Component Vulnerability Family for Web App Scanning

ID	Name	Severity
114988	Grafana 11.4.x < 11.4.6 Multiples Vulnerabilities	high
114987	Grafana < 11.3.8 Multiples Vulnerabilities	high
114985	Hitachi Pentaho Business Analytics Server 8.3.x < 9.3.0.2 / 9.4.x < 9.4.0.1 Remote Code Execution	critical
114984	Apache Kylin 2.3.x < 3.1.0 Command Injection	high
114983	Zyxel < 5.38 Directory Traversal	critical
114982	Joomla! 4.x < 4.4.14 Multiple Vulnerabilities	medium
114981	Joomla! 5.x < 5.3.4 Multiple Vulnerabilities	medium
114980	TRUFusion Entreprise Sensitive Data Exposure	medium
114978	pyLoad < 0.5.0b3.dev76 Improper Access Control	high
114977	ProjectSend < r1720 Improper Authorization	critical
114964	Jenkins Cross-Site WebSocket Hijacking	critical
114961	AIOHTTP < 3.9.2 Directory Traversal	high
114960	Cacti 1.3.x-DEV Remote Code Execution	critical
114958	Nuxt Icon < 1.4.5 Server-Side Request Forgery	high
114957	FreeBPX < 17.0.3 Authentication Bypass	critical
114956	FreeBPX < 16.0.89 Authentication Bypass	critical
114955	FreeBPX < 15.0.66 Authentication Bypass	critical
114954	Nginx 0.7.22 < 1.29.1 Buffer Over-read	medium
114953	Apache Tomcat 9.0.0-M1 < 9.0.108 Denial of Service	high
114952	Apache Tomcat 10.1.0-M1 < 10.1.44 Denial of Service	high
114951	Apache Tomcat 11.0.0-M1 < 11.0.10 Denial of Service	high
114950	CrushFTP < 10.8.5 / 11.x < 11.3.4_23 Race Condition	critical
114945	Liferay Portal 7.4.x < 7.4.3.133 Cross-Site Scripting	medium
114944	Liferay Portal 7.4.x < 7.4.3.132 Cross-Site Scripting	medium
114943	Rejetto HTTP File Server < 2.3c Remote Code Execution	critical
114942	Active! Mail < 6.60.05008562 Remote Code Execution	critical
114935	Advantive Veracore < 2025.1.1.3 SQL Injection	high
114931	Squid < 6.4 Remote Code Execution	critical
114926	Lighthouse Studio < 9.16.14 Remote Code Execution	critical
114925	Wing FTP < 7.4.4 Remote Code Execution	critical
114924	Apache 2.4.64 RewriteCond expr Vulnerability	medium
114923	Microsoft SharePoint Remote Code Execution	critical
114922	Fortinet FortiWeb Fabric Connector SQL Injection	critical
114917	Apache 2.4.x < 2.4.64 Multiple Vulnerabilities	critical
114916	Apache Tomcat 9.0.0-M1 < 9.0.107 Multiple Vulnerabilities	high
114915	Apache Tomcat 10.1.0-M1 < 10.1.43 Multiple Vulnerabilities	high
114914	Apache Tomcat 11.0.0-M1 < 11.0.9 Multiple Vulnerabilities	high
114913	XWiki User Registration Remote Code Execution	critical
114912	XWiki Platform SolrSearch Macro Remote Code Execution	critical
114911	PHP 8.1.x < 8.1.33 Multiple Vulnerabilities	high
114910	PHP 8.2.x < 8.2.29 Multiple Vulnerabilities	high
114909	PHP 8.3.x < 8.3.23 Multiple Vulnerabilities	high
114908	PHP 8.4.x < 8.4.10 Multiple Vulnerabilities	high
114907	Citrix NetScaler Gateway / ADC Memory Disclosure	critical
114902	Bootstrap Unsupported Version	critical
114901	Bootstrap 3.2.x <= 3.4.1 Cross-Site Scripting	medium
114900	Bootstrap < 4.0.0 Multiples Cross-Site Scripting	medium
114898	Moodle 5.x < 5.0.1 Reflected Cross-Site Scripting	medium
114897	Moodle 4.5.x < 4.5.4 Multiple Vulnerabilities	medium
114896	Moodle 4.4.x < 4.4.8 Multiple Vulnerabilities	medium

Detections

Analytics

Component Vulnerability Family for Web App Scanning

high

high

critical

high

critical

medium

medium

medium

high

critical

critical

high

critical

high

critical

critical

critical

medium

high

high

high

critical

medium

medium

critical

critical

high

critical

critical

critical

medium

critical

critical

critical

high

high

high

critical

critical

high

high

high

high

critical

critical

medium

medium

medium

medium

medium