Component Vulnerability Family for Web App Scanning

ID	Name	Severity
112446	Moment.js < 2.19.3 Regular Expression Denial of Service	high
112445	Moment.js < 2.11.2 Regular Expression Denial of Service	medium
112436	jQuery 3.0.0-rc.1 Denial of Service	high
112435	jQuery 1.12.4 < 3.0.0 Cross-Site Scripting	medium
112434	jQuery 1.4.0 < 1.12.0 Cross-Site Scripting	medium
112433	jQuery 1.4.2 < 1.6.2 Cross-Site Scripting	medium
112432	jQuery 1.7.1 < 1.9.0 Cross-Site Scripting	medium
112431	jQuery < 1.6.3 Cross-Site Scripting	medium
112417	YUI 3.10.2 Cross-site Scripting	medium
112416	YUI 3.0.0 < 3.10.1 Cross-site Scripting	medium
112415	YUI 3.0.0 < 3.10.0 Cross-site Scripting	medium
112414	YUI 2.4.0 < 3.0.0 Cross-site Scripting	medium
112413	YUI 3.5.0-PR1 < 3.5.1 Cross-site Scripting	medium
112412	YUI < 2.9.0 Cross-site Scripting	medium
112411	YUI 2.4.0 < 2.8.2 Cross-site Scripting	medium
112397	AngularJS < 1.6.9 Cross-Site Scripting	medium
112396	AngularJS < 1.6.7 Cross-Site Scripting	medium
112395	AngularJS < 1.6.5 Cross-Site Scripting	medium
112394	AngularJS 1.5.0 < 1.5.9 Content Security Policy Bypass	medium
112393	AngularJS < 1.6.1 Cross-Site Scripting	medium
112392	AngularJS 1.3.0 < 1.5.0-rc.2 Cross-Site Scripting	medium
112391	AngularJS < 1.4.10 Cross-Site Scripting	medium
112381	Modernizr 3.x < 3.4.0 Marked Multiple Vulnerabilities	medium
112374	Bootstrap 4.0.0 < 4.1.2 Cross-Site Scripting	medium
112373	Bootstrap < 3.4.0 Cross-Site Scripting	medium
112372	Bootstrap < 2.1.0 Cross-Site Scripting	medium
112359	lighttpd < 1.4.36 mod_auth Arbitrary Log Entries Injection	high
112358	lighttpd < 1.4.35 Multiple Vulnerabilities	critical
112357	lighttpd < 1.4.34 Multiple Vulnerabilities	critical
112356	lighttpd 1.4.31 http_request_split_value Function Header Handling DoS	high
112355	lighttpd < 1.4.30 base64_decode Function Out-of-Bounds Read Error DoS	high
112354	lighttpd < 1.4.28 Insecure Temporary File Creation	high
112316	Apache Tomcat 8.5.0 < 8.5.34 Open Redirect	medium
112315	Apache Tomcat 7.0.23 < 7.0.91 Open Redirect	medium
112313	Apache Tomcat 9.0.0.M1 < 9.0.12 Open Redirect	medium
112312	Apache Tomcat 7.0.x < 7.0.77 Information Disclosure	high
112311	Apache Tomcat 7.0.41 < 7.0.79 Cache Poisoning Vulnerability	medium
112310	Apache Tomcat 7.0.x < 7.0.81 Multiple Vulnerabilities	high
112309	Apache Tomcat 7.0.x < 7.0.82 Remote Code Execution via JSP Upload	high
112308	Apache Tomcat 7.0.79 < 7.0.84 Insecure CGI Servlet Search Algorithm Description Weakness	medium
112307	Apache Tomcat 7.0.0 < 7.0.85 Security Constraint Weakness	medium
112306	Apache Tomcat 7.0.28 < 7.0.88 Denial of Service	high
112305	Apache Tomcat 7.0.25 < 7.0.90 Multiple Vulnerabilities	critical
112304	Apache Tomcat 8.5.x < 8.5.13 Multiple Vulnerabilities	critical
112303	Apache Tomcat 8.5.x < 8.5.15 Remote Error Page Manipulation	high
112302	Apache Tomcat 7.0.x < 7.0.78 Remote Error Page Manipulation	high
112301	Apache Tomcat 8.5.x < 8.5.16 Multiple Vulnerabilities	high
112300	Apache Tomcat 8.5.x < 8.5.23 Remote Code Execution via JSP Upload	high
112299	Apache Tomcat 8.5.16 < 8.5.24 Insecure CGI Servlet Search Algorithm Description Weakness	medium
112298	Apache Tomcat 8.5.x < 8.5.28 Security Constraint Weakness	medium

Detections

Analytics

Component Vulnerability Family for Web App Scanning

high

medium

high

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

high

critical

critical

high

high

high

medium

medium

medium

high

medium

high

high

medium

medium

high

critical

critical

high

high

high

high

medium

medium