Component Vulnerability Family for Web App Scanning

ID	Name	Severity
112727	Apache Struts 2.0.4 < 2.3.35 / 2.5.x < 2.5.17 Remote Code Execution (S2-057)	high
112726	Apache Struts 2.3.5 < 2.3.32 / 2.5.x < 2.5.10.1 Remote Code Execution (S2-045 / S2-046)	critical
112725	Official Facebook Pixel Plugin for WordPress < 3.0.0 PHP Object Injection	high
112724	Official Facebook Pixel Plugin for WordPress 3.x < 3.0.4 Cross-Site Request Forgery	high
112720	Rails < 4.2.11.3 / 5.x < 5.0.1 Remote Code Execution	high
112718	Rails Sprockets 2.x < 2.12.5 / 3.x < 3.7.2 / 4.x < 4.0.0.beta8 Path Traversal	high
112717	Node.js 8.5.x < 8.6.0 Path Traversal	high
112716	Next.js < 9.3.2 Path Traversal	medium
112713	Joomla! 3.x < 3.9.25 Multiple Vulnerabilities	critical
112712	Apache Tomcat 7.0.x < 7.0.108 Multiple Vulnerabilities	high
112711	Apache Tomcat 8.5.x < 8.5.63 Multiple Vulnerabilities	high
112710	Apache Tomcat 9.0.0.M1 < 9.0.43 Multiple Vulnerabilities	high
112709	Apache Tomcat 10.0.0-M1 < 10.0.2 Multiple Vulnerabilities	high
112708	Contact Form 7 Style Plugin for WordPress Cross-Site Request Forgery	high
112707	Ninja Forms Plugin for WordPress < 3.4.34 Multiple Vulnerabilities	high
112706	Oracle WebLogic 10.3.6.0.0 / 12.1.3.0.0 / 12.2.1.3.0 Remote Code Execution	critical
112705	Oracle WebLogic 10.3.6.0.0 / 12.1.3.0.0 / 12.2.1.4.0 / 14.1.1.0.0 Authentication Bypass	critical
112704	Oracle WebLogic 10.3.6.0.0 / 12.1.3.0.0 Remote Code Execution	critical
112702	PHP 7.3.x < 7.3.27 Null Dereference Vulnerability	high
112701	PHP 7.4.x < 7.4.15 Null Dereference Vulnerability	high
112700	PHP 8.x < 8.0.2 Null Dereference Vulnerability	high
112699	AngularJS < 1.7.9 Prototype Pollution	high
112698	AngularJS < 1.8.0 Cross-Site Scripting	medium
112696	NextGEN Gallery Plugin for WordPress < 3.5.0 Cross-Site Request Forgery	high
112695	Squid < 4.8 Multiple Vulnerabilities	critical
112694	Squid < 4.9 Multiple Vulnerabilities	critical
112693	Squid < 4.10 Multiple Vulnerabilities	high
112692	Squid < 4.11 Multiple Vulnerabilities	critical
112691	Squid 5.x < 5.0.2 Multiple Vulnerabilities	critical
112690	Squid < 4.12 Multiple Vulnerabilities	high
112689	Squid 5.x < 5.0.3 Multiple Vulnerabilities	high
112688	Squid < 4.13 Multiple Vulnerabilities	high
112687	Squid 5.x < 5.0.4 Multiple Vulnerabilities	high
112685	Symfony Secret Fragments Remote Code Execution	critical
112683	Drupal 7.x < 7.78 Third-Party Library Vulnerability	high
112682	Drupal 8.9.x < 8.9.13 Third-Party Library Vulnerability	high
112681	Drupal 9.0.x < 9.0.11 Third-Party Library Vulnerability	high
112680	Drupal 9.1.x < 9.1.3 Third-Party Library Vulnerability	high
112679	PHP 7.3.x < 7.3.26 Input Validation Error	medium
112678	PHP 7.4.x < 7.4.14 Input Validation Error	medium
112677	PHP 8.x < 8.0.1 Input Validation Error	medium
112676	Apache Tomcat 7.0.x < 7.0.107 Information Disclosure	high
112675	Contact Form 7 Plugin for WordPress < 5.3.2 Arbitrary File Upload	critical
112674	Joomla! 3.x < 3.9.24 Multiple Vulnerabilities	medium
112666	Joomla! 1.7.x < 3.9.23 Multiple Vulnerabilities	critical
112673	Resin < 4.0.40 Incorrect Unicode Transformations	medium
112672	Easy WP SMTP Plugin for WordPress < 1.4.3 Debug Log Disclosure	high
112671	PHP 7.3.x < 7.3.25 Multiple Vulnerabilities	critical
112670	PHP 7.4.x < 7.4.13 Multiple Vulnerabilities	critical
112669	Apache Tomcat 8.5.x < 8.5.60 Information Disclosure	high

Detections

Analytics

Component Vulnerability Family for Web App Scanning

high

critical

high

high

high

high

high

medium

critical

high

high

high

high

high

high

critical

critical

critical

high

high

high

high

medium

high

critical

critical

high

critical

critical

high

high

high

high

critical

high

high

high

high

medium

medium

medium

high

critical

medium

critical

medium

high

critical

critical

high