Unrestricted Upload of File with Dangerous Type | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Cross-site Request Forgery (CSRF) | |
Cross-site Scripting (XSS) | |
Improper Input Validation | |
Directory Traversal | |
Inclusion of Functionality from Untrusted Control Sphere | |
Improper Input Validation | |
Deserialization of Untrusted Data | |
Open Redirect | |
Incorrect Authorization | |
Link Following | |
Arbitrary Code Injection | |
Deserialization of Untrusted Data | |
CVE-2018-7602 | |
Files or Directories Accessible to External Parties | |
Improper Input Validation | |
Incorrect Permission Assignment for Critical Resource | |
Cross-site Scripting (XSS) | |
Open Redirect | |
Cross-site Scripting (XSS) | |
Open Redirect | |
Open Redirect | |
Open Redirect | |
Information Exposure | |
Open Redirect | |
Access Restriction Bypass | |
Information Exposure | |
Access Restriction Bypass | |
Improper Access Control | |
Security Features | |
Security Features | |
CVE-2016-3164 | |
SQL Injection | |
Information Exposure | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Cross-site Request Forgery (CSRF) | |
CVE-2015-3233 | |
CVE-2015-3232 | |
Improper Input Validation | |
Information Exposure | |
Improper Access Control | |
CVE-2014-9016 | |
Access Restriction Bypass | |
SQL Injection | |
Access Restriction Bypass | |
Resource Management Errors | |
Resource Management Errors | |
Improper Input Validation | |
Cross-site Scripting (XSS) | |
Access Restriction Bypass | |
Cross-site Scripting (XSS) | |
Information Exposure | |
Cross-site Request Forgery (CSRF) | |