Cross-Site Scripting | medium |
| 114252 | WordPress 6.1.x < 6.1.6 Cross-Site Scripting | medium |
| 114251 | Oracle Reports Servlet Arbitrary File Read | critical |
| 114250 | Apache Superset < 2.1.0 Hardcoded Secret Key | critical |
| 114249 | Apache 2.4.x < 2.4.59 Multiple Vulnerabilities | critical |
| 114248 | Pentaho Business Server Server-Side Template Injection | critical |
| 114246 | OpenCMS < 16.0 Multiples Vulnerabilities | high |
| 114245 | OpenCMS < 10.5.1 Multiples Vulnerabilities | high |
| 114243 | Adobe ColdFusion < 2021 Update 12 / < 2023 Update 6 Cross-Site Scripting | medium |
| 114242 | Adobe ColdFusion < 2021 Update 12 / < 2023 Update 6 Remote Code Execution | critical |
| 114241 | PrestaShop 1.7.7.0 SQL injection | critical |
| 114240 | Atlassian Confluence 8.6.x < 8.8.1 Path Traversal | high |
| 114239 | Atlassian Confluence 7.20.x < 8.5.7 Path Traversal | high |
| 114238 | Atlassian Confluence < 7.19.20 Path Traversal | high |
| 114236 | Apache Tomcat 8.5.x < 8.5.99 Denial Of Service | high |
| 114235 | Apache Tomcat 9.0.0-M1 < 9.0.86 Denial Of Service | high |
| 114234 | Apache Tomcat 10.1.0-M1 < 10.1.19 Denial Of Service | high |
| 114233 | Apache Tomcat 11.0.0-M1 < 11.0.0-M17 Denial Of Service | high |
| 114231 | Cisco IOS XE Remote Code Execution | critical |
| 114230 | Sangfor NGAF Authentication Bypass | critical |
| 114229 | Popup Builder Plugin for WordPress < 4.2.3 Cross-Site Scripting | medium |
| 114228 | PyTorch Serve Server-Side Request Forgery | critical |
| 114227 | Ultimate Member Plugin for WordPress < 2.8.3 SQL Injection | critical |
| 114226 | LiteSpeed Cache Plugin for WordPress < 5.7.0.1 Cross-Site Scripting | high |
| 114225 | JetBrains TeamCity < 2023.11.4 Authentication Bypass | critical |
| 114222 | Atlassian Confluence 7.20.x < 8.5.5 Cross-Site Scripting | high |
| 114221 | Atlassian Confluence 8.7.x < 8.7.2 Cross-Site Scripting | high |
| 114220 | Atlassian Confluence < 7.19.18 Cross-Site Scripting | high |
| 114218 | Joomla! 1.5.x < 4.4.3 Multiple Vulnerabilities | high |
| 114217 | Joomla! 5.x < 5.0.3 Multiple Vulnerabilities | high |
| 114216 | Apache Tomcat 8.5.7 < 8.5.64 Request Smuggling | medium |
| 114215 | Apache Tomcat 9.0.0-M11 < 9.0.44 Request Smuggling | medium |
