498 matches found
Out-of-Date JQuery Detected
An out-of-date version of JQuery has been detected. An outdated version could have vulnerabilities or missing security features. No source data...
Out-of-Date Lodash Detected
An out-of-date version of Lodash has been detected. An outdated version could have vulnerabilities or missing security features. No source data...
API Key Authentication Succeeded
This is an informational notice that the scanner was able to successfully authenticate against the web application using the API key credentials provided in the scan policy. No source data...
Bearer Token Authentication Succeeded
This is an informational notice that the scanner was able to successfully authenticate against the web application using the bearer authentication credentials provided in the scan policy. No source data...
API Key Authentication Failed
This plugin is raised when the scanner has not been able to authenticate against the web application using the API key credentials provided in the scan policy. Check the output of the plugin to get an explanation of the issue encountered by the scan. No source data...
Bearer Token Authentication Failed
This plugin is raised when the scanner has not been able to authenticate against the web application using the bearer authentication credentials provided in the scan policy. Check the output of the plugin to get an explanation of the issue encountered by the scan. No source data...
Lodash < 4.17.20 Prototype Pollution
According to its self-reported version number, Lodash is prior to 4.17.20. It is, therefore, affected by a prototype pollution vulnerability in zipObjectDeep. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No...
Google Chrome Blink improperly implemented vulnerability (CNVD-2021-92831)
Google Chrome is a simple and efficient web browsing tool developed by Google. 93.0.4577.82 and earlier versions of Google Chrome contain a Blink implementation vulnerability. An attacker could exploit this vulnerability to leak cross-source data via crafted HTML pages...
Atlassian Jira 8.14.x < 8.16.1 Arbitrary File Read
According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.14, 8.6.x 8.13.6 or 8.14.x 8.16.1. It is, therefore, affected by a path traversal vulnerability in the /WEB-INF/web.xml endpoint allowing remote attackers to read particul...
Atlassian Jira < 8.5.14 Arbitrary File Read
According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.14, 8.6.x 8.13.6 or 8.14.x 8.16.1. It is, therefore, affected by a path traversal vulnerability in the /WEB-INF/web.xml endpoint allowing remote attackers to read particul...
WordPress 5.8.x < 5.8.1 Multiple Vulnerabilities
According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A data exposure vulnerability within the REST API. - A Lodash library prior to 4.17.21 vulnerbaility. Note that the scanner has not tested for these issues but has instead...
Power Apps OData Feeds Detected
Microsoft Power Apps is a low-code development platform designed to help users build rich web and mobile applications. Power Apps enables users to publish table data as OData feeds, providing a RESTful web service by default available to any user. The scanner detected the presence of public data ...
Joomla! 4.x < 4.0.1 Insufficient Access Control
According to its self-reported version, the instance of Joomla! running on the remote web server is 4.0 prior to 4.0.1. It is, therefore, affected by an insufficient access control vulnerability on its commedia deletion endpoint. An unauthenticated, remote attacker could exploit this to delete...
Microsoft SharePoint Server 2016 < 16.0.5161.1000 Multiple Vulnerabilities
According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source da...
Microsoft SharePoint Server 2016 < 16.0.5188.1000 Multiple Vulnerabilities
According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source da...
Microsoft SharePoint Server 2013 < 15.0.5353.1000 Multiple Vulnerabilities
According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source da...
Microsoft SharePoint Server 2016 < 16.0.5173.1000 Multiple Vulnerabilities
According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source da...
Power Apps Application Detected
Microsoft Power Apps is a low-code development platform designed to help users build rich web and mobile applications. By leveraging the multiple services, data sources and connectors provided by the Power Apps environment, an user with a Microsoft Office 365 subscription including Power Apps can...
WordPress Database Repair Enabled
WordPress Database Repair functionality has been detected on the target web application. This may present an attacker with information regarding the database schema in use which may be used to mount further attacks. No source data...
GraphQL Interface Detected
GraphQL is an open-source query and manipulation language for APIs and a server-side runtime built to handle these queries on the application dataset. Some web applications provide a friendly user interface to help developers building GraphQL queries and get the results. The scanner detected the...