Search Vulnerability

Select Category

Full List

You can look to full list.


Vulnerability Name Classifications Severity
Backup Source Code Detected PCI v3.1-6.5.8, PCI v3.2-6.5.8, CAPEC-87, WASC-34, OWASP 2013-A7 High
Basic Authorization over HTTP PCI v3.1-6.5.4, PCI v3.2-6.5.4, CAPEC-65, WASC-4, OWASP 2013-A6 High
Blind Cross-site Scripting PCI v3.1-6.5.7, PCI v3.2-6.5.7, CAPEC-19, WASC-8, OWASP 2013-A3 High
Certificate is Signed Using a Weak Signature Algorithm PCI v3.1-6.5.4, PCI v3.2-6.5.4, CAPEC-459, WASC-4, OWASP PC-C7, OWASP 2013-A6 High
Cookie Not Marked as Secure PCI v3.1-6.5.10, PCI v3.2-6.5.10, CAPEC-102, WASC-15, OWASP 2013-A6 High
Cross-site Scripting PCI v3.1-6.5.7, PCI v3.2-6.5.7, CAPEC-19, WASC-8, OWASP 2013-A3 High
Cross-site Scripting (DOM based) PCI v3.1-6.5.7, PCI v3.2-6.5.7, CAPEC-19, WASC-8, OWASP 2013-A3 High
Cross-site Scripting via Remote File Inclusion PCI v3.1-6.5.7, PCI v3.2-6.5.7, CAPEC-19, WASC-8, OWASP 2013-A3 High
Database User Has Admin Privileges PCI v3.1-6.5.6, PCI v3.2-6.5.6, WASC-14, OWASP 2013-A5 High
Elmah.axd Detected PCI v3.1-6.5.6, PCI v3.2-6.5.6, CAPEC-347, WASC-15, OWASP 2013-A5 High
Expression Language Injection PCI v3.1-6.5.1, PCI v3.2-6.5.1, OWASP 2013-A1 High
Insecure Transportation Security Protocol Supported (SSLv2) PCI v3.1-6.5.4, PCI v3.2-6.5.4, CAPEC-217, WASC-4, OWASP 2013-A6 High
Local File Inclusion PCI v3.1-6.5.8, PCI v3.2-6.5.8, CAPEC-252, WASC-33, OWASP 2013-A4 High
Out of Band XML External Entity Injection PCI v3.1-6.5.1, PCI v3.2-6.5.1, CAPEC-376, WASC-43, OWASP 2013-A1 High
Out-of-date Version (Microsoft SQL Server) PCI v3.1-6.2, PCI v3.2-6.2, CAPEC-310, OWASP 2013-A9 High
Out-of-date Version (MySQL) PCI v3.1-6.2, PCI v3.2-6.2, CAPEC-310, OWASP 2013-A9 High
Out-of-date Version (PostgreSQL) PCI v3.1-6.2, PCI v3.2-6.2, CAPEC-310, OWASP 2013-A9 High
Password Transmitted over HTTP PCI v3.1-6.5.4, PCI v3.2-6.5.4, CAPEC-65, WASC-4, OWASP 2013-A6 High
ROBOT Attack Detected (Strong Oracle) PCI v3.1-6.5.4, PCI v3.2-6.5.4, CAPEC-217, WASC-4, OWASP 2013-A6 High
ROBOT Attack Detected (Weak Oracle) PCI v3.1-6.5.4, PCI v3.2-6.5.4, CAPEC-217, WASC-4, OWASP 2013-A6 High
Server-Side Request Forgery (Apache Server Status) High
Server-Side Request Forgery (AWS) High
Server-Side Request Forgery (elmah MVC) PCI v3.1-6.5.6, PCI v3.2-6.5.6, CAPEC-347, WASC-15, OWASP 2013-A5 High
Server-Side Request Forgery (elmah) PCI v3.1-6.5.6, PCI v3.2-6.5.6, CAPEC-347, WASC-15, OWASP 2013-A5 High
Server-Side Request Forgery (MySQL) High
Server-Side Request Forgery (SSH) High
Stored Cross-site Scripting PCI v3.1-6.5.7, PCI v3.2-6.5.7, CAPEC-19, WASC-8, OWASP 2013-A3 High
SVN Detected CAPEC-118, WASC-13, OWASP 2013-A5 High
Trace.axd Detected PCI v3.1-6.5.6, PCI v3.2-6.5.6, CAPEC-347, WASC-15, OWASP 2013-A5 High
Unrestricted File Upload PCI v3.1-6.5.1, PCI v3.2-6.5.1, OWASP 2013-A1 High
Weak Basic Authentication Credentials PCI v3.1-6.5.10, PCI v3.2-6.5.10, CAPEC-16, WASC-15, OWASP 2013-A6 High
WebDAV Directory Has Write Permissions PCI v3.1-6.5.8, PCI v3.2-6.5.8, WASC-17 High
XML External Entity Injection PCI v3.1-6.5.1, PCI v3.2-6.5.1, CAPEC-376, WASC-43, OWASP 2013-A1 High
Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO