Search Vulnerability

Select Category

Full List

You can look to full list.


Vulnerability Name Classifications Severity
.DS_Store File Found PCI v3.1-6.5.8, PCI v3.2-6.5.8, WASC-2, OWASP 2013-A7 Low
Apache Multiple Choices Enabled WASC-14, OWASP 2013-A5 Low
Apache MultiViews Enabled WASC-14, OWASP 2013-A5 Low
Autocomplete Enabled WASC-15, OWASP 2013-A5 Low
Backup File Disclosure PCI v3.1-6.5.8, PCI v3.2-6.5.8, CAPEC-87, WASC-34, OWASP 2013-A7 Low
Cookie Not Marked as HttpOnly CAPEC-107, WASC-15, OWASP 2013-A5 Low
Cookie Values Used in Anti-CSRF Token OWASP 2013-A5 Low
Cross-site Request Forgery PCI v3.1-6.5.9, PCI v3.2-6.5.9, CAPEC-62, WASC-9, OWASP 2013-A8 Low
Cross-site Request Forgery in Login Form PCI v3.1-6.5.9, PCI v3.2-6.5.9, CAPEC-62, WASC-9, OWASP 2013-A8 Low
Database Error Message Disclosure PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-118, WASC-13, OWASP 2013-A5 Low
Database Name Disclosure (Microsoft SQL Server) PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-118, WASC-13, OWASP 2013-A5 Low
Database Name Disclosure (MySQL) PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-118, WASC-13, OWASP 2013-A5 Low
Django Debug Mode Enabled PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-214, WASC-14, OWASP 2013-A5 Low
Exception Report Disclosure (Tomcat) PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-214, WASC-14, OWASP 2013-A5 Low
Form Hijacking Low
Information Disclosure (Microsoft Office) PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-118, WASC-13 Low
Information Disclosure (phpinfo()) CAPEC-346, WASC-13, OWASP 2013-A5 Low
Insecure Frame (External) Low
Insecure JSONP Endpoint WASC-15, OWASP 2013-A5 Low
Insecure Reflected Content WASC-15, OWASP 2013-A5 Low
Insecure Transportation Security Protocol Supported (TLS 1.0) PCI v3.1-6.5.4, PCI v3.2-6.5.4, CAPEC-217, WASC-4, OWASP 2013-A6 Low
Internal IP Address Disclosure Low
Internal Server Error Low
Laravel Debug Mode Enabled PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-214, WASC-14, OWASP 2013-A5 Low
Laravel Environment Configuration File Detected WASC-15, OWASP 2013-A5 Low
Microsoft IIS Log File Detected PCI v3.1-6.5.8, PCI v3.2-6.5.8, CAPEC-87, WASC-34, OWASP 2013-A7 Low
Microsoft Outlook Personal Folders File (.pst) Found PCI v3.1-6.5.8, PCI v3.2-6.5.8, WASC-2, OWASP 2013-A7 Low
Misconfigured Access-Control-Allow-Origin Header WASC-15, OWASP 2013-A5 Low
Misconfigured Frame Low
Missing Content-Type Header OWASP 2013-A5 Low
Missing X-Frame-Options Header CAPEC-103, OWASP 2013-A5 Low
Open Redirection in POST method WASC-38, OWASP 2013-A10 Low
Passive Mixed Content over HTTPS OWASP 2013-A6 Low
Passive Web Backdoor Detected PCI v3.1-6.5.6, PCI v3.2-6.5.6 Low
Phishing by Navigating Browser Tabs OWASP 2013-A5 Low
Programming Error Message PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-118, WASC-13, OWASP 2013-A5 Low
Reflected File Download PCI v3.1-6.5.1, PCI v3.2-6.5.1, CAPEC-375, WASC-42, OWASP 2013-A1 Low
RoR Database Configuration File Detected WASC-15, OWASP 2013-A5 Low
RoR Development Mode Enabled PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-214, WASC-14, OWASP 2013-A5 Low
Server-Side Request Forgery OWASP 2013-A1 Low
Social Security Number Disclosure PCI v3.1-6.5.3, PCI v3.2-6.5.3, CAPEC-118, WASC-13, OWASP 2013-A6 Low
Stack Trace Disclosure (Apache MyFaces) PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-214, WASC-14, OWASP 2013-A5 Low
Stack Trace Disclosure (ASP.NET) PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-214, WASC-14, OWASP 2013-A5 Low
Stack Trace Disclosure (CakePHP Framework) PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-214, WASC-14, OWASP 2013-A5 Low
Stack Trace Disclosure (Grails) PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-214, WASC-14, OWASP 2013-A5 Low
Struts2 Development Mode Enabled PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-214, WASC-14, OWASP 2013-A5 Low
Subresource Integrity (SRI) Hash Invalid Low
TRACE/TRACK Method Detected CAPEC-107, WASC-14, OWASP 2013-A5 Low
Unexpected Redirect Response Body (Two Responses) Low
User Controllable Cookie Low
Username Disclosure (Microsoft SQL Server) PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-118, WASC-13, OWASP 2013-A5 Low
Username Disclosure (MySQL) PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-118, WASC-13, OWASP 2013-A5 Low
Version Disclosure (Apache Coyote) CAPEC-170, WASC-45 Low
Version Disclosure (Apache Module) CAPEC-170, WASC-45 Low
Version Disclosure (Apache) CAPEC-170, WASC-45 Low
Version Disclosure (ASP.NET MVC) CAPEC-170, WASC-45 Low
Version Disclosure (ASP.NET) CAPEC-170, WASC-45 Low
Version Disclosure (CakePHP Framework) CAPEC-170, WASC-45 Low
Version Disclosure (CherryPy) CAPEC-170, WASC-45 Low
Version Disclosure (Django) CAPEC-170, WASC-45 Low
Version Disclosure (Frontpage) CAPEC-170, WASC-45 Low
Version Disclosure (Java Servlet) CAPEC-170, WASC-45 Low
Version Disclosure (JBoss) CAPEC-170, WASC-45 Low
Version Disclosure (Lighttpd) CAPEC-170, WASC-45 Low
Version Disclosure (mod_ssl) CAPEC-170, WASC-45 Low
Version Disclosure (Mongrel Web Server) CAPEC-170, WASC-45 Low
Version Disclosure (Nginx) CAPEC-170, WASC-45 Low
Version Disclosure (NuSOAP) CAPEC-170, WASC-45 Low
Version Disclosure (OpenSSL) CAPEC-170, WASC-45 Low
Version Disclosure (Oracle) CAPEC-170, WASC-45 Low
Version Disclosure (Perl) CAPEC-170, WASC-45 Low
Version Disclosure (PHP) CAPEC-170, WASC-45 Low
Version Disclosure (Python) CAPEC-170, WASC-45 Low
Version Disclosure (RoR) CAPEC-170, WASC-45 Low
Version Disclosure (Ruby) CAPEC-170, WASC-45 Low
Version Disclosure (RubyGems) CAPEC-170, WASC-45 Low
Version Disclosure (SharePoint) CAPEC-170, WASC-45 Low
Version Disclosure (Tomcat) CAPEC-170, WASC-45 Low
Version Disclosure (Web Logic) CAPEC-170, WASC-45 Low
Version Disclosure (WEBrick) CAPEC-170, WASC-45 Low
ViewState is not Encrypted WASC-15 Low
Windows Short Filename PCI v3.1-6.5.8, PCI v3.2-6.5.8, CAPEC-87, WASC-34, OWASP 2013-A7 Low
Windows Username Disclosure PCI v3.1-6.5.5, PCI v3.2-6.5.5, CAPEC-118, WASC-13 Low
Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO