Web Applications Family for Web App Scanning

ID	Name	Severity
115068	Adobe Experience Manager (AEM) Groovy Console	critical
115067	Adobe Experience Manager (AEM) Unauthenticated Cache Purge	info
115066	Adobe Experience Manager (AEM) Merge Metadata Servlet Detected	info
115065	Adobe Experience Manager (AEM) QueryBuilder JCR Hashed Password Disclosure	high
115064	Adobe Experience Manager (AEM) QueryBuilder JCR Role Disclosure	medium
115061	Adobe Experience Manager (AEM) Dispatcher Bypass	high
115060	Adobe Experience Manager (AEM) CRX Content Explorer	info
115059	Adobe Experience Manager (AEM) Felix Console Default Credentials	high
115058	Adobe Experience Manager (AEM) Debugging Client Libraries Exposure	info
115057	Adobe Experience Manager (AEM) Querybuilder Internal Path Read	medium
115056	Adobe Experience Manager (AEM) Sling User Information Servlet Exposure	medium
115055	Adobe Experience Manager (AEM) CRX Search Endpoint Exposure	medium
115054	Adobe Experience Manager (AEM) Custom Scripts Listing Detection	medium
115053	Adobe Experience Manager (AEM) QueryBuilder Feed Servlet Detected	info
115052	Adobe Experience Manager (AEM) CRX Namespace Editor Panel Detected	medium
115050	Adobe Experience Manager (AEM) Sling Login Panel Detected	info
115049	Adobe Experience Manager (AEM) CRX Package Manager Panel Detected	info
115048	Adobe Experience Manager (AEM) Login Panel Detected	info
115032	Lucee < 6.0.1.59 Remote Code Execution	critical
115029	Lucee Unset Credentials	critical
115028	Lucee Default Credentials	critical
115027	Lucee Administration Panel Login Form Detected	medium
115007	Node.js Express DevMode Enabled	medium
115006	Custom HTTP Header Detected	info
115002	Netdisco Unauthenticated Access	medium
114986	Apache Airflow Unauthenticated Access	medium
114979	pyLoad Default Credentials	critical
114976	GoCD Unauthenticated Access	medium
114975	Anteon Unauthenticated Access	medium
114974	Clickhouse API Unauthenticated Access	medium
114973	Tiny File Manager Default Credentials	critical
114972	Tiny File Manager Unauthenticated Access	medium
114971	File Browser Unauthenticated Access	medium
114970	cAdvisor Unauthenticated Access	medium
114968	Jenkins Unauthenticated Access	critical
114967	Jenkins User Registration Form Detected	medium
114920	OAuth Dynamic Client Registration Permissive Metadata Field	low
114919	OAuth Dynamic Client Registration Permissive Redirect URI	low
114918	OAuth Dynamic Client Registration Detected	info
114903	Microsoft Exchange Admin Center Detected	info
114884	FastJSON Object Deserialization	critical
114882	GraphQL Unauthenticated Mutation Detected	medium
114868	GraphQL Alias Overloading Enabled	medium
114867	GraphQL Query Length Not Limited	medium
114866	GraphQL Debug Mode Enabled	medium
114621	Docker Public Registry Detected	info
114619	GitLab Public Snippets Detected	info
114617	GitLab Public Projects Detected	info
114616	GitLab Public Sign-Up Detected	info
114613	Auth0 Identity Provider Detected	info

Detections

Analytics

Web Applications Family for Web App Scanning

critical

info

info

high

medium

high

info

high

info

medium

medium

medium

medium

info

medium

info

info

info

critical

critical

critical

medium

medium

info

medium

medium

critical

medium

medium

medium

critical

medium

medium

medium

critical

medium

low

low

info

info

critical

medium

medium

medium

medium

info

info

info

info

info