Search Vulnerability


Vulnerability Name Classifications Severity
Code Execution via File Upload PCI v3.2-, CAPEC-210, CWE-94, HIPAA-94, ISO27001-A.14.2.5, WASC-42, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via Local File Inclusion PCI v3.2-, CAPEC-170, CWE-94, HIPAA-94, ISO27001-A.14.2.5, WASC-33, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (ASP.NET Razor) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Java FreeMarker) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Java Pebble) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Java Velocity) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Node.js Dot) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Node.js EJS) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Node.js Marko) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Node.js Nunjucks) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Node.js Pug (Jade)) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (PHP Smarty) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (PHP Twig) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Python Jinja) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Python Mako) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Python Tornado) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Ruby ERB) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via SSTI (Ruby Slim) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Code Execution via WebDAV PCI v3.2-, CAPEC-17, CWE-94, HIPAA-94, ISO27001-A.14.2.5, WASC-17, OWASP 2017-A6 Critical
Drupal Core - Remote Code Execution (CVE-2019-6340) PCI v3.2-, CAPEC-242, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Oracle WebLogic Remote Code Execution (CVE-2020-14882) PCI v3.2-, CAPEC-242, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (Java FreeMarker) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (Java Velocity) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (Node.js Dot) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (Node.js EJS) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (Node.js Marko) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (Node.js Nunjucks) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (Node.js Pug (Jade)) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (PHP Smarty) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (PHP Twig) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (Python Jinja) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (Python Mako) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Out of Band Code Execution via SSTI (Python Tornado) PCI v3.2-, CAPEC-23, CWE-94, HIPAA-94, ISO27001-A.14.2.5, OWASP 2013-A1, OWASP 2017-A1 Critical
Remote Code Execution and DoS in HTTP.sys (IIS) PCI v3.2-, CAPEC-340, CWE-20, HIPAA-20, ISO27001-A.14.2.5, WASC-7, OWASP 2013-A1, OWASP 2017-A1 Critical
Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

Get a demo