143 matches found
WSDL Import Failed
WSDL schema file could not be imported and cannot be used during the scan. No source data...
WSDL Import Success
WSDL schema file was successfully imported and can be used during the scan. No source data...
Agent2Agent (A2A) Card Detected
This is an informational notice that the scanner was able to detect an Agent2Agent A2A card on the target server. No source data...
GraphQL Import Failed
GraphQL schema file could not be imported and cannot be used during the scan. No source data...
ConnectWise ScreenConnect Detected
This is an informational notice that the scanner was able to detect a ConnectWise ScreenConnect instance on the target server. Note that this detection is included in the Remote Access Tools category. No source data...
RustDesk Console Detected
RustDesk is a mote access and control software that enables management of computers and other devices. RustDesk server Pro embeds a web console allowing users to browse devices and perform configuration modification on the application. By leveraging this, a remote and unauthenticated attacker cou...
Pritunl Detected
This is an informational notice that the scanner was able to detect an Printunl Enterprise VPN Server on the target server. Note that this detection is included in the Remote Access Tools category. No source data...
Apache Guacamole Detected
This is an informational notice that the scanner was able to detect an Apache Guacamole instance on the target server. Note that this detection is included in the Remote Access Tools category. No source data...
Docker Public Registry Detected
This is an informational notice that the scanner was able to detect a public Docker registry instance. No source data...
GitLab Public Sign-Up Detected
This is an informational notice that the scanner was able to detect a GitLab public sign-up page on the target instance. No source data...
Auth0 Identity Provider Detected
This is an informational notice that the scanner was able to detect an application using Auth0 Identity Provider. No source data...
LobeChat < 0.162.25 Sensitive Data Exposure
According to the self-reported version in its response header, the version of LobeChat hosted on the remote web server is prior to 0.162.25. It is, therefore, affected by a Sensitive Data Exposure through SSO/Access Code. Note that the scanner has not tested for these issues but has instead relie...
Ollama < 0.1.29 DNS Rebinding
According to the self-reported version in its response header, the version of Ollama hosted on the remote web server is 0.1.29. It is, therefore, affected by a DNS Rebinding. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported versi...
Atlassian BitBucket Public Repository Detected
Atlassian BitBucket source code repositories can be either private or public, thus allowing any anonymous unauthentivcated user to access the project and its content. When this feature is unexpectedly enabled on a private source code repository, a remote and unauthenticated attacker could access...
GeoServer 2.10.0 < 2.24.4 Sensitive Information Exposure
According to its banner, the version of GeoServer running on the remote host is 2.10.0 prior to 2.24.4 or 2.25.x prior to 2.25.1. It is, therefore, affected by a Sensitive Information Exposure. Note that the scanner has not tested for these issues but has instead relied only on the application's...
Spring Eureka Detected
Spring Eureka is a service discovery and registration server. It enables microservices to dynamically discover and communicate with each other without hardcoded hostnames and ports. The scanner detected the usage of Spring Eureka on the target application. No source data...
PhpSysInfo Detected
PhpSysInfo is a customizable PHP script that displays information about the system. The scanner detected the usage of PhpSysInfo on the target application. No source data...
Clockwork Detected
This is an informational plugin to inform the user that the scanner has detected a publicly accessible Clockwork instance on the target application. No source data...
Gradio < 4.37.1 Open Redirect
Gradio before version 4.37.1 suffer from an open redirect vulnerability, allowing an attacker to craft a link and try redirecting target applications users to a malicious server. This detection is included in the AI and LLM category. No source data...
Apache Tapestry Arbitrary File Read
Apache Tapestry versions 5.4.0 5.6.2 and 5.7.0 5.7.1 allows an unauthenticated attacker to access Class files via a specially crafted request. If the value of 'tapestry.hmac-passphrase' is recovered, this vulnerability can be exploited to obtain arbitrary code execution through the value of the...