| Improper Neutralization | |
| CVE-2024-26144 | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Deserialization of Untrusted Data | |
| Allocation of Resources Without Limits or Throttling | |
| SQL Injection | |
| Access Restriction Bypass | |
| CVE-2023-28362 | |
| Arbitrary Code Injection | |
| Directory Traversal | |
| Information Exposure | |
| Deserialization of Untrusted Data | |
| Open Redirect | |
| Arbitrary Code Injection | |
| Improper Cross-boundary Removal of Sensitive Data | |
| Improper Access Control | |
| Open Redirect | |
| Arbitrary Code Injection | |
| Resource Management Errors | |
| SQL Injection | |
| Inefficient Regular Expression Complexity | |
| Improper Authentication | |
| CVE-2023-38037 | |
| Access Restriction Bypass | |
| SQL Injection | |
| Race Condition | |
| Inefficient Regular Expression Complexity | |
| Information Exposure | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| CVE-2022-44566 | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| CVE-2006-4112 | |
| Security Features | |
| CVE-2015-3227 | |
| Cross-site Request Forgery (CSRF) | |
| CVE-2007-5380 | |
| Resource Management Errors | |
| SQL Injection | |
| Directory Traversal | |
| Improper Input Validation | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| CVE-2013-0333 | |
| Improper Input Validation | |
| Directory Traversal | |
| Inefficient Regular Expression Complexity | |
| CVE-2023-28120 | |
| Deserialization of Untrusted Data | |
| Cross-site Scripting (XSS) | |
| Deserialization of Untrusted Data | |
| Improper Access Control | |
| Cross-site Request Forgery (CSRF) | |
| Improper Input Validation | |
| Cross-site Scripting (XSS) | |
| Missing Encryption of Sensitive Data | |
| Improper Input Validation | |
| Improper Input Validation | |
| Access Restriction Bypass | |
| Directory Traversal | |
| Information Exposure | |
| Cross-site Scripting (XSS) | |
| SQL Injection | |
| Cross-site Scripting (XSS) | |
| CVE-2024-47888 | |
| CVE-2024-28103 | |
| Cross-site Scripting (XSS) | |
| Inefficient Regular Expression Complexity | |
| CVE-2021-22904 | |
| Resource Exhaustion | |
| Cross-site Scripting (XSS) | |
| CVE-2019-5418 | |
| SQL Injection | |
| Cross-site Scripting (XSS) | |
| SQL Injection | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Improper Input Validation | |
| Improper Input Validation | |
| SQL Injection | |
| Arbitrary Code Injection | |
| Allocation of Resources Without Limits or Throttling | |
| CVE-2023-23913 | |
| Inefficient Regular Expression Complexity | |
| Improper Enforcement of Message or Data Structure | |
| Open Redirect | |
| CVE-2018-16477 | |
| Cross-site Request Forgery (CSRF) | |
| CVE-2021-22902 | |
| Improper Input Validation | |
| Unrestricted Upload of File with Dangerous Type | |
| CVE-2013-0277 | |
| SQL Injection | |
| SQL Injection | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Information Exposure | |
| Cross-site Request Forgery (CSRF) | |
| Improper Input Validation | |
