98119 | Blind NoSQL Injection (differential analysis) | Web App Scanning | Injection | 5/16/2024 | high |
98117 | Blind SQL Injection (differential analysis) | Web App Scanning | Injection | 5/16/2024 | high |
98107 | Cross-Site Scripting (XSS) in path | Web App Scanning | Cross Site Scripting | 5/16/2024 | medium |
114237 | Open Proxy | Web App Scanning | Web Applications | 5/16/2024 | high |
114006 | Web Cache Poisoning Denial of Service | Web App Scanning | Web Applications | 5/16/2024 | high |
113165 | Apache mod_negotiation Alternative Filename Disclosure | Web App Scanning | Web Servers | 5/16/2024 | medium |
112544 | HTTP to HTTPS Redirect Not Enabled | Web App Scanning | SSL/TLS | 5/16/2024 | medium |
98136 | Target Information | Web App Scanning | General | 4/26/2024 | info |
98008 | Web Application Firewall Detected | Web App Scanning | General | 4/26/2024 | info |
113310 | Blind XPath Injection (differential analysis) | Web App Scanning | Injection | 4/26/2024 | high |
114273 | CrushFTP < 10.7.1 / 11.x < 11.1.0 VFS Sandbox Escape | Web App Scanning | Component Vulnerability | 4/24/2024 | critical |
98715 | Permissive HTTP Strict Transport Security Policy Detected | Web App Scanning | HTTP Security Header | 4/22/2024 | medium |
112570 | OpenAPI Import Failed | Web App Scanning | General | 4/22/2024 | info |
112569 | OpenAPI Import Success | Web App Scanning | General | 4/22/2024 | info |
112554 | Permissive Content Security Policy Detected | Web App Scanning | HTTP Security Header | 4/22/2024 | low |
112552 | Deprecated Content Security Policy | Web App Scanning | HTTP Security Header | 4/22/2024 | low |
98142 | Selenium Authentication Failed | Web App Scanning | Authentication & Session | 4/9/2024 | info |
98141 | Selenium Authentication Succeeded | Web App Scanning | Authentication & Session | 4/9/2024 | info |
98140 | Cookie Authentication Failed | Web App Scanning | Authentication & Session | 4/9/2024 | info |
98139 | Cookie Authentication Succeeded | Web App Scanning | Authentication & Session | 4/9/2024 | info |
98035 | Login Form Authentication Succeeded | Web App Scanning | Authentication & Session | 4/9/2024 | info |
98034 | Login Form Authentication Failed | Web App Scanning | Authentication & Session | 4/9/2024 | info |
114247 | Authentication Check Pattern Found in Unauthenticated Browser | Web App Scanning | Authentication & Session | 4/9/2024 | info |
113013 | Bearer Token Authentication Failed | Web App Scanning | Authentication & Session | 4/9/2024 | info |
113012 | Bearer Token Authentication Succeeded | Web App Scanning | Authentication & Session | 4/9/2024 | info |
113011 | API Key Authentication Failed | Web App Scanning | Authentication & Session | 4/9/2024 | info |
113010 | API Key Authentication Succeeded | Web App Scanning | Authentication & Session | 4/9/2024 | info |
114134 | HTML/CSS Injection | Web App Scanning | Injection | 4/3/2024 | medium |
98642 | Magento Administration Panel Login Form Detected | Web App Scanning | Web Applications | 4/2/2024 | low |
114043 | Adobe ColdFusion Improper Access Control | Web App Scanning | Component Vulnerability | 4/2/2024 | high |
113117 | Magento Administration Panel Login Form Bruteforced | Web App Scanning | Authentication & Session | 4/2/2024 | high |
98648 | Missing 'Content-Type' Header | Web App Scanning | HTTP Security Header | 3/25/2024 | low |
98618 | HTTP Header Information Disclosure | Web App Scanning | HTTP Security Header | 3/25/2024 | low |
98527 | Missing Referrer Policy | Web App Scanning | HTTP Security Header | 3/25/2024 | info |
98526 | Missing Permissions Policy | Web App Scanning | HTTP Security Header | 3/25/2024 | info |
98084 | Directory Listing | Web App Scanning | Web Servers | 3/25/2024 | medium |
98060 | Missing 'X-Frame-Options' Header | Web App Scanning | HTTP Security Header | 3/25/2024 | low |
98057 | Insecure 'Access-Control-Allow-Origin' Header | Web App Scanning | HTTP Security Header | 3/25/2024 | low |
114224 | Serialized Data Detected | Web App Scanning | Web Applications | 3/25/2024 | info |
114042 | Adobe ColdFusion Remote Code Execution | Web App Scanning | Component Vulnerability | 3/25/2024 | critical |
113333 | Duplicate HTTP Headers Detected | Web App Scanning | HTTP Security Header | 3/25/2024 | info |
112555 | Report Only Content Security Policy Detected | Web App Scanning | HTTP Security Header | 3/25/2024 | info |
112553 | Missing 'Cache-Control' Header | Web App Scanning | HTTP Security Header | 3/25/2024 | low |
112551 | Missing Content Security Policy | Web App Scanning | HTTP Security Header | 3/25/2024 | low |
112535 | HTTP Strict Transport Security Policy Detected | Web App Scanning | HTTP Security Header | 3/25/2024 | info |
112529 | Missing 'X-Content-Type-Options' Header | Web App Scanning | HTTP Security Header | 3/25/2024 | low |
112527 | Disabled 'X-XSS-Protection' Header | Web App Scanning | HTTP Security Header | 3/25/2024 | info |
112526 | Missing 'X-XSS-Protection' Header | Web App Scanning | HTTP Security Header | 3/25/2024 | info |
98056 | Missing HTTP Strict Transport Security Policy | Web App Scanning | HTTP Security Header | 3/18/2024 | medium |
113158 | Package Dependencies Detected | Web App Scanning | Data Exposure | 3/18/2024 | medium |