Component Vulnerability Family for Web App Scanning

ID	Name	Severity
114406	LiteSpeed Cache Plugin for WordPress < 6.4 Privilege Escalation	critical
114405	Laravel Telescope Unrestricted Access	high
114404	Laravel Horizon Unrestricted Access	high
114403	Laravel Pulse Unrestricted Access	high
114402	Nginx HTTP API Module Unrestricted Access	high
114401	Nginx+ Dashboard Unrestricted Access	high
114400	Apache OFBiz < 18.12.11 Server-Side Request Forgery	high
114399	Apache OFBiz < 18.12.13 Path Traversal	critical
114397	AI Engine Plugin for WordPress < 2.4.8 Server-Side Request Forgery	medium
114396	Apache OFBiz < 18.12.15 Remote Code Execution	critical
114394	GeoServer Remote Code Execution	critical
114393	Danswer Unauthenticated Access	critical
114390	AnythingLLM API Sensitive Information Disclosure	high
114388	Facade Ignition < 2.5.2 Remote Code Execution	critical
114387	PaperCut NG/MF < 22.1.3 Path Traversal	critical
114385	Apache 2.4.x < 2.4.62 Multiple Vulnerabilities	high
114384	Progress Kemp LoadMaster Remote Command Execution	critical
114383	Ivanti EPM Cloud Services Appliance < 4.6.0-512 Remote Code Execution	critical
114381	Apache Hugegraph 1.0.0 < 1.3.0 Remote Command Execution	critical
114380	Nortek Linear eMerge E3-Series < 0.32-08f Command Injection	critical
114379	Atlassian Confluence 8.6.x < 8.9.1 Cross-Site Scripting	high
114378	Atlassian Confluence 7.20.x < 8.5.9 Cross-Site Scripting	high
114377	Atlassian Confluence < 7.19.22 Cross-Site Scripting	high
114376	ServiceNow Server-Side Template Injection	critical
114375	Joomla! 3.x < 3.10.16 Multiple Vulnerabilities	medium
114374	Joomla! 4.x < 4.4.6 Multiple Vulnerabilities	medium
114373	Joomla! 5.x < 5.1.2 Multiple Vulnerabilities	medium
114372	Odoo Unprotected Database Manager	critical
114371	Odoo Database Manager Detected	medium
114370	Grafana Default Credentials	high
114369	Qlik Sense Enterprise Path Traversal	critical
114368	Bricks Theme for WordPress < 1.9.6.1 Remote Code Execution	critical
114366	Apache Tomcat 9.0.0-M1 < 9.0.90 Denial Of Service	high
114365	Apache Tomcat 10.1.0-M1 < 10.1.25 Denial Of Service	high
114364	Apache Tomcat 11.0.0-M1 < 11.0.0-M21 Denial Of Service	high
114363	Apache 2.4.60 Source Code Disclosure	high
114360	Apache 2.4.x < 2.4.60 Multiple Vulnerabilities	critical
114357	Polyfill Detected	medium
114356	Ivanti Sentry Authentication Bypass	critical
114355	Ivanti Endpoint Manager Mobile < 11.11.0.0 Authentication Bypass	critical
114329	WordPress Emergency Password Reset Script Detected	critical
114354	WordPress 6.5.x < 6.5.5 Multiple Vulnerabilities	medium
114353	WordPress 6.4.x < 6.4.5 Multiple Vulnerabilities	medium
114352	WordPress 6.3.x < 6.3.5 Multiple Vulnerabilities	medium
114351	WordPress 6.2.x < 6.2.6 Multiple Vulnerabilities	medium
114350	WordPress 6.1.x < 6.1.7 Multiple Vulnerabilities	medium
114349	WordPress 6.0.x < 6.0.9 Multiple Vulnerabilities	medium
114348	WordPress 5.9.x < 5.9.10 Multiple Vulnerabilities	medium
114347	WordPress 5.8.x < 5.8.10 Multiple Vulnerabilities	medium
114346	WordPress 5.7.x < 5.7.12 Multiple Vulnerabilities	medium

Detections

Analytics

Component Vulnerability Family for Web App Scanning

critical

high

high

high

high

high

high

critical

medium

critical

critical

critical

high

critical

critical

high

critical

critical

critical

critical

high

high

high

critical

medium

medium

medium

critical

medium

high

critical

critical

high

high

high

high

critical

medium

critical

critical

critical

medium

medium

medium

medium

medium

medium

medium

medium

medium