Component Vulnerability Family for Web App Scanning

ID	Name	Severity
113466	WP DBManager Plugin for WordPress < 2.80.8 Code Injection	high
113465	Affiliates Manager Plugin for WordPress < 2.9.14 Multiple Vulnerabilities	high
113464	WP Maintenance Plugin for WordPress < 6.0.8 Stored Cross-Site Scripting	medium
113463	WP Maintenance Plugin for WordPress < 6.0.6 Stored Cross-Site Scripting	medium
113462	WP-Polls Plugin for WordPress < 2.77.0 Stored Cross-Site Scripting	low
113461	Wordfence Security Plugin for WordPress < 7.6.0 Stored Cross-Site Scripting	medium
113460	Yoast SEO Plugin for WordPress 1.7.x < 1.7.4 Multiple Vulnerabilities	high
113459	Yoast SEO Plugin for WordPress 1.6.x < 1.6.4 Multiple Vulnerabilities	high
113458	Yoast SEO Plugin for WordPress < 1.5.7 Multiple Vulnerabilities	high
113457	phpMyAdmin 4.9.x < 4.9.10 Information Disclosure	high
113456	phpMyAdmin 5.1.x < 5.1.3 Information Disclosure	high
113449	WordPress Cron Enabled	medium
113454	lighttpd < 1.4.54 Integer Overflow	critical
113453	lighttpd 1.4.56 < 1.4.59 Denial of Service	high
113451	Lodash < 4.17.5 Prototype Pollution	medium
113450	Lodash < 4.17.11 Prototype Pollution	medium
113438	GLPI 9.1 < 10.0.3 SQL Injection	critical
113437	GLPI 9.1 < 9.5.6 Rest API IP Restriction Bypass	high
113436	GLPI Default Credentials	high
113435	GLPI < 9.3.4 SQL Injection	critical
113447	Atlassian Crowd 5.0.x < 5.0.3 Misconfiguration	critical
113446	Atlassian Bitbucket 8.4.x < 8.4.2 Command Injection	critical
113445	Atlassian Bitbucket 8.3.x < 8.3.3 Command Injection	critical
113444	Atlassian Bitbucket 8.2.x < 8.2.4 Command Injection	critical
113443	Atlassian Bitbucket 8.1.x < 8.1.5 Command Injection	critical
113442	Atlassian Bitbucket 8.0.x < 8.0.5 Command Injection	critical
113441	Atlassian Bitbucket 7.18.x < 7.21.6 Command Injection	critical
113440	Atlassian Bitbucket 7.7.x < 7.17.12 Command Injection	critical
113439	Atlassian Bitbucket < 7.6.19 Command Injection	critical
113434	Atlassian Crowd < 4.4.4 Misconfiguration	critical
113432	HTMLawed < 1.2.9 Code Injection	critical
113431	Sitecore CMS/XP CSRF Remote Code Execution	critical
113428	WordPress Post By Email Enabled	info
113427	Apache Commons Text Remote Code Execution (Text4Shell)	critical
113429	Joomla! 4.x < 4.2.5 Cross-Site Scripting	medium
113426	PHP 7.4.x < 7.4.33 Multiple Vulnerabilities	critical
113425	PHP 8.0.x < 8.0.25 Multiple Vulnerabilities	critical
113424	PHP 8.1.x < 8.1.12 Multiple Vulnerabilities	critical
113395	Movable Type < 6.8.7 / 7.x < 7.8.5 Remote Command Injection	critical
113394	Movable Type < 6.8.3 / 7.x < 7.8.2 Remote Command Injection	critical
113391	TYPO3 Open Redirection in Login Handling	medium
113423	Joomla! 4.x < 4.2.4 Multiple Vulnerabilities	medium
113421	Nginx 1.23.x < 1.23.2 Multiple Vulnerabilities	critical
113420	Nginx < 1.22.1 Multiple Vulnerabilities	critical
113419	WordPress 6.0.x < 6.0.3 Multiple Vulnerabilities	medium
113418	WordPress 5.9.x < 5.9.5 Multiple Vulnerabilities	medium
113417	WordPress 5.8.x < 5.8.6 Multiple Vulnerabilities	medium
113416	WordPress 5.7.x < 5.7.8 Multiple Vulnerabilities	medium
113415	WordPress 5.6.x < 5.6.10 Multiple Vulnerabilities	medium
113414	WordPress 5.5.x < 5.5.11 Multiple Vulnerabilities	medium

Detections

Analytics

Component Vulnerability Family for Web App Scanning

high

high

medium

medium

low

medium

high

high

high

high

high

medium

critical

high

medium

medium

critical

high

high

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

info

critical

medium

critical

critical

critical

critical

critical

medium

medium

critical

critical

medium

medium

medium

medium

medium

medium