98616 | TLS 1.2 Not Supported Protocol | Web App Scanning | SSL/TLS | 11/26/2021 | medium |
98615 | Basic Authentication Without HTTPS | Web App Scanning | Authentication & Session | 11/26/2021 | low |
98595 | Gitignore File Detected | Web App Scanning | Data Exposure | 11/26/2021 | low |
98524 | Apache Tomcat Default Files | Web App Scanning | Web Applications | 11/26/2021 | medium |
98226 | Apache mod_info Information Disclosure | Web App Scanning | Web Applications | 11/26/2021 | medium |
98211 | Joomla! Configuration Backup Files Detected | Web App Scanning | Web Applications | 11/26/2021 | medium |
98210 | Drupal Configuration Backup Files Detected | Web App Scanning | Web Applications | 11/26/2021 | medium |
98204 | WordPress Configuration Backup Files Detected | Web App Scanning | Web Applications | 11/26/2021 | medium |
98108 | Cross-Site Scripting (XSS) in event tag of HTML element | Web App Scanning | Cross Site Scripting | 11/26/2021 | medium |
98106 | Cross-Site Scripting (XSS) in attribute context | Web App Scanning | Cross Site Scripting | 11/26/2021 | medium |
98105 | Cross-Site Scripting (XSS) in HTML tag | Web App Scanning | Cross Site Scripting | 11/26/2021 | medium |
98102 | Session Fixation | Web App Scanning | Authentication & Session | 11/26/2021 | medium |
98101 | Response Splitting | Web App Scanning | Web Applications | 11/26/2021 | medium |
98099 | Publicly writable directory | Web App Scanning | Web Servers | 11/26/2021 | high |
98091 | Mixed Resource Detection | Web App Scanning | Web Applications | 11/26/2021 | medium |
98065 | Insecure Client-Access Policy | Web App Scanning | Web Applications | 11/26/2021 | low |
113016 | Cross-Site Script Inclusion (XSSI) | Web App Scanning | Cross Site Scripting | 11/26/2021 | medium |
112922 | Nginx Vhost Traffic Status Information Disclosure | Web App Scanning | Web Applications | 11/26/2021 | medium |
112893 | X-Cart Concierge Module Information Disclosure | Web App Scanning | Web Applications | 11/26/2021 | medium |
112811 | X-Cart Files Information Disclosure | Web App Scanning | Web Applications | 11/26/2021 | medium |
112799 | Exposed Session Token | Web App Scanning | Authentication & Session | 11/26/2021 | medium |
112794 | Weak Session Management Detected | Web App Scanning | Authentication & Session | 11/26/2021 | high |
112772 | Microsoft FrontPage Insecure Extension Configuration | Web App Scanning | Web Applications | 11/26/2021 | medium |
112771 | phpBB Directories Information Disclosure | Web App Scanning | Web Applications | 11/26/2021 | medium |
112721 | Duplicator Plugin for WordPress Installation File Detected | Web App Scanning | Data Exposure | 11/26/2021 | medium |
112715 | WordPress Plugins Sensitive Files Detected | Web App Scanning | Data Exposure | 11/26/2021 | medium |
112563 | SSL/TLS Certificate Lifetime Greater Than 398 Days | Web App Scanning | SSL/TLS | 11/26/2021 | medium |
112545 | Oracle WebLogic Server Administration Console Detected | Web App Scanning | Web Applications | 11/26/2021 | medium |
112542 | SSL/TLS Certificate Signed Using Weak Hashing Algorithm | Web App Scanning | SSL/TLS | 11/26/2021 | medium |
112531 | Git Repository Detected | Web App Scanning | Data Exposure | 11/26/2021 | medium |
112495 | SSL/TLS Self-Signed Certificate | Web App Scanning | SSL/TLS | 11/26/2021 | medium |
112494 | SSL Insecure Protocols | Web App Scanning | SSL/TLS | 11/26/2021 | medium |
112493 | SSL/TLS Certificate Expired | Web App Scanning | SSL/TLS | 11/26/2021 | medium |
112361 | Lighttpd Status Module Information Disclosure | Web App Scanning | Web Applications | 11/26/2021 | medium |
98024 | HTTP Server Authentication Detected | Web App Scanning | Authentication & Session | 11/23/2021 | info |
98215 | WordPress XML-RPC Interface Detected | Web App Scanning | Component Vulnerability | 11/17/2021 | medium |
113046 | Virtual JDBC Remote Code Execution | Web App Scanning | Component Vulnerability | 11/15/2021 | critical |
112944 | Atlassian Confluence Webwork OGNL Injection | Web App Scanning | Component Vulnerability | 10/8/2021 | critical |
98999 | Atlassian OAuth Plugin 1.3.0 < 1.9.12 / 2.0.0 < 2.0.4 Server-Side Request Forgery | Web App Scanning | Component Vulnerability | 9/7/2021 | medium |
98997 | Kentico CMS 9.x < 10.0.52 / 11.0.x < 11.0.48 / 12.0.x < 12.0.15 Remote Code Execution | Web App Scanning | Component Vulnerability | 9/7/2021 | critical |
98994 | Kentico CMS < 9.0.51 / 10.x < 10.0.48 Access Control Bypass | Web App Scanning | Component Vulnerability | 9/7/2021 | critical |
98988 | Magento Configuration Files | Web App Scanning | Web Applications | 9/7/2021 | high |
98987 | Magento Data Files | Web App Scanning | Web Applications | 9/7/2021 | high |
98984 | PHPUnit Remote Code Execution | Web App Scanning | Component Vulnerability | 9/7/2021 | critical |
98938 | Joomla! Session Object Injection RCE | Web App Scanning | Component Vulnerability | 9/7/2021 | critical |
98765 | Magento Cacheleak | Web App Scanning | Web Applications | 9/7/2021 | high |
98764 | vBulletin < 5.6.2 Patch Level 1 Remote Code Execution Vulnerability | Web App Scanning | Component Vulnerability | 9/7/2021 | critical |
98716 | Rails Arbitrary File Content Disclosure | Web App Scanning | Component Vulnerability | 9/7/2021 | high |
98704 | Drupal PHPUnit/Mailchimp Code Execution Vulnerability | Web App Scanning | Component Vulnerability | 9/7/2021 | critical |
98644 | Magento Connect Manager Detected | Web App Scanning | Web Applications | 9/7/2021 | low |