---
title: "Templates"
lastmodexempt: true
---

The table below lists the [Nuclei](https://github.com/projectdiscovery/nuclei)  vulnerability templates available for scans. The full set of tuned templates can be found in our [nuclei-templates](https://github.com/runZeroInc/nuclei-templates) repository.

**2532** vulnerability detection templates.

| Name | Severity | CVEs | Description |
|------|----------|------|-------------|
| .NET Framework - Leaking ObjRefs via HTTP .NET Remoting | High | CVE-2024-29059 | .NET Framework Information Disclosure Vulnerability |
| 1 Click WordPress Migration <= 2.2 - Unauthenticated Information Disclsoure | Medium |  | 1 Click WordPress Migration <= 2.2 contains an information disclosure caused by uncleared debug information, letting att... |
| 1Password SCIM Bridge - Panel | Info |  | 1Password SCIM Bridge Login was detected. |
| 3COM NJ2000 - Default Login | High |  | 3COM NJ2000 contains a default login vulnerability. Default admin login password of 'password' was found. An attacker ca... |
| 3CX Phone System Management Console - Panel Detect | Info |  | 3CX Phone System Management Console panel was detected. |
| 3CX Phone System Web Client Management Console - Panel Detect | Info |  | 3CX Phone System Web Client Management Console panel was detected. |
| 3Com Wireless 8760 Dual Radio - Default Login | High |  | 3COM Wireless 8760 Dual Radio contains a default login vulnerability. Default admin login password 'password' was found. |
| 3ware Controller 3DM2 - Default Login | High |  | The default password for logging in to the 3DM2 web interface of a 3ware controller is "3ware" for both the Administrato... |
| 74cms - ajax_common.php SQL Injection | Critical | CVE-2020-22209 | SQL Injection in 74cms 3.2.0 via the query parameter to plus/ajax_common.php. |
| 74cms - ajax_officebuilding.php SQL Injection | Critical | CVE-2020-22210 | A SQL injection vulnerability exists in 74cms 3.2.0 via the x parameter to ajax_officebuilding.php. |
| 74cms - ajax_street.php 'key' SQL Injection | Critical | CVE-2020-22211 | SQL Injection in 74cms 3.2.0 via the key parameter to plus/ajax_street.php. |
| 74cms - ajax_street.php 'x' SQL Injection | Critical | CVE-2020-22208 | SQL Injection in 74cms 3.2.0 via the x parameter to plus/ajax_street.php. |
| AC Centralized Management System - Default password | High |  | AC Centralized Management System default login credentials were discovered. |
| AC Smart II - Authentication Bypass | High | CVE-2025-10204 | AC Smart II contains an authentication bypass caused by a hidden password reset form that can be manipulated to change t... |
| ACME Challenge Path - Reflected Cross-Site Scripting | Low |  | Detects XSS vulnerabilities in ACME http-01 challenge implementations where hosting providers reflect the challenge key ... |
| ACTi Video Monitoring Panel - Detection | Info |  |  |
| AIC Intelligent Campus System - Password Exposure | Medium |  | Due to the design logic defects, the super password is leaked, which can kill more than 40 campus systems.<br> |
| AJ-Report < 1.4.1 - Remote Code Execution | Critical | CVE-2024-7314 | AJ-Report before version 1.4.1 is affected by an authentication bypass vulnerability. A remote and unauthenticated attac... |
| AKHQ Panel - Detect | Info |  | AKHQ Panel was discovered. |
| AMD Pensando PSM - Default Login | High |  | The AMD Pensando Policy and Services Manager used a default password for the admin account.This allowed instances to be ... |
| AMR Printer Management Dashboard - Exposure | Medium |  | Unauthorized access to the AMR Printer Management dashboard was possible, potentially exposing sensitive printer configu... |
| APC Rack PDU Default Login | High |  | APC Rack PDU with default administrator credentials discovered. |
| ARL Default Admin Login | High |  | An ARL default admin login was discovered. |
| ARRIS Touchstone Telephony Modem - Panel Detect | Info |  | ARRIS Touchstone Telephony Modem status panel was detected. |
| ASUS AiCloud Panel - Detect | Info |  | ASUS AiCloud Panel was detected. |
| ASUS RT-N16 - Default Login | High |  | ASUS RT-N16 contains a default login vulnerability. Default admin login password 'admin' was found. |
| ASUS WL-500G - Default Login | High |  | ASUS WL-500 contains a default login vulnerability. Default admin login password 'admin' was found. |
| ASUS WL-520GU - Default Login | High |  | ASUS WL-520GU contains a default login vulnerability. The default admin login password 'admin' was found. |
| ASUSTOR ADM 3.1.0.RFQ3 - SQL Injection | Critical | CVE-2018-11511 | ASUSTOR ADM version 3.1.0.RFQ3 is vulnerable to SQL injection via the album_id parameter in the /photo-gallery/api/album... |
| ATutor < 2.2.1 - Cross Site Scripting | Medium | CVE-2023-27008 | ATutor < 2.2.1 was discovered with a vulnerability, a reflected cross-site scripting (XSS), in ATtutor 2.2.1 via token b... |
| AVM FRITZ!Box 7530 AX - Unauthorized Access | High | CVE-2024-54767 | An access control issue in the component /juis_boxinfo.xml of AVM FRITZ!Box 7530 AX v7.59 allows attackers to obtain sen... |
| AVTECH DVR - Login Verification Code Bypass | Low | CVE-2013-4982 | AVTECH DVR products are vulnerable to verification code bypass just by entering the "login=quick" parameter to bypass ve... |
| AVTECH DVR - SSRF | Medium |  | AVTECH DVR device, Search.cgi can be accessed directly. Search.cgi is responsible for searching and accessing cameras in... |
| AVTECH Room Alert Login Panel - Detect | Info |  | AVTECH Room Alert login panel was detected. |
| AVTECH Video Surveillance Product - Authentication Bypass | High |  | AVTECH Video Surveillance Products password disclosure through /cgi-bin/user/Config.cgi. |
| AVTECH Video Surveillance Product - Unauthenticated File Download | High |  | AVTECH video surveillance products unauthenticated file download from web root through /cgi-bin/cgibox, Since the .cab s... |
| AVideo <= 26.0 - WWBN AVideo - Remote Code Execution | Critical |  | WWBN AVideo <= 26.0 contains multiple vulnerabilities in the CloneSite plugin including unauthenticated exposure of clon... |
| AWS EC2 Auto Scaling Lab | Info |  |  |
| AWS Elastic Beanstalk Dockerrun.aws.json - Exposure | Medium |  | Detected AWS Elastic Beanstalk Dockerrun.aws.json configuration file was publicly accessible, potentially revealing Dock... |
| AWStats <= 7.5 - Full Path Disclosure | Medium | CVE-2018-10245 | AWStats 7.6 contains a full path disclosure caused by improper handling of framename and update parameters in awstats.pl... |
| Abandoned Cart Lite for WooCommerce < 5.2.0 - Cross-Site Scripting | High | CVE-2019-25152 | The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to S... |
| Academy LMS 6.2 - SQL Injection | Critical | CVE-2023-4974 | A vulnerability was found in Academy LMS 6.2. It has been rated as critical. Affected by this issue is some unknown func... |
| AceNet AceReporter Report Panel - Detect | Info |  |  |
| Ackee Panel - Detect | Info |  | self-hosted, node.js based analytics tool for those who care about privacy. |
| Acrolinx Dashboard | Info |  | An Acrolinx Analytics dashboard was detected. |
| Actifio Resource Center - Panel | Info |  | Actifio Resource Center was detected. |
| Activepieces Panel - Detect | Info |  | Activepieces was detected. Activepieces was an open-source automation platform with AI and LLM integrations. Exposed ins... |
| AcuToWeb server/10.5.0.7577c8b - Cross-Site Scripting | Medium | CVE-2024-42852 | AcuToWeb server/10.5.0.7577c8b is vulnerable to reflected cross-site scripting (XSS) via the portgw parameter. Unsanitiz... |
| Acunetix Login Panel - Detect | Info |  | Acunetix login panel was detected. |
| AdGuard Panel - Detect | Info |  | AdGuard panel has been detected. |
| Adapt Authoring Tool - Panel | Info |  | Login panel for adapt was detected. |
| AddOnFinance Portal - Detect | Info |  | AddOnFinance Portal Panel was detected. |
| Adfinity Login Panel - Detect | Info |  | Adfinity products was detected. |
| Adminer 4.6.2 - 5.4.1 Unauthenticated Persistent DoS | High | CVE-2026-25892 | Adminer <= 5.4.1 contains a denial of service caused by lack of origin validation in version check endpoint, letting att... |
| Adminer <4.7.9 - Server-Side Request Forgery | High | CVE-2021-21311 | Adminer before 4.7.9 is susceptible to server-side request forgery due to exposure of sensitive information in error mes... |
| Adminer <=4.8.0 - Cross-Site Scripting | Medium | CVE-2021-29625 | Adminer 4.6.1 to 4.8.0 contains a cross-site scripting vulnerability which affects users of MySQL, MariaDB, PgSQL, and S... |
| Adminer Default Login - Detect | High |  | Adminer contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive info... |
| Adminer Login Panel - Detect | Info |  | An Adminer login panel was detected. |
| Adminer Login Panel - Detect | Info |  | Adminer login panel was detected. |
| Adobe AEM CRX Package Manager - Panel Detect | Info |  | Adobe AEM CRX Package Manager panel was detected. |
| Adobe AEM Default Login | High |  | Adobe AEM default login credentials were discovered. |
| Adobe AEM JCR Compare Exposure | Medium |  | Detected an exposed Adobe AEM JCR compare functionality that was accessible without proper authorization. This exposure ... |
| Adobe ColdFusion - Access Control Bypass | High | CVE-2023-29298 | An attacker is able to access every CFM and CFC endpoint within the ColdFusion Administrator path /CFIDE/, of which ther... |
| Adobe ColdFusion - Access Control Bypass | High | CVE-2023-38205 | There is an access control bypass vulnerability in Adobe ColdFusion versions 2023 Update 2 and below, 2021 Update 8 and ... |
| Adobe ColdFusion - Arbitrary File Read | High | CVE-2024-20767 | ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Access Control vulnerability that could lead... |
| Adobe ColdFusion - Cross-Site Scripting | Medium | CVE-2021-21087 | Adobe Coldfusion versions 2016 (update 16 and earlier), 2018 (update 10 and earlier) and 2021.0.0.323925 are affected by... |
| Adobe ColdFusion - Local File Read | High | CVE-2023-26360 | Unauthenticated Arbitrary File Read vulnerability due to deserialization of untrusted data in Adobe ColdFusion. The vuln... |
| Adobe ColdFusion 8.0/8.0.1/9.0/9.0.1 LFI | High | CVE-2010-2861 | Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow re... |
| Adobe ColdFusion Component Browser Login Panel | Info |  | An Adobe ColdFusion Component Browser login panel was detected. |
| Adobe ColdFusion WDDX Deserialization Gadgets | Critical | CVE-2023-44353 | Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by an Deserialization of Untrusted... |
| Adobe Coldfusion - Authentication Bypass | High | CVE-2023-26347 | Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by an Improper Access Control vuln... |
| Adobe Coldfusion - Cross-Site Scripting | Medium | CVE-2023-44352 | Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by a reflected Cross-Site Scriptin... |
| Adobe Coldfusion <=8.0.1 - Cross-Site Scripting | Medium | CVE-2009-1872 | Adobe ColdFusion Server 8.0.1 and earlier contain multiple cross-site scripting vulnerabilities which allow remote attac... |
| Adobe Connect < 12.1.5 - Local File Disclosure | Medium | CVE-2023-22232 | Adobe Connect versions 11.4.5 (and earlier), 12.1.5 (and earlier) are affected by an Improper Access Control vulnerabili... |
| Adobe Connect Central Login Panel | Info |  | An Adobe Connect Central login panel was detected. |
| Adobe Experience Manager Felix Console - Default Login | High |  | Adobe Experience Manager Felix Console contains a default admin login vulnerability. An attacker can obtain access to us... |
| Adobe Experience Manager Login Panel | Info |  | An Adobe Experience Manager login panel was detected. |
| Adobe Experience Manager Sling User Login - Detect | Info |  | Adobe Experience Manager Sling user login panel was detected. |
| Adobe Media Server Login Panel | Info |  | An Adobe Media Server login panel was detected. |
| Ads Pro Plugin <= 4.89 - Local File Inclusion | Critical | CVE-2025-4380 | The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to Local File Inclus... |
| Advanced eMail Solution DEEPMail - Panel | Info |  | Advanced eMail Solution DEEPMail login panel was detected. |
| Advantech R-SeeNet - Cross-Site Scripting | Medium | CVE-2021-21801 | Advantech R-SeeNet contains a cross-site scripting vulnerability in the device_graph_page.php script via the graph param... |
| Advantech R-SeeNet 2.4.12 - OS Command Injection | Critical | CVE-2021-21805 | Advantech R-SeeNet 2.4.12 is susceptible to remote OS command execution via the ping.php script functionality. An attack... |
| Aerohive NetConfig UI | Info |  | An Aerohive NetConfig user interface was detected. The NetConfig UI provides a fundamental set of configurations for con... |
| Aethra Telecommunications Login - Panel | Info |  | Aethra Telecommunication login Panel was detected. |
| Agent-Zero 0.8.0 - 0.9.4 - Arbitrary File Download | High | CVE-2025-55523 | Agent-Zero v0.8.0 - 0.9.4 contains a path traversal caused by improper validation in /api/download_work_dir_file.py, let... |
| AgentGPT Panel - Detect | Info |  | AgentGPT was detected. AgentGPT was a browser-based autonomous AI agent platform that allows users to create, configure ... |
| Agentejo Cockpit < 0.11.2 - NoSQL Injection | Critical | CVE-2020-35846 | Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php check function. The $eq operator match... |
| Agentejo Cockpit <0.11.2 - NoSQL Injection | Critical | CVE-2020-35847 | Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php resetpassword function of the Auth con... |
| Agentejo Cockpit <0.12.0 - NoSQL Injection | Critical | CVE-2020-35848 | Agentejo Cockpit prior to 0.12.0 is vulnerable to NoSQL Injection via the newpassword method of the Auth controller, whi... |
| AirNotifier Login Panel - Detect | Info |  | AirNotifier login panel was detected. |
| AirOS Panel - Detect | Info |  | AirOS panel was detected. |
| Airflow Experimental <1.10.11 - REST API Auth Bypass | Critical | CVE-2020-13927 | Airflow's Experimental API prior 1.10.11 allows all API requests without authentication. |
| Akuiteo Login Panel - Detect | Info |  | Akuiteo products was detected. |
| Alamos GmbH Panel - Detect | Info |  | Alamos GmbH panel was detected. |
| Alcatel-Lucent OmniPCX - Remote Command Execution | Critical | CVE-2007-3010 | The OmniPCX web interface has a script "masterCGI" with a remote command execution vulnerability via the "user" paramete... |
| Alfresco - Default Admin Credentials | High |  | Detected Alfresco Content Services was found to have been using the default administrator credentials (admin:admin). An ... |
| Alfresco Content App Panel - Detect | Info |  | Alfresco Content App panel was detected. |
| Alibaba Druid Monitor Default Login | High |  | Alibaba Druid Monitor default login information (admin/admin) was discovered. |
| Alibaba Nacos - Default Login | High |  | The default username and password for Nacos are both nacos. |
| AlienVault USM Login Panel | Info |  | An AlienVault USM login panel was detected. |
| All-in-One WP Migration < 7.87 - Unauthenticated Information Disclosure | Medium | CVE-2024-8852 | The All-in-One WP Migration and Backup plugin for WordPress is vulnerable to unauthenticated information disclosure due ... |
| Allied Telesis Device GUI Login Panel - Detect | Info |  | Allied Telesis Device GUI login panel was detected. |
| Allnet - Default Login | High |  | Allnet contains a default login vulnerability. Default admin login password 'admin' was found. |
| Ally – Web Accessibility & Usability <= 4.0.3 - SQL Injection | High | CVE-2026-2413 | The Ally – Web Accessibility & Usability plugin for WordPress is vulnerable to SQL Injection via the URL path in all v... |
| AlphaWeb XE Default Login | Medium |  | An AlphaWeb XE default login was discovered. |
| Altenergy Power Control Software - SQL Injection | Medium | CVE-2024-11305 | A vulnerability classified as critical was found in Altenergy Power Control Software up to 20241108. This vulnerability ... |
| AlternC Desktop Panel - Detect | Info |  | AlternC Desktop panel was detected. |
| Amazon EC2 - Server-side request forgery (SSRF) | Critical |  | SSRF vulnerability exists in Amazon EC2, or Amazon Elastic Compute Cloud which is a web service provided by Amazon Web S... |
| Ambassador API Gateway Diagnostics - Exposure | Medium |  | Detected Ambassador API Gateway diagnostics portal, revealing service mappings, API endpoints, routing configurations, a... |
| Amcrest IP Camera Web Management - Data Exposure | Critical | CVE-2017-8229 | Amcrest IPM-721S V2.420.AC00.16.R.20160909 devices allow an unauthenticated attacker to download the administrative cred... |
| Amcrest Login | Info |  | An Amcrest LDAP user login was discovered. |
| AmpJuke - Default Login | High |  | AmpJuke contains a default login vulnerability. Default admin login password 'pass' was found. |
| Ampache Login Panel - Detect | Info |  | Ampache login panel was detected. |
| Anaqua Login - Panel | Info |  | Checks for the presence of Anaqua login page |
| Ansible Semaphore Panel Detect | Info |  | An Ansible Semaphore login panel was detected. |
| Ansible Tower - Detect | Info |  | Ansible Tower was detected. Ansible Tower is a commercial offering that helps teams manage complex multi-tier deployment... |
| AnteeoWMS < v4.7.34 - SQL Injection | Critical | CVE-2024-44349 | A SQL injection vulnerability in login portal in AnteeoWMS before v4.7.34 allows unauthenticated attackers to execute ar... |
| Anyscale Ray - Remote Code Execution | Critical | CVE-2023-48022 | Anyscale Ray 2.6.3 and 2.8.0 contain a remote code execution vulnerability due to insecure job submission API, allowing ... |
| AnythingLLM - Information Disclosure | High | CVE-2024-6842 | AnythingLLM suffers from an information disclosure vulnerability through the `/api/setup-complete` API endpoint. By acce... |
| AnythingLLM - Information Disclosure | High | CVE-2026-24477 | AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatti... |
| AnythingLLM Panel - Detect | Info |  | Detects the AnythingLLM web interface. |
| Apache 2.4.49 - Path Traversal and Remote Code Execution | High | CVE-2021-41773 | A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path trave... |
| Apache 2.4.49/2.4.50 - Path Traversal and Remote Code Execution | Critical | CVE-2021-42013 | A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49 and 2.4.50. An attacker could use a... |
| Apache APISIX Login Panel - Detect | Info |  | An Apache APISIX login panel was detected. |
| Apache ActiveMQ Artemis Console Default Login | High |  | Detected Apache ActiveMQ Artemis console default login credentials were discovered. |
| Apache ActiveMQ Default Login | High |  | Apache ActiveMQ default login credentials were discovered. |
| Apache ActiveMQ Exposure | Info |  | An Apache ActiveMQ implementation was discovered. |
| Apache Airflow <1.10.14 - Authentication Bypass | High | CVE-2020-17526 | Apache Airflow prior to 1.10.14 contains an authentication bypass vulnerability via incorrect session validation with de... |
| Apache Airflow <=1.10.10 - Remote Code Execution | High | CVE-2020-11978 | Apache Airflow versions 1.10.10 and below are vulnerable to remote code/command injection vulnerabilities in one of the ... |
| Apache Airflow Admin Login Panel | Info |  | An Apache Airflow admin login panel was discovered. |
| Apache Airflow Default Login | High |  | Apache Airflow default login credentials were discovered. |
| Apache Airflow OS Command Injection | High | CVE-2022-24288 | Apache Airflow prior to version 2.2.4 is vulnerable to OS command injection attacks because some example DAGs do not pro... |
| Apache Airflow v3 Default Login | High |  | Apache Airflow v3 default login credentials were discovered. |
| Apache Ambari Default Login | High |  | An Apache Ambari default admin login was discovered. |
| Apache Apisix Admin - Default Login | High |  | An Apache Apisix default admin login was discovered. |
| Apache Apollo - Default Login | High |  |  |
| Apache Apollo Panel - Detect | Info |  |  |
| Apache Axis2 Default Login | Critical | CVE-2010-0219 | Apache Axis2, as used in dswsbobje.war in SAP BusinessObjects Enterprise XI 3.2, CA ARCserve D2D r15, and other products... |
| Apache CloudStack - Default Login | High |  | CloudStack instance discovered using weak default credentials, allows the attacker to gain admin privilege. |
| Apache Cocoon 2.1.12 - XML Injection | High | CVE-2020-11991 | Apache Cocoon 2.1.12 is susceptible to  XML injection. When using the StreamGenerator, the code parses a user-provided X... |
| Apache DolphinScheduler Default Login | High |  | Apache DolphinScheduler default admin credentials were discovered. |
| Apache Doris - Default Login | High |  | Tests if Apache Doris Panel, it is an easy-to-use, high performance and unified analytics database, is using the default... |
| Apache Flink - Local File Inclusion | High | CVE-2020-17519 | Apache Flink 1.11.0 (and released in 1.11.1 and 1.11.2 as well) allows attackers to read any file on the local filesyste... |
| Apache HTTP Server - ACL Bypass | High | CVE-2024-38473 | Encoding problem in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be... |
| Apache HertzBeat - Default Credentials | High |  | Apache HertzBeat enables default admin (and others) credentials. An attacker can execute unauthorized operations. |
| Apache HugeGraph-Server <1.5.0 - Authentication Bypass | Critical | CVE-2024-43441 | Apache HugeGraph-Server versions prior to 1.5.0 contain an authentication bypass vulnerability caused by assumed-immutab... |
| Apache JMeter Dashboard Login Panel - Detect | Info |  | Apache JMeter Dashboard login panel was detected. |
| Apache Kafka Center Default Login | High |  | Apache Kafka Center default admin credentials were discovered. |
| Apache Kafka Consumer Offset Monitor Panel - Detect | Info |  | Apache Kafka Consumer Offset Monitor panel was detected. |
| Apache Kafka Control Center Login Panel - Detect | Info |  | Apache Kafka Control Center login panel was detected. |
| Apache Kafka Monitor Login Panel - Detect | Info |  | Apache Kafka Monitor login panel was detected. |
| Apache Karaf - Default Login | High |  | Apache Karaf contains a default login vulnerability. Default login credentials were detected. An attacker can obtain acc... |
| Apache Mesos - Panel Detect | Info |  | Apache Mesos panel was detected. |
| Apache NiFi - Information Disclosure | Medium | CVE-2024-56512 | Apache NiFi 1.10.0 through 2.0.0 are missing fine-grained authorization checking for Parameter Contexts, referenced Cont... |
| Apache NiFi - Remote Code Execution | Critical |  | Apache NiFi is designed for data streaming. It supports highly configurable data routing, transformation, and system med... |
| Apache OFBiz - Directory Traversal & Remote Code Execution | Critical | CVE-2024-36104 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache OFBiz. This issue... |
| Apache OFBiz - Improper Authorization & Remote Code Execution | Critical |  | Improper Authorization vulnerability in Apache OFBiz. This issue affects Apache OFBiz: through 18.12.14. Users are recom... |
| Apache OFBiz - XML External Entity Injection | High | CVE-2011-3600 | The /webtools/control/xmlrpc endpoint in OFBiz XML-RPC event handler is exposed to External Entity Injection by passing ... |
| Apache OFBiz 17.12.03 - Cross-Site Scripting | Medium | CVE-2020-9496 | Apache OFBiz 17.12.03 contains cross-site scripting and unsafe deserialization vulnerabilities via an XML-RPC request. |
| Apache OFBiz < 18.12.07 - Local File Inclusion | High | CVE-2022-47501 | Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a  p... |
| Apache OFBiz <=16.11.07 - Cross-Site Scripting | Medium | CVE-2020-1943 | Apache OFBiz 16.11.01 to 16.11.07 is vulnerable to cross-site scripting because data sent with contentId to /control/str... |
| Apache OFBiz Directory Traversal - Remote Code Execution | High | CVE-2024-32113 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache OFBiz. This issue... |
| Apache OfBiz Default Login | High |  | Apache OfBiz default admin credentials were discovered. |
| Apache Pinot < 1.3.0 - Authentication Bypass | Critical | CVE-2024-56325 | This vulnerability allows remote attackers to bypass authentication on affected installations of Apache Pinot. Authentic... |
| Apache Polaris - Default Login | High |  | The Apache Polaris server is configured with default administrative credentials, allowing an attacker to perform unautho... |
| Apache Polaris - Information Disclosure | Medium |  | Detects a Apache Polaris server, the interoperable, open source catalog for Apache Iceberg. |
| Apache Ranger - Default Login | High |  | Apache Ranger contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitiv... |
| Apache RocketMQ Console Panel - Detect | Info |  | Apache RocketMQ Console panel was detected. |
| Apache S2-032 Struts - Remote Code Execution | High | CVE-2016-3081 | Apache Struts 2.3.19 to 2.3.20.2, 2.3.21 to 2.3.24.1, and 2.3.25 to 2.3.28, when dynamic method invocation is enabled, a... |
| Apache ShardingSphere ElasticJob-UI privilege escalation | Medium | CVE-2022-22733 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache ShardingSphere ElasticJob-UI allows a... |
| Apache Sling - Default Login | High |  | Apache Sling default login was discovered. |
| Apache Solr - Authentication Bypass | Critical | CVE-2024-45216 | Solr instances using the PKIAuthenticationPlugin, which is enabled by default when Solr Authentication is used, are vuln... |
| Apache Solr - Host Environment Variables Leak via Metrics API | Medium | CVE-2023-50290 | Exposure of Sensitive Information to an Unauthorized Actor Vulnerability in Apache Solr.
The Solr Metrics API publishes ... |
| Apache Solr Admin Panel - Detect | Info |  | Apache Solr admin panel was detected. |
| Apache Spark Panel - Detect | Info |  | Apache Spark panel was detected. |
| Apache Spark UI - Remote Command Injection | High | CVE-2022-33891 | Apache Spark UI is susceptible to remote command injection. ACLs can be enabled via the configuration option spark.acls.... |
| Apache StreamPipes <= 0.93.0 - Use of Cryptographically Weak PRNG in Recovery Token Generation | Critical | CVE-2024-29868 | Apache StreamPipes from version 0.69.0 through 0.93.0 uses a cryptographically weak Pseudo-Random Number Generator (PRNG... |
| Apache Streampark - Default Login | High |  | Apache Streampark server enables default admin credentials. An attacker can execute unauthorized operations. |
| Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution | Critical | CVE-2013-2251 | In Struts 2 before 2.3.15.1 the information following "action:", "redirect:", or "redirectAction:" is not properly sanit... |
| Apache Struts 2 - Remote Command Execution | Critical | CVE-2017-5638 | Apache Struts 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 is susceptible to remote command injection attacks. The Jaka... |
| Apache Struts 2.0.0-2.5.25 - Remote Code Execution | Critical | CVE-2020-17530 | Apache Struts 2.0.0 through Struts 2.5.25 is susceptible to remote code execution because forced OGNL evaluation, when e... |
| Apache Struts <=2.5.20 - Remote Code Execution | Critical | CVE-2019-0230 | Apache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation when evaluated on raw user input in tag attributes, which ma... |
| Apache Struts2 S2-008 RCE | Medium | CVE-2012-0392 | The CookieInterceptor component in Apache Struts before 2.3.1.1 does not use the parameter-name whitelist, which allows ... |
| Apache Struts2 S2-012 RCE | Critical | CVE-2013-1965 | Apache Struts Showcase App 2.0.0 through 2.3.13, as used in Struts 2 before 2.3.14.3, allows remote attackers to execute... |
| Apache Struts2 S2-053 - Remote Code Execution | Critical | CVE-2017-12611 | Apache Struts 2.0.0 through 2.3.33 and 2.5 through 2.5.10.1 uses an unintentional expression in a Freemarker tag instead... |
| Apache Struts2 S2-053 - Remote Code Execution | Critical | CVE-2017-9791 | Apache Struts 2.1.x and 2.3.x  with the Struts 1 plugin might allow remote code execution via a malicious field value pa... |
| Apache Struts2 S2-057 - Remote Code Execution | High | CVE-2018-11776 | Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible remote code execution when alwaysSelectFullN... |
| Apache Superset - Authentication Bypass | Critical | CVE-2023-27524 | Session Validation attacks in Apache Superset versions up to and including 2.0.1. Installations that have not altered th... |
| Apache Superset - Default Login | High |  | Apache Superset instance discovered using weak default credentials, allows the attacker to gain admin privilege. |
| Apache Superset - Default Login | High |  | Apache Superset instance discovered using weak default credentials, allows the attacker to gain admin privilege. |
| Apache Superset Login Panel - Detect | Info |  | Apache Superset login panel was detected. |
| Apache Tika - XML External Entity Injection | High | CVE-2025-66516 | Apache Tika tika-core (1.13-3.2.1), tika-pdf-module (2.0.0-3.2.1), and tika-parsers (1.13-1.28.5) contain an XML Externa... |
| Apache Tomcat - Default Login Discovery | Info |  | Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81  default login creden... |
| Apache Tomcat - HTTP Request Smuggling | Medium | CVE-2023-45648 | Apache Tomcat from versions 8.5.0 to 8.5.93, 9.0.0-M1 to 9.0.81, 10.1.0-M1 to 10.1.13, and 11.0.0-M1 to 11.0.0-M11 conta... |
| Apache Tomcat JK Connect <=1.2.44 - Manager Access | High | CVE-2018-11759 | Apache Tomcat JK (mod_jk) Connector 1.2.0 to 1.2.44 allows specially constructed requests to expose application function... |
| Apache Tomcat Manager Default Login | High |  | Apache Tomcat Manager default login credentials were discovered. This template checks for multiple variations. |
| Apache Tomcat Manager Login Panel - Detect | Info |  | Apache Tomcat Manager login panel was detected. |
| Apache Tomcat Remote Command Execution | High | CVE-2020-9484 | When using Apache Tomcat versions 10.0.0-M1 to 10.0.0-M4, 9.0.0.M1 to 9.0.34, 8.5.0 to 8.5.54 and 7.0.0 to 7.0.103 if
a)... |
| Apache Tomcat `CGIServlet` enableCmdLineArguments - Remote Code Execution | High | CVE-2019-0232 | When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in Apache Tomcat 9.0.0.M1 to 9.0.17, 8.5.0 ... |
| Apache `mod_proxy_cluster` Cluster Manager Interface - Exposure | Info |  | The Apache mod_proxy_cluster management interface provides administrative control and visibility into the load balancer�... |
| Apereo CAS Cross-Site Scripting | Medium | CVE-2021-42567 | Apereo CAS through 6.4.1 allows cross-site scripting via POST requests sent to the REST API endpoints. |
| Aperio eSlideManager - Panel | Info |  | Aperio eSlideManager Login Panel was discovered. |
| Apigee Login Panel - Detect | Info |  | Apigee login panel was detected. |
| Apollo Default Login | High |  | An Apollo default login was discovered. |
| Application Management Panel - Detect | Info |  | Application Management Panel was detected. |
| Appsmith User Login - Panel Detect | Info |  | Appsmith user login panel was detected. |
| Appspace Login Panel - Detect | Info |  | Appspace is the workplace experience platform for your whole team that lets you manage it all – from employee communic... |
| Appsuite Login Panel - Detect | Info |  |  |
| Appwrite Login Panel - Detect | Info |  | Appwrite login panel was detected. |
| Aptus Login - Panel Detect | Info |  | Aptus login panel was detected. |
| Aqua Enterprise - Panel Detect | Info |  | Aqua Enterprise panel was detected. |
| Aquatronica Controller System <= 5.1.6 - Information Disclosure | High | CVE-2025-25037 | Aquatronica Controller System firmware 5.1.6 and earlier and web interface 2.0 and earlier contain an information disclo... |
| ArangoDB Web Interface - Detect | Info |  | ArangoDB Web Interface was detected. |
| ArcGIS REST Services Directory - Detect | Info |  | Check for the existence of the "/arcgis/rest/services" path on an ArcGIS server. |
| ArcServe Panel - Detect | Info |  |  |
| Arcane Login Panel - Detect | Info |  | Detects the presence of the Arcane login panel, a modern Docker management platform. |
| Archibus Web Central Login - Panel Detect | Info |  | Archibus Web Central login panel was detected. |
| Arcserve UDP <= 9.0.6034 - Authentication Bypass | Critical | CVE-2023-26258 | Arcserve UDP through 9.0.6034 allows authentication bypass. The method getVersionInfo at WebServiceImpl/services/FlashSe... |
| Arcserve Unified Data Protection - Authentication Bypass | Critical | CVE-2024-0799 | An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui... |
| Argo CD Login Panel | Info |  | An Argo CD login panel was discovered. |
| Argo CD Unauthenticated Access to sensitive setting | Medium | CVE-2024-37152 | Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. The vulnerability allows unauthorized access t... |
| Aria2 WebUI - Path traversal | High | CVE-2023-39141 | webui-aria2 commit 4fe2e was discovered to contain a path traversal vulnerability. |
| Artica Pandora FMS 7.44 - Remote Code Execution | High | CVE-2020-13851 | Artica Pandora FMS 7.44 allows remote command execution via the events feature. |
| Artica Pandora FMS <=7.42 - Arbitrary File Read | Medium | CVE-2020-8497 | Artica Pandora FMS through 7.42 is susceptible to arbitrary file read. An attacker can read the chat history, which is i... |
| Artica Proxy - Unauthenticated LFI | High | CVE-2024-2053 | The Artica Proxy administrative web application will deserialize arbitrary PHP objects supplied by unauthenticated users... |
| Artica Proxy 4.30.000000 - Cross-Site Scripting | Medium | CVE-2022-37153 | Artica Proxy 4.30.000000 contains a cross-site scripting vulnerability via the password parameter in /fw.login.php. |
| Artica Proxy Community Edition <4.30.000000 - Local File Inclusion | High | CVE-2020-13158 | Artica Proxy Community Edition before 4.30.000000 is vulnerable to local file inclusion via the fw.progrss.details.php p... |
| Aruba Instant - Default Login | High |  | Aruba Instant is an AP device. The device has a default password, and attackers can control the entire platform through ... |
| AstrBot - Default Login | High |  | AstrBot contains a default login vulnerability. An attacker can access the AstrBot dashboard using default credentials a... |
| AstrBot WebUI Login Panel - Detect | Info |  | Astrbot WebUI login panel was detected. |
| Astro - Information Disclosure | Medium | CVE-2024-56159 | Astro versions v5.0.3 through v5.0.7 and Astro v4.16.17 or older with sourcemaps enabled contain a source code disclosur... |
| Astro - Reflected XSS via server islands feature | High | CVE-2025-64764 | Astro 5.15.8 contains a reflected XSS caused by improper handling of server islands feature, letting remote attackers ex... |
| Atarim < 4.2.2 - Sensitive Information Exposure | High | CVE-2025-60188 | Vito Peleg Atarim <= 4.2 contains an insertion of sensitive information into sent data vulnerability caused by improper ... |
| Atlantis Panel - Detect | Info |  | Atlantis panel was detected. |
| Atlassian Bamboo Login Panel - Detect | Info |  | Atlassian Bamboo login panel was detected. |
| Atlassian Confluence End-of-Life - Detect | Info |  | Detected Atlassian Confluence instances versions that have reached End-of-Life (EOL) and no longer receive security upda... |
| Atlassian Jira Server-Side Template Injection | Critical | CVE-2019-11581 | Jira Server and Data Center is susceptible to a server-side template injection vulnerability via the ContactAdministrato... |
| Atlassian Questions For Confluence - Hardcoded Credentials | Critical | CVE-2022-26138 | Atlassian Questions For Confluence contains a hardcoded credentials vulnerability. When installing versions 2.7.34, 2.7.... |
| Atom.CMS 2.0 - SQL Injection | Critical | CVE-2022-28033 | Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_uploads.php which allows an attacker to execute arbitrary... |
| AudioCodes 310HD, 320HD, 420HD, 430HD & 440HD - Default Login | High |  | AudioCodes devices 310HD, 320HD, 420HD, 430HD & 440HD contain a default login vulnerability. Default login credentials w... |
| AudioCodes Device Manager Express - SQL Injection | Critical | CVE-2022-24627 | An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. It is an unauthenticated SQL injec... |
| AudioCodes Login - Panel Detect | Info |  | AudioCodes login panel was detected. |
| Audiobookshelf Login Panel - Detect | Info |  |  |
| Aurelia-Path < 1.1.7 - Prototype Pollution | High | CVE-2021-41097 | Aurelia-path before 1.1.7 contains a prototype pollution caused by parsing malicious URL parameters, letting attackers m... |
| Authelia Panel - Detect | Info |  | Authelia is an open-source authentication and authorisation service providing two-factor authentication and single sign-... |
| Authentik Panel - Detect | Info |  | An Authentik search engine was detected. |
| AutoSet Page - Detect | Info |  |  |
| Automation By Autonami < 3.3.0 - SQL Injection | High | CVE-2024-9186 | The Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit WordPress plugi... |
| Automatisch Panel - Detect | Info |  | The open source Zapier alternative. |
| AvantFAX Login Panel | Info |  | An AvantFAX login panel was discovered. |
| Avatier Password Management Panel | Info |  | An Avatier password management panel was detected. |
| Avaya Phone Web Interface - Default Login | High |  | Avaya phone web interface contains a default login vulnerability. An attacker can obtain access to sensitive information... |
| Aviatrix Cloud Controller Panel | Info |  | An Aviatrix Cloud Controller login panel was detected. |
| Avigilon Login Panel - Detect | Info |  | Avigilon login panel was detected. |
| Avtech AVN801 Network Camera Admin Panel - Detect | Info |  | An Avtech AVN801 Network Camera administration panel was detected. |
| Axel WebServer - Panel Detect | Info |  | Axel WebServer panel was detected. |
| Axigen Web Admin Detection | Info |  | An Axigen Web Admin panel was discovered. |
| Axigen WebMail PanelDetection | Info |  | An Axigen webmail panel was discovered. |
| Axway API Manager Panel - Detect | Info |  | Axway API Manager panel was detected. |
| Axway SecureTransport Login Panel - Detect | Info |  | AXWAY SecureTransport login panel was detected. |
| Axway SecureTransport Web Client Panel - Detect | Info |  | AXWAY Secure Transport Web Client panel was detected. |
| Axxon Next Client Login - Detect | Info |  | Axxon One is a limitlessly scalable video management software |
| Azkaban Web Client | Info |  | An Azkaban web client panel was discovered. |
| Azkaban Web Client Default Credential | High |  | Azkaban is a batch workflow job scheduler created at LinkedIn to run Hadoop jobs.  Default web client credentials were d... |
| BEdita Login Panel - Detect | Info |  | BEdita login panel was detected. |
| BMC Control-M MFT Login Panel - Detect | Info |  | BMC Control-M MFT products was detected. |
| BMC Discovery Login Panel - Detect | Info |  | BMC Discovery login panel was detected. |
| BMC FootPrints - Authentication Bypass | Medium | CVE-2025-71257 | BMC FootPrints versions 20.20.02 through 20.24.01.001 contain an authentication bypass vulnerability in the password res... |
| BMC Remedy SSO Login Panel - Detect | Info |  | BMC Remedy Single Sign-On domain data entry login panel was detected. |
| Barco ClickShare - Default Login | High |  | Barco ClickShare contains a default login vulnerability. Default login password 'admin' was found. |
| Barracuda Message Archiver - Panel Detect | Info |  | Barracuda Networks Barracuda Message Archiver (BMA) panel was detected. |
| Batflat CMS - Default Login | High |  | Batflat CMS is vulnerable to default login vulnerability that most commonly affects devices having some pre-set (default... |
| Bazarr < 1.4.3 - Arbitrary File Read | High | CVE-2024-40348 | Bazarr 1.4.3 and earlier versions have a arbitrary file read vulnerability. |
| Beego Admin Dashboard Panel- Detect | Medium |  | Beego Admin Dashboard panel was detected. |
| Beszel Login Panel - Detect | Info |  | Beszel products was detected. |
| Beszel Unfinished Installation | High |  | Detected Beszel server monitoring hub had an unfinished installation with no admin account configured, allowing attacker... |
| Better Search Replace < 1.4.5 - PHP Object Injection | Critical | CVE-2023-6933 | The Better Search Replace plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and includin... |
| BeyondTrust Login Panel - Detect | Info |  | BeyondTrust login panel was detected. |
| BeyondTrust Privileged Remote Access - Panel | Info |  | BeyondTrust Privileged Remote Access login panel was detected. |
| BeyondTrust Remote Support Panel - Detect | Info |  | Detect BeyondTrust Remote Support Panel. |
| BigAnt - Default Password | Critical |  | Misconfiguratoin leads to Default Login into BigAnt Super Admin Account. |
| BigAnt Admin Login Panel - Detect | Info |  | BigAnt admin login panel was detected. |
| BigAnt Server 5.6.06 - Improper Access Control | Medium | CVE-2022-23348 | BigAnt Server 5.6.06 is susceptible to improper access control. The software utililizes weak password hashes. An attacke... |
| BigAnt Server v5.6.06 - Local File Inclusion | High | CVE-2022-23347 | BigAnt Server v5.6.06 is vulnerable to local file inclusion. |
| BioTime Web Login Panel - Detect | Info |  | BioTime Web login panel was detected. |
| Bitbucket Panel - Detect | Info |  | Bitbucket panel was detected. Bitbucket is a Git-based source code repository hosting service owned by Atlassian, provid... |
| Bitdefender GravityZone Panel - Detect | Info |  | Bitdefender GravityZone panel was detected. |
| Bitrix Component - Cross-Site Scripting | Critical | CVE-2023-1719 | Global variable extraction in bitrix/modules/main/tools.php in Bitrix24 22.0.300 allows unauthenticated remote attackers... |
| Bitrix Login Panel | Info |  | Bitrix24 is a unified work space that places a complete set of business tools into a single, intuitive interface. |
| Bitrix Path Disclosure | Low |  | Detected Full Path Disclosure (FPD) in Bitrix by sending requests request to specific paths and identifying fatal error ... |
| Bitrix Site Manager - Log File Disclosure | Medium |  | Detected Bitrix Site Manager log files, potentially exposing sensitive information including database credentials, file ... |
| Bitrix24 <=20.0.0 - Cross-Site Scripting | Medium | CVE-2020-13483 | The Web Application Firewall in Bitrix24 up to and including 20.0.0 allows XSS via the items[ITEMS][ID] parameter to the... |
| Bitwarden Web Vault Login Panel - Detect | Info |  |  |
| Black Duck Login Panel - Detect | Info |  | Black Duck login panel was detected. |
| Blue Iris Login Panel - Detect | Info |  | Blue Iris login panel was detected. |
| Blue Yonder Panel - Detect | Info |  | Blue Yonder login panel was discovered |
| Bluemind Panel - Detect | Info |  | Bluemind application panel was discovered. |
| Boa 0.94.13 - Information Disclosure | High | CVE-2021-33558 | Boa 0.94.13 allows remote attackers to obtain sensitive information via a misconfiguration involving backup.html, previe... |
| Bonita - Default Login | High |  | Bonita login was using default credentials which can led to gain super administrator access. |
| Bonita Portal Login - Detect | Info |  | Detects the presence of Bonita Portal login page. |
| Bonobo Git Server Login Panel - Detect | Info |  | Bonobo Git Server login panel was detected. |
| BookStack Login Panel - Detect | Info |  | Bookstack login panel was detected. |
| Bootstrap Multiselect <= 1.1.2 - Cross-Site Scripting | Medium |  | A PHP script in the source code release echoes arbitrary POST data. If a developer adopts this structure wholesale in a ... |
| Brickcom Camera - Default Login | High |  | Detected Brickcom IP cameras accessible using default credentials (admin/admin). Successful authentication exposed full ... |
| Brickcom Camera - Unauthenticated Snapshot Access | High |  | Detected Brickcom IP cameras was exposed live camera snapshots without authentication via the ONVIF media endpoint. |
| Brother MFC-L9570CDW - Information Disclosure | Medium | CVE-2024-51977 | An unauthenticated attacker who can access either the HTTP service (TCP port 80), the HTTPS service (TCP port 443), or t... |
| Browser Configuration "browserconfig.xml" Exposure | Info |  | Browser Configuration "browserconfig.xml" File was exposed. |
| Buddy Panel - Detect | Info |  | Buddy panel was detected. |
| Budibase Login Panel - Detect | Info |  | Budibase login panel was detected. |
| Buffalo WSR-2533DHPL2 - Path Traversal | Critical | CVE-2021-20090 | Buffalo WSR-2533DHPL2 firmware version <= 1.02 and WSR-2533DHP3 firmware version <= 1.24 are susceptible to a path trave... |
| Buildbot Panel - Detect | Info |  | Buildbot panel was detected. |
| Busybox Repository Browser - Detect | Info |  | Busybox Repository Browser was detected. |
| Bylancer Quicklancer 2.4 G - SQL Injection | High | CVE-2024-7188 | A SQL injection vulnerability exists in the Quicklancer 2.4, GET parameter 'range2', that has time-based blind SQL injec... |
| Bynder Login Panel - Detect | Info |  | Bynder login panel was detected. |
| CAIMORE Gateway  Default Login - Detect | High |  | The gateway of Xiamen Caimao Communication Technology Co., Ltd. is designed with open software architecture. It is a met... |
| CAREL Boss Mini - Login Panel Detected | Info |  | CAREL Boss Mini login panel was detected. Boss Mini is a local supervisor solution by CAREL used for monitoring and mana... |
| CAREL Boss Mini <= 1.4.0 - Local File Inclusion | Critical | CVE-2023-3643 | Boss Mini 1.4.0 Build 6221 contains a file inclusion caused by manipulation of the 'path' argument in boss/servlet/docum... |
| CAS Login Panel - Detect | Info |  | CAS login panel was detected. |
| CData API Server < 23.4.8844 - Path Traversal | Critical | CVE-2024-31848 | A path traversal vulnerability exists in the Java version of CData API Server < 23.4.8844 when running using the embedde... |
| CData Arc < 23.4.8839 - Path Traversal | High | CVE-2024-31850 | A path traversal vulnerability exists in the Java version of CData Arc < 23.4.8839 when running using the embedded Jetty... |
| CData Connect < 23.4.8846 - Path Traversal | Critical | CVE-2024-31849 | A path traversal vulnerability exists in the Java version of CData Connect < 23.4.8846 when running using the embedded J... |
| CData Sync < 23.4.8843 - Path Traversal | High | CVE-2024-31851 | A path traversal vulnerability exists in the Java version of CData Sync < 23.4.8843 when running using the embedded Jett... |
| CERIO-DT Interface - Command Execution | Critical |  | CERIO DT series routers have an operation command injection vulnerability in specific versions. An attacker could exploi... |
| CGIT - Detect | Info |  | CGIT panel was detected. |
| CISCO Expressway Login Panel - Detect | Info |  | CISCO Expressway login panel was detected. |
| CRM Perks Forms <= 1.1.4 - SQL Injection | Critical | CVE-2024-30498 | CRM Perks CRM Perks Forms (affected versions 1.1.4 and earlier) contains a SQL injection caused by improper neutralizati... |
| CRMEB v.5.2.2 - SQL Injection | High | CVE-2024-36837 | SQL Injection vulnerability in CRMEB v.5.2.2 allows a remote attacker to obtain sensitive information via the getProduct... |
| CVAT Computer Vision Annotation Tool - Detect | Info |  | CVAT (Computer Vision Annotation Tool) was detected. CVAT is a widely used open-source annotation platform for labelling... |
| Cachet <=2.3.18 - SQL Injection | Medium | CVE-2021-39165 | Cachet is an open source status page. With Cachet prior to and including 2.3.18, there is a SQL injection which is in th... |
| Cacti 1.2.24 - SQL Injection | Critical | CVE-2023-39361 | Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a SQL in... |
| Cacti Login Panel - Detect | Info |  | Cacti login panel was detected. |
| Calibre <= 7.14.0 Arbitrary File Read | High | CVE-2024-6781 | Arbitrary file read via Calibre’s content server in Calibre <= 7.14.0. |
| Calibre <= 7.14.0 Remote Code Execution | Critical | CVE-2024-6782 | Unauthenticated remote code execution via Calibre’s content server in Calibre <= 7.14.0. |
| Camaleon CMS - Default Login | High |  | Camaleon CMS default login credentials was discovered. |
| Camaleon CMS Login - Panel | Info |  | Camaleon CMS admin login panel was discovered. |
| Camunda - Default Login | High |  | Camunda login panel contains a default login vulnerability. |
| Canon Devices - Authentication Bypass in Catwalk Server | High | CVE-2021-38154 | Certain Canon devices manufactured in 2012 through 2020 (such as imageRUNNER ADVANCE iR-ADV C5250), when Catwalk Server ... |
| Canon R-ADV C3325 - Default-Login | High |  |  |
| Canon iR-ADV Panel - Detect | Info |  |  |
| Canopy 5.7GHz Access Point - Default Login | High |  | Cambium Networks / Motorola Canopy 5750AP ADVANTAGE Access Point 5.7GHz login credentials were discovered. |
| Caprover - Default Login | High |  | Caprover defaultl login has been detected. |
| Car Rental Management System 1.0 - Local File Inclusion | Critical | CVE-2020-29227 | Car Rental Management System 1.0 allows an unauthenticated user to perform a file inclusion attack against the /index.ph... |
| Car Rental Management System 1.0 - SQL Injection | High | CVE-2022-32022 | Car Rental Management System 1.0 contains an SQL injection vulnerability via /admin/ajax.php?action=login. An attacker c... |
| Carel pCOWeb <B1.2.4 - Cross-Site Scripting | Medium | CVE-2019-11370 | Carel pCOWeb prior to B1.2.4 is vulnerable to stored cross-site scripting, as demonstrated by the config/pw_snmp.html "S... |
| CasaOS  < 0.4.4 - Authentication Bypass via Internal IP | Critical | CVE-2023-37265 | CasaOS is an open-source Personal Cloud system. Due to a lack of IP address verification an unauthenticated attackers ca... |
| CasaOS  < 0.4.4 - Authentication Bypass via Random JWT Token | Critical | CVE-2023-37266 | CasaOS is an open-source Personal Cloud system. Unauthenticated attackers can craft arbitrary JWTs and access features t... |
| CasaOS Login Panel - Detect | Info |  | CasaOS login panel was detected. |
| Cascade CMS Panel - Detect | Info |  | Cascade CMS was detected — a web content management system for managing stand-out websites. |
| Casdoor - Default Admin Credentials | High |  | Detected Casdoor platform was found to have been using the default administrator credentials (admin:123). An attacker co... |
| Casdoor 1.13.0 - Unauthenticated SQL Injection | High | CVE-2022-24124 | Casdoor version 1.13.0 suffers from a remote unauthenticated SQL injection vulnerability via the query API in Casdoor be... |
| Casdoor Login Panel - Detect | Info |  | Casdoor login panel was detected. |
| CaseManager Login Panel - Detect | Info |  | CaseManager login panel was detected. |
| Cassia Bluetooth Gateway Panel - Detect | Info |  | Cassia Bluetooth Gateway Management Platform login page was discovered. |
| Caton Network Manager System Login Panel - Detect | Info |  | Caton Network Manager System login panel was detected. |
| Cellinx NVT Web Server - Local File Disclosure | High | CVE-2023-23063 | Cellinx NVT v1.0.6.002b was discovered to contain a local file disclosure vulnerability via the component /cgi-bin/GetFi... |
| Celonis Login - Panel | Info |  | Detects Celonis Process Intelligence login panels. |
| CentOS Web Panel - OS Command Injection | Critical | CVE-2021-31324 | The unprivileged user portal part of CentOS Web Panel is affected by a Command Injection vulnerability leading to root R... |
| CentOS Web Panel - SQL Injection | Critical |  | The unprivileged user portal part of CentOS Web Panel is affected by a SQL Injection via the 'idsession' HTTP POST param... |
| CentreStack Login Panel - Detect | Info |  | Gladinet CentreStack login panel was detected. |
| Centreon Login Panel - Detect | Info |  | Centreon login panel was detected. |
| ChanCMS <= 3.3.0 - SQL Injection | Medium | CVE-2025-10210 | yanyutao0402 ChanCMS = 3.3.0 contains a SQL injection caused by manipulation of the \"key\" argument in app/modules/api/... |
| Change Detection - Server Side Template Injection | Critical | CVE-2024-32651 | A Server Side Template Injection in changedetection.io caused by usage of unsafe functions of Jinja2 allows Remote Comma... |
| Changedetection.io <= 0.47.4 - Path Traversal | Medium | CVE-2024-51483 | changedetection.io is free, open source web page change detection software. Prior to version 0.47.5, when a WebDriver is... |
| Changedetection.io Panel - Detect | Info |  | Change Detection is an open-source service which allows you to detect changes on websites |
| Changedetection.io RSS Single Watch - Cross-Site Scripting | Medium | CVE-2026-27645 | changedetection.io < 0.54.1 contains a stored XSS caused by unescaped reflection of UUID path parameter in RSS single-wa... |
| Changjietong Remote Communication GNRemote.dll - SQL Injection | High |  | Chanjetong has a SQL injection vulnerability, which can be used by attackers to obtain sensitive information in the data... |
| Check Point Quantum Gateway - Information Disclosure | High | CVE-2024-24919 | Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the inte... |
| CheckPoint SSL Network Extender Login Panel - Detect | Info |  | CheckPoint SSL Network Extender login panel was detected. |
| Checkmarx Login Panel - Detect | Info |  | Checkmarx login panel was detected. |
| Checkmate Login Panel - Detect | Info |  | Checkmate administrative login page was found. |
| Checkmk - Default Login | High |  | Checkmk monitoring instance is accessible with default credentials (cmkadmin/cmkadmin). This provides full administrativ... |
| Checkmk Login Panel - Detect | Info |  | Checkmk login panel was detected. |
| Chef Automate < 4.13.295 — SQL Injection | Critical | CVE-2025-8868 | In Progress Chef Automate, versions earlier than 4.13.295, on Linux x86 platform, an authenticated attacker can gain acc... |
| Chemotargets Clarity Vista Login Panel - Detect | Info |  | Chemotargets Clarity Vista login panel was detected. |
| ChirpStack - Default Login | High |  | Fresh ChirpStack installations use the default credentials (admin/admin), allowing attackers to easily access the admin ... |
| ChirpStack LoRaWAN Detection | Info |  | Detects the presence of ChirpStack LoRaWAN Network-Server by identifying unique page characteristics in the HTML respons... |
| Chronos Panel - Detect | Info |  | Chronos Login Panel was detected. |
| ChurchCRM - Cross-Site Scripting | Medium |  | A reflected cross-site scripting (XSS) vulnerability was discovered in ChurchCRM via the 'username' parameter in /sessio... |
| ChurchCRM - Default Login | High |  | ChurchCRM contains a default login vulnerability. |
| ChurchCRM Panel - Detect | Info |  | ChurchCRM panel was discovered. |
| Ciphertrust - Default Login | High |  | Attackers can control the entire platform through the default password （initpass） vulnerability, and use administrat... |
| Circutor Line-TCPRS1 - Default Login | High |  | A default login was discovered on a Circutor Line-TCPRS1 device. An attacker can obtain access to user accounts, access ... |
| Cisco ACE 4710 Device Manager Login Panel - Detect | Info |  | Cisco ACE 4710 Device Manager login panel was detected. |
| Cisco ASA - Local File Inclusion | High | CVE-2018-0296 | Cisco Adaptive Security Appliances (ASA) web interfaces could allow an unauthenticated, remote attacker to cause an affe... |
| Cisco Adaptive Security Appliance (ASA)/Firepower Threat Defense (FTD) - Local File Inclusion | High | CVE-2020-3452 | Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software is vulnerable to loca... |
| Cisco Edge 340 Panel - Detect | Info |  | Cisco Edge 340 panel was detected. |
| Cisco Email Security Appliance - Panel | Info |  | Detected Cisco Email Security Appliance login panel. |
| Cisco IOS XE - Impant Detection | Critical |  | Cisco is aware of active exploitation of a previously unknown vulnerability in the web UI feature of Cisco IOS XE Softwa... |
| Cisco IOS XE Web UI - Command Injection | Critical | CVE-2023-20198 | A vulnerability in the web UI component of Cisco IOS XE Software could allow an unauthenticated, remote attacker to exec... |
| Cisco ISE Admin Login Panel - Detect | Info |  | Cisco Identity Services Engine (ISE) admin login panel was discovered. |
| Cisco Identity Services Engine Admin Login Panel - Detect | Info |  | Cisco Identity Services Engine admin login panel was detected. |
| Cisco Prime Infrastructure Panel - Detect | Info |  | A Cisco Prime Infrastructure login panel was discovered. |
| Cisco Secure CN Login Panel - Detect | Info |  | Cisco Secure CN login panel was detected. |
| Cisco Secure Firewall ASA & FTD - Authentication Bypass | Medium | CVE-2025-20362 | A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secu... |
| Cisco Secure Firewall Management Center - Authentication Bypass | Critical | CVE-2026-20079 | Cisco Secure Firewall Management Center Software contains an authentication bypass caused by improper system process cre... |
| Cisco ServiceGrid Login Panel - Detect | Info |  | Cisco ServiceGrid login panel was detected. |
| Cisco Smart Software Manager On-Prem Panel - Detect | Info |  | Cisco Smart Software Manager On-Prem is an on-premises software license management solution offered by Cisco. It enables... |
| Cisco Systems Login Panel - Detect | Info |  | Cisco Systems login panel was detected. |
| Cisco TelePresence Login Panel - Detect | Info |  | Cisco TelePresence login panel was detected. |
| Cisco UCS Manager KVM Login Panel - Detect | Info |  | Cisco UCS Manager KVM login panel was detected. |
| Cisco Unified Communications Manager - Cluster Enumeration | Low |  | Enumerated Cisco UCM cluster nodes (servers) using the unauthenticated UDS API (XML), allowing identification of backend... |
| Cisco Unified Communications Self-Service User Portal - Detection | Info |  | Detected the presence of the Cisco Unified Communications User Management Panel. |
| Cisco Unity Connection Panel - Detect | Info |  | A Cisco Unity Connection instance was detected. |
| Cisco Web UI Login - Detect | Info |  | Detects the presence of Cisco Web UI login panels |
| Cisco Webex Meetings - Panel | Info |  | Detects Cisco Webex Meetings panel by requesting the modern Webex dashboard and matching unique Webex HTML markers. |
| Cisco vManage Login Panel - Detect | Info |  | Cisco vManage login panel was detected. |
| Citrix ADC Gateway Login Panel - Detect | Info |  | Citrix ADC Gateway login panel was detected. |
| Citrix Bleed - Leaking Session Tokens | High | CVE-2023-4966 | Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server... |
| Citrix Gateway and Citrix ADC - Cross-Site Scripting | Medium | CVE-2023-24488 | Citrix ADC and Citrix Gateway versions before 13.1 and 13.1-45.61, 13.0 and 13.0-90.11, 12.1 and 12.1-65.35 contain a cr... |
| Citrix NetScaler Memory Disclosure - CitrixBleed 2 | Critical | CVE-2025-5777 | Insufficient input validation leading to memory overread on the NetScaler Management Interface NetScaler ADC and NetScal... |
| Citrix Netscaler ADC & Gateway - Out-Of-Bounds Memory Read | Critical | CVE-2023-6549 | The vulnerability would enable an attacker to remotely obtain sensitive information from a NetScaler appliance configure... |
| Citrix SD-WAN and NetScaler SD-WAN - SQL Injection | Critical | CVE-2019-12989 | Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 contain an SQL injection vulnerability. An ... |
| Citrix StoreFront - Cross-Site Scripting | Medium | CVE-2023-5914 | Reflected Cross-Site Scripting issue which is exploitable without authentication. This vulnerability was exploitable thr... |
| Citrix VPN Panel - Detect | Info |  | Citrix VPN panel was detected. |
| Claris FileMaker WebDirect Panel - Detect | Info |  | Claris FileMaker WebDirect panel was detected. |
| CleanWeb Login Panel - Detect | Info |  | CleanWeb login panel was detected. |
| Clear-Com Core Configuration Manager Panel - Detect | Info |  | Clear-Com Core Configuration Manager panel was detected. |
| ClearML Panel - Detect | Info |  | ClearML was detected. ClearML is an open-source MLOps platform for experiment tracking, model management, and pipeline o... |
| ClearPass Policy Manager Login Panel - Detect | Info |  | ClearPass Policy Manager login panel was detected. |
| Cleo Harmony < 5.8.0.21 - Arbitary File Read | High | CVE-2024-50623 | In Cleo Harmony before 5.8.0.21, VLTrader before 5.8.0.21, and LexiCom before 5.8.0.21, there is an unrestricted file up... |
| Cloud OA System - SQL Injection | High |  | cloud OA system /OA/PM/svc.asmx page parameters are not properly filtered, resulting in a SQL injection vulnerability, w... |
| CloudPanel Login - Detect | Info |  |  |
| Cloudera Hue Default Admin Login | High |  | Cloudera Hue default admin credentials were discovered. |
| Cloudflare Access - Login Panel Detection | Info |  | Detected exposed Cloudflare Access login pages. |
| Cloudlog Panel - Detect | Info |  | Cloudlog panel was discovered. |
| Cloudphysician RADAR Login Panel - Detect | Info |  | Cloudphysician RADAR login panel was detected. |
| Cluster Control CMON API - Directory Traversal | High | CVE-2024-41628 | Directory Traversal vulnerability in Severalnines Cluster Control 1.9.8 before 1.9.8-9778, 2.0.0 before 2.0.0-9779, and ... |
| Cnzxsoft System - Default Login | High |  | Cnzxsoft Golden Shield Information Security Management System has a default weak password. |
| Cobbler 'XML-RPC' - Authentication Bypass | Critical | CVE-2024-47533 | Cobbler, a Linux installation server that allows for rapid setup of network installation environments, has an improper a... |
| Cobbler - Authentication Bypass | Critical | CVE-2018-1000226 | Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ and possibly even older versions, may be vulnerab... |
| Cobbler <3.3.0 - Remote Code Execution | Critical | CVE-2021-40323 | Cobbler before 3.3.0 allows log poisoning and resultant remote code execution via an XMLRPC method. |
| Cobbler WebGUI Login Panel - Detect | Info |  | Cobbler WebGUI login panel was detected. |
| Cockpit CMS 0.6.1 - Remote Code Execution | Critical | CVE-2020-35131 | Cockpit before 0.6.1 allows an attacker to inject custom PHP code and achieve Remote Command Execution via registerCrite... |
| Cockpit Project Login Panel - Detect | Info |  | Cockpit Project products was detected. |
| Code-Server Login Panel - Detect | Info |  | Code-Server login panel was detected. |
| CodeChecker <= 6.24.1 - Authentication Bypass | Critical | CVE-2024-10081 | Authentication bypass occurs when the API URL ends with Authentication, Configuration or ServerInfo. This bypass allows ... |
| Cofense Vision Login Panel - Detect | Info |  | Cofense Vision login panel was detected. |
| ColdFusion Administrator Login Panel - Detect | Info |  | ColdFusion Administrator login panel was detected. |
| Coming Soon & Maintenance < 4.1.7 - Unauthenticated Post/Page Access | Medium | CVE-2023-1263 | The plugin does not restrict access to published and non protected posts/pages when the maintenance mode is enabled, all... |
| Commvault Unauthenticated Password Disclosure (WT-2025-0047) | Medium |  | An issue was discovered in Commvault before 11.36.60. A vulnerability in a known login mechanism allows unauthenticated ... |
| Commvault Web Console Panel - Detect | Info |  | Commvault web console login panel was detected. |
| Compalex Panel - Detect | Medium |  |  |
| CompleteView Panel - Detect | Info |  | CompleteView panel was detected. |
| Concourse CI Login Panel - Detect | Info |  | Concourse CI login panel was detected. |
| Concrete5 Install Panel | Critical |  | A Concrete5 installation panel was discovered. |
| Concrete5 Login Panel - Detect | Info |  | Concrete5 login panel was detected. |
| ConnectWise Control Remote Support Software Panel - Detect | Info |  |  |
| ConnectWise ScreenConnect 23.9.7 - Authentication Bypass | Critical | CVE-2024-1709 | ConnectWise ScreenConnect 23.9.7 and prior are affected by an Authentication Bypass Using an Alternate Path or Channel v... |
| Contact Form Plugin by Fluent Forms < 5.1.17 - Unauthenticated Limited Privilege Escalation | Critical | CVE-2024-2771 | The plugin is vulnerable to privilege escalation due to a missing capability check on the /wp-json/fluentform/v1/manager... |
| Contao Login Panel - Detect | Info |  | Contao login panel was detected. |
| Content Central Login Panel - Detect | Info |  | Content Central login panel was detected. |
| Contest Gallery < 13.1.0.6 - SQL injection | Critical | CVE-2021-24915 | The plugin does not have capability checks and does not sanitise or escape the cg-search-user-name-original parameter be... |
| Control Web Panel (CWP) - File Inclusion | Critical | CVE-2021-45467 | In CWP (Control Web Panel, previously CentOS Web Panel) before version 0.9.8.1107, an unauthenticated attacker can abuse... |
| Control Web Panel Login Panel - Detect | Info |  | Control Web Panel login panel was detected. |
| CopyParty v1.8.6 - Cross Site Scripting | Medium | CVE-2023-38501 | Copyparty is a portable file server. Versions prior to 1.8.6 are subject to a reflected cross-site scripting (XSS) Attac... |
| Copyparty <= 1.8.2 - Directory Traversal | High | CVE-2023-37474 | Copyparty is a portable file server. Versions prior to 1.8.2 are subject to a path traversal vulnerability detected in t... |
| Copyparty <=1.18.6 - Cross-Site Scripting | Medium | CVE-2025-54589 | Copyparty before 1.18.7 is vulnerable to reflected cross-site scripting (XSS) via the 'filter' parameter in the '/?ru' e... |
| Cortex XSOAR Login Panel - Detect | Info |  | Cortex XSOAR login panel was detected. |
| CouchDB - Default Login | High |  | CouchDB weak admin credentials were discovered. |
| CouchDB Erlang Distribution - Remote Command Execution | Critical | CVE-2022-24706 | In Apache CouchDB prior to 3.2.2, an attacker can access an improperly secured default installation without authenticati... |
| Couchbase Server - Broken Access Control | Critical | CVE-2020-9039 | Couchbase Server versions 4.0.0, 4.1.0, 4.1.1, 4.5.0, 4.5.1, 4.6.0-4.6.5, 5.0.0, 5.1.1, 5.5.0, and 5.5.1 contain insecur... |
| Cox Business Dominion Gateway Login Panel - Detect | Info |  | Cox Business Dominion Gateway Login page was discovered. |
| Craft CMS - Remote Code Execution via Template Path Manipulation | Critical | CVE-2024-56145 | This template identifies a critical Remote Code Execution (RCE) vulnerability in Craft CMS, identified as GHSA-2p6p-9rc9... |
| Craft CMS < 3.3.0 - Server-Side Template Injection | Critical | CVE-2020-9757 | Craft CMS before 3.3.0 is susceptible to server-side template injection via the SEOmatic component that could lead to re... |
| Craft CMS <=v3.7.31 - SQL Injection | Critical | CVE-2024-37843 | Craft CMS up to v3.7.31 was discovered to contain a SQL injection vulnerability via the GraphQL API endpoint. |
| Craft CMS Admin Login Panel - Detect | Info |  | Craft CMS admin login panel was detected. |
| Craft CMS Installation Wizard Exposure | High |  | Detected Craft CMS installation wizard was exposed, allowing attackers to complete the installation process and gain adm... |
| CraftCMS - Remote Code Execution | Critical | CVE-2025-32432 | Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond. Starting from vers... |
| CraftCMS < 4.4.15 - Unauthenticated Remote Code Execution | Critical | CVE-2023-41892 | Craft CMS is a platform for creating digital experiences. This is a high-impact, low-complexity attack vector leading to... |
| CraftCMS Debug Methods Exposed | Medium |  | Detected CraftCMS with devMode enabled, which exposed the Yii2 debug toolbar and sensitive information. This misconfigur... |
| CraftCMS SEOmatic - Server-Side Template Injection | Critical | CVE-2021-41749 | In the SEOmatic plugin up to 3.4.11 for Craft CMS 3, it is possible for unauthenticated attackers to perform a Server-Si... |
| CrafterCMS Engine - Cross-Site Scripting | Medium | CVE-2023-4136 | CrafterCMS Engine is vulnerable to reflected cross-site scripting (XSS) via the transformerName parameter in the /api/1/... |
| CrafterCMS Login Panel - Detect | Info |  | CrafterCMS login panel was detected. |
| Creatio Login Panel - Detect | Info |  | Creatio login panel was detected. |
| Crestron Airmedia 2.0 - Default Login | High |  | Crestron AirMedia 2.0 devices contain default credentials (admin:admin) that allow unauthorized administrative access to... |
| Crontab UI - Dashboard Exposure | High |  |  |
| CrushFTP - Anonymous Login | High |  | CrushFTP Anonymous login credentials were discovered. |
| CrushFTP - Authentication Bypass | Critical | CVE-2025-31161 | CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0 are affected by a vulnerability that may result in una... |
| CrushFTP - Default Login | High |  | CrushFTP default login credentials were discovered. |
| CrushFTP VFS - Sandbox Escape LFR | Critical | CVE-2024-4040 | VFS Sandbox Escape in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows remote attackers with lo... |
| CrushFTP WebInterface Panel - Detect | Info |  | CrushFTP WebInterface login panel was detected. |
| Crypto <= 2.15 - Authentication Bypass | Critical | CVE-2024-9989 | The Crypto plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.15. This is d... |
| Cryptobox Panel - Detect | Info |  | Cryptobox was detected. |
| Cryptocurrency Widgets Pack < 2.0 - SQL Injection | Critical | CVE-2022-4059 | The plugin does not sanitise and escape some parameter before using it in a SQL statement via an AJAX action available t... |
| Cryptocurrency Widgets Pack <= 1.8.1 - SQL Injection | Critical | CVE-2022-44588 | Cryptocurrency Widgets Pack Plugin <=1.8.1 for WordPress contains an unauthenticated SQL injection caused by unsanitized... |
| CudaTel Login Panel - Detect | Info |  | CudaTel login panel was detected. |
| Cvent Login Panel - Detect | Info |  | Cvent login panel was detected. |
| Cyber Chef Panel - Detect | Info |  | A Cyber Chef Panel was detected |
| CyberPanel - Command Injection | Critical | CVE-2024-51378 | CyberPanel contains a command injection vulnerability in the /ftp/getresetstatus and /dns/getresetstatus endpoints.The v... |
| CyberPower - Missing Authentication | Critical | CVE-2024-32735 | An issue regarding missing authentication for certain utilities exists in CyberPower PowerPanel Enterprise prior to v2.8... |
| CyberPower - SQL Injection | High | CVE-2024-32738 | A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. |
| CyberPower - SQL Injection | High | CVE-2024-32737 | A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. |
| CyberPower < v2.8.3 - SQL Injection | High | CVE-2024-32736 | A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to . |
| CyberPower < v2.8.3 - SQL Injection | High | CVE-2024-32739 | A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. |
| Cyberoam SSL VPN Panel - Detect | Info |  | Cyberoam SSL VPN panel was detected. |
| Cyberpanel Login Panel - Detect | Info |  | Cyberpanel login panel was detected. |
| D-LINK DNS-320L,DNS-320LW and DNS-327L - Information Disclosure | Medium | CVE-2024-3274 | A vulnerability has been found in D-Link DNS-320L, DNS-320LW and DNS-327L up to 20240403 and classified as problematic. ... |
| D-Link AC Centralized Management System - Default Login | High |  | D-Link AC Centralized Management System default login credentials were discovered. |
| D-Link Central WiFi Manager CWM(100) - Remote Code Execution | Critical | CVE-2019-13372 | /web/Lib/Action/IndexAction.class.php in D-Link Central WiFi Manager CWM(100) before v1.03R0100_BETA6 allows remote atta... |
| D-Link D-View 8 v2.0.1.28 - Authentication Bypass | Critical | CVE-2023-5074 | Use of a static key to protect a JWT token used in user authentication can allow an for an authentication bypass in D-Li... |
| D-Link DAR-8000-10 - Command Injection | Critical | CVE-2023-4542 | D-Link DAR-8000-10 version has an operating system command injection vulnerability. The vulnerability originates from th... |
| D-Link DIR-605 - Information Disclosure | High | CVE-2021-40655 | An informtion disclosure issue exists in D-LINK-DIR-605 B2 Firmware Version - 2.01MT. An attacker can obtain a user name... |
| D-Link DIR-615 - Unauthorized Access | Critical | CVE-2021-42627 | D-Link DIR-615 devices with firmware 20.06 are susceptible to unauthorized access. An attacker can access the WAN config... |
| D-Link DIR-803 - Authentication Bypass | High | CVE-2025-14528 | An authentication bypass vulnerability exists in D-Link DIR-803 routers (firmware A1 1.04 and earlier). By manipulating ... |
| D-Link DIR-816L - Improper Access Control | High | CVE-2022-28955 | D-Link DIR-816L_FW206b01 is susceptible to improper access control. An attacker can access folders folder_view.php and c... |
| D-Link DIR-859 - Information Disclosure | Critical | CVE-2024-57045 | A critical information disclosure vulnerability exists in D-Link devices where sensitive device account information incl... |
| D-Link DNS-320 - Remote Code Execution | Critical | CVE-2019-16057 | The login_mgr.cgi script in D-Link DNS-320 through 2.05.B10 is vulnerable to remote command injection. |
| D-Link DSL-2750B Devices Command Injection Vulnerability | Critical | CVE-2016-20017 | D-Link DSL-2750B devices before 1.05 allow remote unauthenticated command injection via the
login.cgi cli parameter. |
| D-Link NAS - Command Injection via Group Parameter | Critical | CVE-2024-10915 | A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been rated as critic... |
| D-Link NAS - Command Injection via Name Parameter | Critical | CVE-2024-10914 | A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been declared as cri... |
| D-Link NAS `sc_mgr.cgi` - Remote Code Execution | Critical |  | The D-Link NAS interface sc_mgr.cgi contains a command execution vulnerability that allows attackers to execute arbitrar... |
| D-Link Network Attached Storage - Backdoor Account | Critical | CVE-2024-3272 | A vulnerability, which was classified as very critical, has been found in D-Link DNS-320L, DNS-325, DNS-327L and DNS-340... |
| D-Link Network Attached Storage - Command Injection and Backdoor Account | Critical | CVE-2024-3273 | UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in D-Link DNS-320L, DNS-325, D... |
| D-Link Routers - Remote Code Execution | Critical | CVE-2019-16920 | D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565 contain an unauthenticated remote code execution vulne... |
| DAEnetIP4 METO v1.25 - Session Hijacking | High | CVE-2025-28242 | DAEnetIP4 METO v1.25 contains improper session management in the /login_ok.htm endpoint, letting attackers hijack sessio... |
| DATAGERRY - Improper Access Control | High | CVE-2024-50967 | The /rest/rights/ REST API endpoint in Becon DATAGerry through 2.2.0 contains an Incorrect Access Control vulnerability.... |
| DATAGERRY - REST API Auth Bypass | Critical | CVE-2024-46627 | Incorrect access control in BECN DATAGERRY v2.2 allows attackers to execute arbitrary commands via crafted web requests. |
| DELL iDRAC9 - Default Login | High |  | DELL iDRAC9 default login credentials was discovered. |
| DPLUS Dashboard Panel - Detect | Info |  | DPLUS Dashboard panel was detected. |
| DQS Superadmin Login Panel - Detect | Info |  | DQS Superadmin login panel was detected. |
| DVWA Default Login | Critical |  | Damn Vulnerable Web App (DVWA) is a test application for security professionals. The hard coded credentials are part of ... |
| Dahua IPC/VTH/VTO - Authentication Bypass | Critical | CVE-2021-33045 | The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can by... |
| Dahua IPC/VTH/VTO - Authentication Bypass | Critical | CVE-2021-33044 | Some Dahua products contain an authentication bypass during the login process. Attackers can bypass device identity auth... |
| Dahua Security - Configuration File Disclosure | Critical | CVE-2017-7925 | A Password in Configuration File issue was discovered in Dahua DH-IPC-HDBW23A0RN-ZS, DH-IPC-HDBW13A0SN, DH-IPC-HDW1XXX, ... |
| Dahua Web Service Panel - Detect | Info |  | A Dahua admin login panel was detected. |
| Danswer - Insecure Direct Object Reference | Medium | CVE-2024-9617 | The application does not verify whether the attacker is the creator of the file, allowing the attacker to directly call ... |
| Dapr Dashboard 0.1.0-0.10.0 - Improper Access Control | High | CVE-2022-38817 | Dapr Dashboard 0.1.0 through 0.10.0 is susceptible to improper access control. An attacker can possibly obtain sensitive... |
| Darktrace Threat Visualizer Login Panel - Detect | Info |  | Darktrace Threat Visualizer login panel was detected. |
| Dashy Panel - Detect | Info |  |  |
| Dassault Systèmes DELMIA Apriso (up to 2025) - Insecure Deserialization | Critical | CVE-2025-5086 | A deserialization of untrusted data vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could l... |
| DataEase <= 2.4.1 - Sensitive Information Exposure | Medium | CVE-2024-30269 | DataEase, an open source data visualization and analysis tool, has a database configuration information exposure vulnera... |
| DataEase v2.10.2 - JWT Signature Verification Bypass | Critical | CVE-2024-47073 | DataEase is an open source data visualization analysis tool that helps users quickly analyze data and gain insights into... |
| DataHub Metadata - Default Login | High |  | DataHub Metadata contains a default login vulnerability.  An attacker can obtain access to user accounts and access sens... |
| DataTaker DT80 dEX 1.50.012 - Information Disclosure | Critical | CVE-2017-11165 | DataTaker DT80 dEX 1.50.012 is susceptible to information disclosure. A remote attacker can obtain sensitive credential ... |
| Datadog Login Panel - Detect | Info |  | Datadog login panel was detected. |
| Dataease - Default Login | High |  | Dataease has a built-in account demo/dataease, and many developers forget to delete or change the account password.
As a... |
| Dataease - Login Panel | Info |  | Dataease Login Panel is discovered |
| Datagerry - Default Login | High |  | Datagerry was using default username and password was discovered. |
| Datagerry Panel - Detect | Info |  | Datagerry panel was discovered. |
| Dataiku - Default Login | High |  | Dataiku contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive info... |
| Dataiku Panel - Detect | Info |  | Dataiku panel was detected. |
| Davantis Video Analytics Panel - Detect | Info |  | Davantis Video Analytics panel was detected. |
| DaybydayCRM Login Panel - Detect | Info |  | DaybydayCRM login panel was detected. |
| DbGate Web Client Management - Panel Detect | Info |  | The DbGate Web Client Management Panel is detected on the target system. |
| Debug Endpoint pprof - Exposure Detection | High | CVE-2019-11248 | The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. This debugging endpoint ca... |
| Dede CMS - SQL Injection | Critical |  | Dede CMS contains a SQL injection vulnerability which allows remote unauthenticated users to inject arbitrary SQL statem... |
| DedeCMS 5.7 - SQL Injection | Critical | CVE-2017-17731 | DedeCMS through 5.7 has SQL Injection via the $_FILES superglobal to plus/recommend.php. |
| DedeCMS 5.7.87 - Directory Traversal | Medium | CVE-2023-2059 | Directory traversal vulnerability in DedeCMS 5.7.87 allows reading sensitive files via the $activepath parameter. |
| DedeCMS 5.7SP2 - Cross-Site Request Forgery/Remote Code Execution | High | CVE-2018-7700 | DedeCMS 5.7SP2 is susceptible to cross-site request forgery with a corresponding impact of arbitrary code execution beca... |
| DefectDojo Login Panel - Detect | Info |  | DefectDojo login panel was detected. |
| Defender Security < 4.1.0 - Protection Bypass (Hidden Login Page) | Medium | CVE-2023-5089 | The Defender Security WordPress plugin before 4.1.0 does not prevent redirects to the login page via the auth_redirect W... |
| Dell BMC Panel - Detect | Info |  | Dell BMC web panel was detected. |
| Dell EMC Avamar and Integrated Data Protection Appliance Installation Manager - Invalid Access Control | Critical | CVE-2018-1217 | Avamar Installation Manager in Dell EMC Avamar Server 7.3.1, 7.4.1, and 7.5.0, and Dell EMC Integrated Data Protection A... |
| Dell EMC RecoverPoint Panel - Detect | Info |  | Dell EMC RecoverPoint management panel was detected. |
| Dell IDRAC Panel - Detect | Info |  | Dell IDRAC panel was detected. |
| Dell Laser Printer - Unauthenticated Detect | High |  | The Dell Laser Printer web interface was accessible without authentication. |
| Dell OpenManage Switch Administrator Login Panel - Detect | Info |  | Dell OpenManage Switch Administrator login panel was detected. |
| Dell Remote Web Access Panel - Detect | Info |  | Dell Remote Web Access is a secure web portal that enables remote access to files, applications, and desktops hosted on ... |
| Dell iDRAC6/7/8 Default Login | High |  | Dell iDRAC6/7/8 default login information was discovered. The default iDRAC username and password are widely known, and ... |
| Delmia Apriso - Pre-Authentication Unsafe .NET Object Deserialization | Critical | CVE-2024-3300 | An unsafe .NET object deserialization vulnerability in DELMIA Apriso Release 2019 through Release 2024 could lead to pre... |
| Delta Controls Admin Login Panel - Detect | Info |  | Delta Controls admin login panel was detected. |
| Deluge - Default Login | High |  | Deluge Default login credentials were discovered. |
| Deluge WebUI Login Panel - Detect | Info |  | Deluge WebUI login panel was detected. |
| Dependency-Track Login - Panel | Info |  | Dependency Track login panel was discovered. |
| Dericam Login Panel - Detect | Info |  | Dericam login panel was detected. |
| Desktop Portal VMware Horizon DaaS Trade Platform | Info |  |  |
| DevDojo Voyager - Default login | High |  | DevDojo Voyager contains default credentials when run with dummy data. An attacker can obtain access to user accounts an... |
| DevDojo Voyager <=1.8.0 - Arbitrary File Read | High | CVE-2024-55415 | DevDojo Voyager through 1.8.0 is vulnerable to path traversal at the /admin/compass. |
| Devika - Local File Inclusion | High | CVE-2024-5334 | A local file read vulnerability exists in the stitionai/devika repository, affecting the latest version. The vulnerabili... |
| Devika v1 - Path Traversal | Critical | CVE-2024-40422 | The snapshot_path parameter in the /api/get-browser-snapshot endpoint in stitionai devika v1 is susceptible to a path tr... |
| Devtron Panel Login Panel - Detect | Info |  | Devtron Panel login panel was detected. |
| Dex Authentication - Panel | Info |  |  |
| Dialogic XMS Admin Console - Default Login | High |  | Dialogic XMS Admin Console was using default credentials and it was discovered. |
| Dialogic XMS Admin Console - Detect | Info |  |  |
| Diced Zipline - Detect | Info |  | Zipline panel was detected. |
| Dify - User Enumeration via "Account not found" Message | Medium | CVE-2025-11750 | A user enumeration vulnerability exists in langgenius/dify, where the login API leaks information about whether a user a... |
| Dify v1.9.1 - Broken Access Control | Medium | CVE-2025-63387 | Dify v1.9.1 contains an insecure permissions vulnerability caused by lack of authorization checks in /console/api/system... |
| Digital Watchdog - Default Login | High |  | Digital Watchdog default login credentials were discovered. |
| Digital Watchdog - Detect | Info |  | Digital Watchdog panel was detected. |
| Digital Watchdog DW Spectrum Server 4.2.0.32842 - Information Disclosure | High | CVE-2022-34534 | Digital Watchdog DW Spectrum Server 4.2.0.32842 allows attackers to access sensitive infromation via a crafted API call. |
| DirectAdmin Login Panel - Detect | Info |  | DirectAdmin login panel was detected. |
| Directum Login Panel - Detect | Info |  | Directum login panel was detected. |
| Discuz Panel - Detection | Info |  |  |
| Django QuerySet.order_by - SQL Injection | Critical | CVE-2021-35042 | Django 3.1.x before 3.1.13 and 3.2.x before 3.2.5 contain a SQL injection caused by untrusted input in QuerySet.order_by... |
| Django RasterField - SQL Injection | High | CVE-2026-1207 | Django < 6.0.2, < 5.2.11, and < 4.2.28 contains a SQL injection caused by improper sanitization of the band index parame... |
| Django SQL Injection | High | CVE-2020-9402 | Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allow SQL injection if untrusted data is used as a t... |
| Docassemble - Local File Inclusion | High | CVE-2024-27292 | Docassemble is an expert system for guided interviews and document assembly. The vulnerability allows attackers to gain ... |
| Doccano - Default Login | High |  | Detected the Doccano data labeling platform was using default administrator credentials (admin:password). An attacker co... |
| Docebo eLearning Login Panel - Detect | Info |  | Docebo eLearning login panel was detected. |
| Dockge Panel - Detect | Info |  | A fancy, easy-to-use and reactive self-hosted docker compose.yaml stack-oriented manager |
| DocuWare - Detect | Info |  | DocuWare panel was detected. |
| Docusaurus Gists Plugin < 4.0.0 - GitHub Personal Access Token Exposure | High | CVE-2025-53624 | The Docusaurus gists plugin adds a page to your Docusaurus instance, displaying all public gists of a GitHub user. docus... |
| Dokploy Login Panel - Detect | Info |  | Dokploy login panel was detected. |
| Dokuwiki Login Panel - Detect | Info |  | Dokuwiki login panel was detected. |
| Dolibarr Login Panel - Detect | Info |  | Dolibarr login panel was detected. |
| Dolibarr Unauthenticated Contacts Database Theft | High | CVE-2023-33568 | An issue in Dolibarr 16 before 16.0.5 allows unauthenticated attackers to perform a database dump and access a company's... |
| Doris Panel - Detect | Info |  | Doris panel detection template. |
| Dotclear Admin Login Panel - Detect | Info |  | Dotclear admin login panel was detected. |
| Download Monitor <= 4.7.60 - Sensitive Information Exposure | High | CVE-2022-45354 | The Download Monitor plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and includi... |
| Dradis Professional Edition Login Panel - Detect | Info |  | Dradis Professional Edition login panel was detected. |
| DragonFly Login - Panel | Info |  | Dragonfly Login Panel was discovered |
| Dragonfly - Default Login | High |  | Dragonfly was using the default username, and the password was discovered. |
| DrayTek - Remote Code Execution | Critical | CVE-2020-8515 | DrayTek Vigor2960 1.3.1_Beta, Vigor3900 1.4.4_Beta, and Vigor300B 1.3.3_Beta, 1.4.2.1_Beta, and 1.4.4_Beta devices allow... |
| DrayTek Vigor - Command Injection | Critical | CVE-2020-15415 | DrayTek Vigor devices contain a command injection vulnerability in the cvmcfgupload functionality. The vulnerability all... |
| Draytek VigorConnect 1.6.0-B - Local File Inclusion | High | CVE-2021-20123 | Draytek VigorConnect 1.6.0-B3 is susceptible to local file inclusion in the file download functionality of the DownloadF... |
| Draytek VigorConnect 6.0-B3 - Local File Inclusion | High | CVE-2021-20124 | Draytek VigorConnect 1.6.0-B3 is susceptible to local file inclusion in the file download functionality of the WebServle... |
| Drone CI Login Panel - Detect | Info |  | Drone CI login panel was detected. |
| Drupal - Remote Code Execution | High | CVE-2019-6340 | Drupal 8.5.x before 8.5.11 and Drupal 8.6.x before 8.6.10 V contain certain field types that do not properly sanitize da... |
| Duomi CMS - SQL Injection | Critical |  | Duomi CMS contains a SQL injection vulnerability. An attacker can possibly obtain sensitive information from a database,... |
| Dynatrace Login Panel - Detect | Info |  | Dynatrace login panel was detected. |
| DzzOffice Installation Panel - Detect | High |  | DzzOffice installation panel was detected. |
| DzzOffice Login Panel - Detect | Info |  | DzzOffice login panel was detected. |
| E-mobile Panel - Detect | Info |  | E-mobile panel was detected. |
| ECTouch v2 - SQL Injection | Critical | CVE-2023-39560 | ECTouch v2 was discovered to contain a SQL injection vulnerability via the $arr['id'] parameter at \default\helpers\inse... |
| EMQX Login Panel - Detect | Info |  | EMQX login panel was detected. |
| EOS HTTP Browser | Medium |  |  |
| ERPNext - Default Login | High |  | Detects ERPNext installations that use the default Administrator/admin login credentials. This misconfiguration grants a... |
| ESPHome - Authentication Bypass | High | CVE-2025-57808 | ESPHome 2025.8.0 contains an authentication bypass caused by improper validation of base64-encoded Authorization values ... |
| ESPHome Login Panel - Detect | Info |  | ESPHome login panel was detected. |
| ESXi System Login Panel - Detect | Info |  | ESXi System login panel was detected. |
| ETQ Reliance - Authentication Bypass via Trailing Space | Critical | CVE-2025-34143 | An authentication bypass vulnerability exists in ETQ Reliance on the CG (legacy) platform. The application allowed login... |
| ETQ Reliance - Reflected XSS via SQLConverterServlet | Medium | CVE-2025-34141 | A reflected cross-site scripting (XSS) vulnerability exists in ETQ Reliance CG (legacy) platform within the SQLConverter... |
| EVSE Web Interface Panel - Detection | Info |  |  |
| EVlink City < R8 V3.4.0.1 - Authentication Bypass | Critical | CVE-2021-22707 | A CWE-798: Use of Hard-coded Credentials vulnerability exists in EVlink City (EVC1S22P4 / EVC1S7P4 all versions prior to... |
| EVlink Local Controller - Detection | Info |  |  |
| EWM Manager Login Panel - Detect | Info |  | EWM Manager login panel was detected. |
| EWWW Image Optimizer <= 7.2.0 - Unauthenticated Information Disclosure | Medium |  | The EWWW Image Optimizer plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and... |
| Eagle For Apache Kakfa Login - Detect | Info |  | EFAK is a visualization and management software that allows one to query, visualize, alert on, and explore their metrics... |
| Easy Diffusion Panel - Detect | Info |  | Easy Diffusion (formerly Stable Diffusion UI) was detected. Easy Diffusion is a one-click, self-hosted Stable Diffusion ... |
| EasyCVR video management - Users Information Exposure | High |  | EasyCVR video management platform has leaked user information |
| EasyJOB Login Panel - Detect | Info |  | EasyJOB login panel was detected. |
| EasyReport - Default Login | High |  |  |
| EasyVista Login Panel - Detect | Info |  | EasyVista login panel was detected. |
| Eclipse BIRT Panel - Detect | Info |  | Eclipse BIRT (Business Intelligence Reporting Tool) detected |
| Eclipse Jetty - Directory Listing Enabled | Low |  | Eclipse Jetty server has directory listing enabled, which exposes the directory structure and file names to unauthentica... |
| Eclipse Theia IDE Panel - Detect | Info |  | Detected Eclipse Theia IDE panel was exposed. Theia is an extensible platform for multi-language Cloud and Desktop IDEs.... |
| Edito CMS - Sensitive Data Leak | High | CVE-2024-4836 | Web services managed by Edito CMS (Content Management System) in versions from 3.5 through 3.25 leak sensitive data as t... |
| EfroTech Timetrax v8.3 - Sql Injection | High | CVE-2024-39250 | EfroTech Timetrax v8.3 was discovered to contain an unauthenticated SQL injection vulnerability via the q parameter in t... |
| Eko Charger Management Console Login Panel - Detect | Info |  | Eko Charger Management Console login panel was detected. |
| Eko Software Update Panel - Detect | Info |  | Eko software update panel for embedded systems was detected. An attacker can possibly upload a software image or restart... |
| EkoAPI Admin Panel - Detect | Info |  | EkoAPI Admin panel was detected. |
| Ektron CMS Login Panel - Detect | Info |  | Ektron CMS login panel was detected. |
| ElasticSearch - Default Login | High |  | Elasticsearch default credentials were discovered. |
| Elber ESE DVB-S/S2 - Authentication Bypass | Critical | CVE-2025-0674 | Multiple Elber products are affected by an authentication bypass vulnerability which allows unauthorized access to the p... |
| Electrolink FM/DAB/TV Transmitter - Credentials Disclosure | High | CVE-2025-28228 | A credential exposure vulnerability in Electrolink 500W, 1kW, 2kW Medium DAB Transmitter Web v01.09, v01.08, v01.07, and... |
| Elemiz Network Manager Login Panel - Detect | Info |  | Elemiz Network Manager login panel was detected. |
| Elestio Memos <= v0.24.0 - Server-Side Request Forgery | Critical | CVE-2025-22952 | elestio memos v0.23.0 is vulnerable to Server-Side Request Forgery (SSRF) due to insufficient validation of user-supplie... |
| Email Subscribers by Icegram Express <= 5.7.20 - Unauthenticated SQL Injection via Hash | Critical | CVE-2024-4295 | Email Subscribers by Icegram Express <= 5.7.20 contains an unauthenticated SQL injection vulnerability via the hash para... |
| Emby Login Panel - Detect | Info |  | Emby login panel was detected. |
| Emby Server - Authentication Bypass | Critical | CVE-2023-33193 | Emby Server is a user-installable home media server which stores and organizes a user's media files of virtually any for... |
| Emerson Network Power IntelliSlot Web Card Panel - Detect | Info |  | Emerson Network Power IntelliSlot Web Card panel was detected. |
| Emqx Default Admin Login | High |  | Emqx default admin credentials were discovered. |
| EnGenius EnShare IoT Gigabit Cloud Service 1.4.11 Root Remote Code Execution | Critical | CVE-2025-34035 | An OS command injection vulnerability exists in EnGenius EnShare Cloud Service version 1.4.11 and earlier.The usbinterac... |
| Enablix Panel - Detect | Info |  | Enablix panel was detected. |
| Endpoint Protector Login Panel - Detect | Info |  | Endpoint Protector - Reporting and Administration Tool login panel was detected. |
| EnjoyRMIS - SQL Injection | High |  | EnjoyRMIS GetOAById has a SQL injection vulnerability, through which an attacker can obtain sensitive database informati... |
| Envoy Proxy - Metadata Disclosure | Info |  | Detected misconfigured Envoy proxy instances that disclose sensitive information about the target infrastructure via the... |
| Episerver Login Panel | Info |  | Episerver login panel was detected. |
| Error Log Viewer By WP Guru <= 1.0.1.3 - Missing Authorization to Arbitrary File Read | High | CVE-2024-12849 | The Error Log Viewer By WP Guru plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and inc... |
| Erxes <0.23.0 - Cross-Site Scripting | Critical | CVE-2021-32853 | Erxes before 0.23.0 contains a cross-site scripting vulnerability. The value of topicID parameter is not escaped and is ... |
| Esafenet CDG NetSecConfigAjax - Sql Injection | High |  | The `state` parameter of the `NetSecConfigAjax` interface of the Yisaitong electronic document security management syste... |
| Esafenet CDG NoticeAjax - Sql Injection | High |  | CDGServer3 NoticeAjax Interface Sql Injection. |
| Eset Protect Login Panel - Detect | Info |  | Login page for Eset Protect |
| Eslint Ignore File Exposure | Low |  | Eslint Ignore File was exposed. |
| Espec Web Controller - Panel | Info |  | Espec Web Controller panel was discovered. |
| Essential Blocks < 4.4.3 - Local File Inclusion | Critical | CVE-2023-6623 | Wordpress Essential Blocks plugin prior to 4.4.3 was discovered to be vulnerable to a significant Local File Inclusion v... |
| EuroTel ETL3100 - Default Login | High |  | The TV and FM transmitter uses a weak set of default administrative credentials that can be guessed in remote password a... |
| EventON (Free < 2.2.8, Premium < 4.5.5) - Information Disclosure | Medium | CVE-2024-0235 | The EventON WordPress plugin before 4.5.5, EventON WordPress plugin before 2.2.7 do not have authorization in an AJAX ac... |
| EventON <= 2.1 - Missing Authorization | Medium | CVE-2023-2796 | The EventON WordPress plugin before 2.1.2 lacks authentication and authorization in its eventon_ics_download ajax action... |
| EventON Lite < 2.1.2 - Arbitrary File Download | Medium | CVE-2023-3219 | The plugin does not validate that the event_id parameter in its eventon_ics_download ajax action is a valid Event, allow... |
| Eventum Login Panel - Detect | Info |  | Eventum login panel was detected. |
| Evertz SDVN 3080ipx-10G - Unauthenticated Arbitrary Command Injection | Critical | CVE-2025-4009 | The Evertz SDVN 3080ipx-10G is a High Bandwidth Ethernet Switching Fabric for Video Application. This device exposes a w... |
| ExaGrid Manager Login Panel - Detect | Info |  | ExaGrid Manager login panel was detected. |
| Exchange Server - Remote Code Execution | Critical | CVE-2021-34473 | Microsoft Exchange Server is vulnerable to a remote code execution vulnerability. This CVE ID is unique from CVE-2021-31... |
| Exolis Engage Panel - Detect | Info |  | Exolis Engage panel was detected. |
| Export WP Page to Static HTML <= 4.3.4 - Cookie Exposure | Critical | CVE-2025-11693 | Export WP Page to Static HTML & PDF WordPress plugin <= 4.3.4 contains a sensitive information exposure caused by public... |
| Exposed MCP JSON-RPC 2.0 API Detection | Unknown |  | Detects exposed Machine Control Protocol (MCP) servers through JSON-RPC 2.0 API endpoints.
MCP servers often provide adm... |
| Extensive VC Addons for WPBakery page builder < 1.9.1 - Unauthenticated RCE | High | CVE-2023-0159 | The plugin does not validate a parameter passed to the php extract function when loading templates, allowing an unauthen... |
| Extreme NetConfig UI Panel - Detect | Info |  | Extreme NetConfig UI panel was detected. |
| EyesOfNetwork - Hardcoded API Key | Critical | CVE-2020-8657 | An issue was discovered in EyesOfNetwork 5.3. The installation uses the same API key (hardcoded as EONAPI_KEY in include... |
| EyesOfNetwork - Hardcoded API Key & SQL Injection | Critical | CVE-2020-8656 | An issue was discovered in EyesOfNetwork 5.3. The EyesOfNetwork API 2.4.2 is prone to SQL injection, allowing an unauthe... |
| EyouCms v1.6.3 - Information Disclosure | Medium | CVE-2023-37645 | EyouCms v1.6.3 was discovered to contain an information disclosure vulnerability via the component /custom_model_path/re... |
| F-Secure Policy Manager Server Login Panel - Detect | Info |  | F-Secure Policy Manager Server login panel was detected. |
| F-logic DataCube3 - SQL Injection | High | CVE-2024-31750 | SQL injection vulnerability in f-logic datacube3 v.1.0 allows a remote attacker to obtain sensitive information via the ... |
| F5 Admin Interface - Detect | Info |  | Detects F5 Admin Interfaces. |
| F5 BIG-IP TMUI - Remote Code Execution | Critical | CVE-2020-5902 | F5 BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the Traffic ... |
| F5 BIG-IP iControl - REST Auth Bypass RCE | Critical | CVE-2022-1388 | F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.... |
| F5 BIG-IP iControl REST Panel - Detect | Info |  | F5 BIG-IP iControl REST API discovered and may be vulnerable to an authentication bypass (not tested). |
| F5 iControl REST - Remote Command Execution | Critical | CVE-2021-22986 | F5 iControl REST interface is susceptible to remote command execution. An attacker can execute malware, obtain sensitive... |
| FASTPANEL Login Panel - Detect | Info |  | FASTPANEL login panel was detected. |
| FOG Project < 1.5.10.34 - Remote Command Execution | Critical | CVE-2024-39914 | FOG is a cloning/imaging/rescue suite/inventory management system. Prior to 1.5.10.34, packages/web/lib/fog/reportmaker.... |
| FOSSBilling Panel - Detect | Info |  | FOSSBilling panel has been detected. |
| FREEDOM Administration - Default Login | Critical | CVE-2025-26793 | The Web GUI configuration panel of Hirsch (formerly Identiv and Viscount) Enterphone MESH through 2024 ships with defaul... |
| FUEL CMS 1.4.1 - Remote Code Execution | Critical | CVE-2018-16763 | FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter parameter or the preview/ data parameter. |
| FUXA <= 1.2.7 - Hardcoded JWT Secret Authentication Bypass | Critical | CVE-2025-69971 | FUXA v1.2.7 contains a hardcoded credentials vulnerability caused by use of a hard-coded secret key in server/api/jwt-he... |
| Falcosidekick UI Login Panel - Detect | Info |  | Falcosidekick UI login panel was detected. |
| Faraday Login Panel - Detect | Info |  | Faraday login panel was detected. |
| FastAdmin < V1.3.4.20220530 - Path Traversal | Medium | CVE-2024-7928 | A vulnerability, which was classified as problematic, has been found in FastAdmin up to 1.3.3.20220121. Affected by this... |
| Fastify Swagger-UI - Information Disclosure | Medium | CVE-2024-22207 | fastify-swagger-ui is a Fastify plugin for serving Swagger UI.  Prior to 2.1.0, the default configuration of `@fastify/s... |
| Fastly Backend Server Information Disclosure | Low |  | Detected Fastly CDN misconfigured and exposing backend/origin server IP addresses or hostnames in HTTP response headers. |
| Feiyuxing Enterprise-Level Management System - Default Login | High |  | Attackers can log in through admin:admin, check the system status, and configure the device. |
| Femtocell Access Point Panel - Detect | Info |  | Femtocell Access Point panel was discovered. |
| Fides Privacy Center ≤ 2.39.1 - Server-Side URL Disclosure | Medium | CVE-2024-31223 | Fides versions 2.19.0 to before 2.39.2rc0 contain an information disclosure caused by unauthenticated HTTP GET request t... |
| File Browser Login Panel - Detect | Info |  |  |
| FileCatalyst File Transfer Solution - Detect | Info |  | Detects the presence of FileCatalyst file transfer solution login panel |
| FileGator Panel - Detect | Info |  |  |
| FileMage Gateway - Directory Traversal | High | CVE-2023-39026 | Directory Traversal vulnerability in FileMage Gateway Windows Deployments v.1.10.8 and before allows a remote attacker t... |
| Filegator - Default-Login | High |  |  |
| Financial Transaction Manager Login Panel - Detect | Info |  | Financial Transaction Manager login panel was detected. |
| Fireware XTM Login Panel - Detect | Info |  | Fireware XTM login panel was detected. |
| Flahscookie Superadmin Login Panel - Detect | Info |  | Flahscookie Superadmin login panel was detected. |
| Flatpress < 1.3 - Path Traversal | Critical | CVE-2023-0947 | Path Traversal in GitHub repository flatpressblog/flatpress prior to 1.3. |
| FleetCart 4.1.1 - Information Disclosure | Medium | CVE-2024-5230 | Issues with information disclosure in redirect responses. Accessing the majority of the website's pages exposes sensitiv... |
| FlexNet Operations Panel - Detect | Info |  | FlexNet Operations was detected — a software monetization platform. |
| Flexible Checkout Fields for WooCommerce <= 2.3.1 - Unauthenticated Arbitrary Plugin Settings Update | High | CVE-2020-36731 | The Flexible Checkout Fields for WooCommerce  plugin for WordPress is vulnerable to Unauthenticated Arbitrary Plugin Set... |
| FlightPath Login Panel - Detect | Info |  | FlightPath login panel was detected. |
| Flock Safety Camera Admin Panel - Detect | Info |  | Detected the Flock Safety camera admin panel. |
| Flowise 1.6.5 - Authentication Bypass | High | CVE-2024-31621 | The flowise version <= 1.6.5 is vulnerable to authentication bypass vulnerability. |
| Flowise <= 1.8.2 Authentication Bypass | High | CVE-2024-8181 | An Authentication Bypass vulnerability exists in Flowise version 1.8.2. This could allow a remote, unauthenticated attac... |
| Flowise <= 3.0.5 - Account Takeover | Critical | CVE-2025-58434 | Flowise versions 3.0.5 and earlier had a vulnerability in the forgot-password endpoint, which returned valid reset token... |
| Flowise Panel - Detect | Info |  | Flowise panel was detected. Flowise is an open-source drag-and-drop LLM flow builderand AI agent platform. Exposed insta... |
| FlureeDB Admin Console Login Panel - Detect | Info |  | FlureeDB Admin Console login panel was detected. |
| FootPrints Service Core Login Panel - Detect | Info |  | FootPrints Service Core login panel was detected. |
| Forcepoint Appliance | Info |  |  |
| ForgeRock OpenAM <7.0 - Remote Code Execution | Critical | CVE-2021-35464 | ForgeRock AM server before 7.0 has a Java deserialization vulnerability in the jato.pageSession parameter on multiple pa... |
| Fork CMS - Installer | Critical |  | Fork CMS installer page was detected. |
| Form-Maker < 1.15.20 - Unauthenticated Arbitrary File Upload | Critical | CVE-2023-4666 | The plugin does not validate signatures when creating them on the server from user input, allowing unauthenticated users... |
| Formidable Forms < 2.05.02 - Cross-Site Scripting | Medium | CVE-2017-20192 | Formidable Form Builder for WordPress versions before 2.05.03 contains a stored cross-site scripting caused by insuffici... |
| FortiADC Login Panel - Detect | Info |  | FortiADC login panel was detected. |
| FortiAP Login Panel - Detect | Info |  | FortiAP login panel was detected. |
| FortiAuthenticator - Detect | Info |  | The FortiAuthenticator panel was detected. |
| FortiClient EMS - Authentication Bypass | High | CVE-2026-35616 | Detects whether Fortinet hotfix FG-IR-26-099 for CVE-2026-35616 is missing by comparing behavioral responses from a cert... |
| FortiClient Endpoint Management Server Panel - Detect | Info |  |  |
| FortiOS Admin Login Panel - Detect | Info |  | FortiOS admin login panel was detected. |
| FortiRecorder Panel - Detect | Info |  | FortiRecorder Panel was discovered. |
| FortiSandbox Panel - Detect | Info |  | Detected exposed FortiSandbox login and management interfaces. |
| FortiWLM - Directory Traversal | Critical | CVE-2023-34990 | A relative path traversal in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to ex... |
| FortiWeb - Cross Site Scripting | Medium | CVE-2021-22122 | FortiWeb 6.3.0 through 6.3.7 and versions before 6.2.4 contain an unauthenticated cross-site scripting vulnerability. Im... |
| Fortinet FortiClientEMS 7.4.4 - SQL Injection | Critical | CVE-2026-21643 | Fortinet FortiClientEMS version 7.4.4 and earlier contains an unauthenticated SQL injection vulnerability in the /api/v1... |
| Fortinet FortiDDoS Panel | Info |  | Fortinet FortiDDoS panel was detected. |
| Fortinet FortiMail Login Panel - Detect | Info |  | Fortinet FortiMail login panel was detected. |
| Fortinet FortiNAC Login Panel - Detect | Info |  | Fortinet FortiNAC login panel was detected. |
| Fortinet FortiOS - Credentials Disclosure | Critical | CVE-2018-13379 | Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6... |
| Fortinet FortiOS Management Interface Panel - Detect | Info |  | Fortinet FortiOS Management interface panel was detected. |
| Fortinet FortiSIEM - OS Command Injection | Critical | CVE-2025-25256 | Fortinet FortiSIEM 6.7.9 < version <= 7.3.1 contains an OS command injection caused by improper neutralization of specia... |
| Fortinet FortiSIEM - OS Command Injection | Critical | CVE-2024-23108 | FortiSIEM versions 6.4.0 through 7.1.1 contain an OS command injection vulnerability in the Phoenix Monitor service. The... |
| Fortinet FortiSandbox Panel - Detect | Info |  | Fortinet FortiSandbox login panel was discovered. |
| Fortinet FortiTester Login Panel - Detect | Info |  | Fortinet FortiTester login panel was detected. |
| Fortinet FortiWLM Login Panel - Detect | Info |  | Fortinet FortiWLM login panel was detected. |
| Fortinet FortiWeb - SQL Injection | Critical | CVE-2025-25257 | An improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability [CWE-89] in FortiW... |
| Fortinet FortiWeb Login Panel - Detect | Info |  | Fortinet FortiWeb login panel was detected. |
| Fortinet Forticlient Endpoint Management Server - SQL Injection | Critical | CVE-2023-48788 | A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS versio... |
| Fortinet Login Panel - Detect | Info |  | Fortinet login panel was detected. |
| Fortra FileCatalyst Workflow <= v5.1.6 - SQL Injection | Critical | CVE-2024-5276 | A SQL Injection vulnerability in Fortra FileCatalyst Workflow allows an attacker to modify application data.  Likely im... |
| Fortra GoAnywhere MFT - Authentication Bypass | Critical | CVE-2024-0204 | Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via ... |
| Four-Faith F3x36 - Authentication Bypass | Critical | CVE-2024-9643 | Four-Faith F3x36 router with firmware v2.0.0 contains an authentication bypass caused by hard-coded credentials in the a... |
| FoxCMS v.1.2.5 - Remote Code Execution | Critical | CVE-2025-29306 | An issue in FoxCMS v.1.2.5 allows a remote attacker to execute arbitrary code via the case display page in the index.htm... |
| Franklin Fueling Systems Colibri Controller Module 1.8.19.8580 - Local File Inclusion | High | CVE-2021-46417 | Franklin Fueling Systems Colibri Controller Module 1.8.19.8580 is susceptible to local file inclusion because of insecur... |
| Frappe Helpdesk Login Panel - Detect | Info |  | Frappe Helpdesk products was detected. |
| Frappe Panel - Detect | Info |  | Frappe ERPNext Login Panel was discovered. |
| Free5gc 3.2.1 - Information Disclosure | High | CVE-2022-38870 | Free5gc 3.2.1 is susceptible to information disclosure. An attacker can possibly obtain sensitive information, modify da... |
| FreeIPA - XML Entity Injection | High | CVE-2022-2414 | Access to external entities when parsing XML documents can lead to XML external entity (XXE) attacks. This flaw allows a... |
| FreeIPA Identity Management Login Panel - Detect | Info |  | FreeIPA Identity Management login panel was detected. |
| FreePBX - CVE-2025-57819 Backdoor | High |  | FreePBX backdoor cleanup script used in 0-day exploitation of CVE-2025-57819 was detected. |
| FreePBX - Default Admin Credentials | High |  | Detected FreePBX administration panel was using default admin credentials (admin:admin). An attacker could gain full adm... |
| FreePBX Admin Panel - Detect | Info |  | FreePBX admin panel was detected. |
| FreshRSS Fever API - Exposure | Low |  | Detected an exposed FreshRSS instance with the Fever API enabled, which could allow unauthorized access to RSS feed data... |
| FreshRSS Google Reader API Exposure | Low |  | Detected an exposed FreshRSS instance with the Google Reader API enabled, which could have allowed unauthorized access t... |
| Freshrss Panel - Detect | Info |  | Freshrss panel has been detected. |
| Friendica Panel - Detect | Info |  | Friendica Login Panel was detected. |
| Froxlor Server Management Login Panel - Detect | Info |  | Froxlor Server Management login panel was detected. |
| Fuel CMS 1.4.7 - SQL Injection | Critical | CVE-2020-17463 | FUEL CMS 1.4.7 allows SQL Injection via the col parameter to /pages/items, /permissions/items, or /navigation/items. |
| Fuel CMS Login Panel - Detect | Info |  | Fuel CMS login panel was detected. |
| Fuji Xerox Printer Panel - Detect | Info |  | Fuji Xerox printer panel was detected. |
| Fujian Kelixin Communication - Command Injection | Medium | CVE-2024-2621 | A vulnerability was found in Fujian Kelixin Communication Command and Dispatch Platform up to 20240318 and classified as... |
| Fujitsu IP Series - Hardcoded Credentials | High | CVE-2023-38433 | Fujitsu Real-time Video Transmission Gear “IP series” use hard-coded credentials, which may allow a remote unauthent... |
| Fumasoft Cloud - SQL Injection | Critical |  | There is a SQL injection vulnerability in the AjaxMethod.ashx file of Fumasoft Cloud. Attackers can obtain server permis... |
| Fumeng - SQL Injection | Critical |  | The Fumeng AjaxMethod.ashx file has an SQL injection vulnerability. Attackers can use this vulnerability to obtain serve... |
| FusionAuth Admin Panel - Detect | Info |  |  |
| GL.iNET SSID Key Disclosure | High | CVE-2023-31478 | An issue was discovered on GL.iNet devices before 3.216. An API endpoint reveals information about the Wi-Fi configurati... |
| GLPI 9.2/<9.5.6 - Information Disclosure | Medium | CVE-2021-39211 | GLPI 9.2 and prior to 9.5.6 is susceptible to information disclosure via the telemetry endpoint, which discloses GLPI an... |
| GLPI < 10.0.17 - Pre-Auth SQL Injection | Critical | CVE-2025-24799 | A pre-authentication SQL injection vulnerability exists in the Inventory feature of GLPI. The vulnerability is caused by... |
| GLPI <=10.0.2 - Remote Command Execution | Critical | CVE-2022-35914 | GLPI through 10.0.2 is susceptible to remote command execution injection in /vendor/htmlawed/htmlawed/htmLawedTest.php i... |
| GLPI Panel - Detect | Info |  | GLPI panel was detected. |
| GNU Mailman Panel - Detect | Info |  | GNU Mailman panel was detected. Panel exposes all public mailing lists on server. |
| GUDE - Default Login | High |  | GUDE 2301 and 2302 default administrator login credentials (admin:admin) were detected. |
| GXD5 Pacs Connexion Login Panel - Detect | Info |  | GXD5 Pacs Connexion panel was detected. |
| GYRA Master Admin Login Panel - Detect | Info |  | GYRA Master Admin login panel was detected. |
| Ganglia Web Interface (v3.7.3 - v3.7.5) - Cross-Site Scripting | Medium | CVE-2024-52763 | A cross-site scripting (XSS) vulnerability in the component /graph_all_periods.php of Ganglia-web v3.73 to v3.75 allows ... |
| Gargoyle Router Management Utility Admin Login Panel - Detect | Info |  | Gargoyle Router Management Utility admin login panel was detected. |
| GenieACS => 1.2.8 - OS Command Injection | Critical | CVE-2021-46704 | In GenieACS 1.2.x before 1.2.8, the UI interface API is vulnerable to unauthenticated OS command injection via the ping ... |
| GeoServer - Missing Authorization on REST API Index | Medium | CVE-2025-27505 | GeoServer contains a missing authorization vulnerability that allows unauthorized access to the REST API Index page, pot... |
| GeoServer - XML External Entity Injection | High | CVE-2025-58360 | GeoServer 2.26.0 to 2.26.2 and 2.25.6 contains an XML External Entity (XXE) injection caused by insufficient sanitizatio... |
| GeoServer <1.2.2 - Remote Code Execution | Critical | CVE-2022-24816 | Programs run on GeoServer before 1.2.2 which use jt-jiffle and allow Jiffle script to be provided via network request ar... |
| GeoServer Login Panel - Detect | Info |  | GeoServer login panel was detected. |
| Geoserver Admin - Default Login | High |  | Geoserver default admin credentials were discovered. |
| Ghost CMS Content API - SQL Injection | Critical | CVE-2026-26980 | Ghost CMS before 6.19.1 is vulnerable to a blind SQL injection in the /ghost/api/content/tags/ endpoint via the filter p... |
| Ghost CMS Installation Setup - Exposure | High |  | Detected Ghost CMS installation setup wizard accessible without authentication. An unauthenticated remote attacker can n... |
| Gibbon v25.0.0 - Local File Inclusion | Critical | CVE-2023-34598 | Gibbon v25.0.0 is vulnerable to a Local File Inclusion (LFI) vulnerability where it's possible to include the content of... |
| Gira HomeServer 4 Login Panel - Detect | Info |  | Gira HomeServer 4 login panel was detected. |
| GitHub Enterprise - Encrypted SAML | Info |  | This template checks if Encrypted SAML (Security Assertion Markup Language) is enabled on a GitHub Enterprise instance. |
| GitLab CE/EE - Hard-Coded Credentials | Critical | CVE-2022-1162 | GitLab CE/EE contains a hard-coded credentials vulnerability. A hardcoded password was set for accounts registered using... |
| GitLab CE/EE - Information Disclosure | Critical | CVE-2022-0735 | GitLab CE/EE is susceptible to information disclosure. An attacker can access runner registration tokens using quick act... |
| GitLab CE/EE - Remote Code Execution | Critical | CVE-2021-22205 | GitLab CE/EE starting from 11.9 does not properly validate image files that were passed to a file parser, resulting in a... |
| GitLab GraphQL API User Enumeration | Medium | CVE-2021-4191 | An unauthenticated remote attacker can leverage this vulnerability to collect registered GitLab usernames, names, and em... |
| GitLab Instance Explore - Detect | Info |  | This template checks for GitLab instances by verifying if /explore and /api/v4/projects endpoints are accessible with a ... |
| Gitblit - Default Login | High |  | Gitblit Default login credentials were discovered. |
| Gitblit Login Panel - Detect | Info |  | Gitblit login panel was detected — a pure Java stack for managing, viewing, and serving Git repositories. |
| Gitea 1.4.0 - Remote Code Execution | Critical |  | Gitea 1.4.0 is vulnerable to remote code execution. |
| Gitea Login Panel - Detect | Info |  | Gitea login panel was detected. |
| Gitea Public Repository - Exposure | Low |  | Detected publicly accessible Gitea instances exposing repository listings and user information without authentication. |
| Github Enterprise Login Panel - Detect | Info |  | Github Enterprise login panel was detected. |
| Gitlab CE/EE 10.5 - Server-Side Request Forgery | High | CVE-2021-22214 | GitLab CE/EE versions starting from 10.5 are susceptible to a server-side request forgery vulnerability when requests to... |
| Gitlab CE/EE 13.4 - 13.6.2 - Information Disclosure | Medium | CVE-2020-26413 | GitLab CE and EE 13.4 through 13.6.2 is susceptible to Information disclosure via GraphQL. User email is visible. An att... |
| Gitlab Default Login | High |  | Gitlab default login credentials were discovered. |
| Gitlab Login Panel - Detect | Info |  | Gitlab login panel was detected. |
| Gitlab SAML - Detection | Info |  | The presence of SAML-based authentication on GitLab instances. SAML is commonly used for Single Sign-On (SSO) integratio... |
| Gitness - Default Login | High |  | Detected Gitness instance was found using default admin credentials (admin/changeit). |
| Gladinet CentreStack & TrioFox - Local File Inclusion | Medium | CVE-2025-11371 | In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local Fil... |
| Gladinet CentreStack & Triofox - Hardcoded Credentials | Critical | CVE-2025-14611 | Gladinet CentreStack and Triofox < 16.12.10420.56791 contain a hardcoded credentials vulnerability caused by use of hard... |
| Gladinet CentreStack < 16.4.10315.56368 Use of Hard-coded Key Leads to Unauthenticated RCE | Critical | CVE-2025-30406 | Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.56368) has a deserialization vulnerability due to the... |
| Glances - Information Disclosure | High | CVE-2026-32596 | Glances < 4.5.2 contains an information disclosure vulnerability caused by the web server running without authentication... |
| Glimpse Diagnostics - Sensitive Data Exposure | High |  | Detected Glimpse diagnostics endpoint. Glimpse is a .NET diagnostics tool that reveals detailed request information, ser... |
| Glowroot - Panel | Info |  |  |
| GnuBoard5 5.5.16 - Open Redirect | Medium | CVE-2024-37656 | Gnuboard5 5.5.16 contains an open redirect vulnerability caused by insufficient URL parameter verification in bbs/logout... |
| Go.Control Event Administration Panel - Detect | Info |  | Detects the presence of the Go.Control Event Administration login panel. |
| GoAnywhere - Authentication Bypass | Critical | CVE-2025-10035 | Fortra GoAnywhere MFT contains an insecure deserialization vulnerability in the License Servlet caused by deserializing ... |
| GoAnywhere Managed File Transfer Login Panel - Detect | Info |  | GoAnywhere Managed File Transfer login panel was detected. |
| GoCD Login Panel - Detect | Info |  | GoCD login panel was detected. |
| Gogs (Go Git Service) - SQL Injection | High | CVE-2014-8682 | Multiple SQL injection vulnerabilities in Gogs (aka Go Git Service) 0.3.1-9 through 0.5.x before 0.5.6.1105 Beta allow r... |
| Gogs (Go Git Service) 0.11.66 - Remote Code Execution | Critical | CVE-2018-18925 | Gogs 0.11.66 allows remote code execution because it does not properly validate session IDs, as demonstrated by a ".." s... |
| Gogs <= 0.13.3 - Remote Code Execution | High | CVE-2025-8110 | Gogs self-hosted Git service versions 0.13.3 and earlier contain a critical symlink bypass vulnerability that circumvent... |
| Gogs Login Panel - Detect | Info |  | Gogs login panel was detected. |
| Google Earth Enterprise Default Login | High |  | Google Earth Enterprise default login credentials were discovered. |
| Gophish Login Panel - Detect | Info |  | Gophish login panel was detected. |
| Gotify Login Panel - Detect | Info |  | Gotify login panel was detected. |
| Gradio - Local File Inclusion | Critical |  | Gradio's Dropdown component is vulnerable to Local File Inclusion (LFI) when the value is a dictionary controlled by an ... |
| Gradle Develocity Build Cache Node Login Panel - Detect | Info |  | Gradle Develocity Build Cache Node login panel was detected. |
| Gradle Enterprise Build Cache Node Login Panel - Detect | Info |  | Gradle Enterprise Build Cache Node login panel was detected. |
| Grafana & Zabbix Integration - Credentials Disclosure | Critical | CVE-2022-26148 | Grafana through 7.3.4, when integrated with Zabbix, contains a credential disclosure vulnerability. The Zabbix password ... |
| Grafana - Exposes DingDing API Keys | Medium | CVE-2025-3415 | An incident occurred where the DingDing alerting integration URL was inadvertently exposed to viewers due to a setting o... |
| Grafana 3.0.1-7.0.1 - Server-Side Request Forgery | High | CVE-2020-13379 | Grafana 3.0.1 through 7.0.1 is susceptible to server-side request forgery via the avatar feature, which can lead to remo... |
| Grafana 8.0.0 <= v.8.2.2 - Angularjs Rendering Cross-Site Scripting | Medium | CVE-2021-41174 | Grafana is an open-source platform for monitoring and observability. In affected versions if an attacker is able to conv... |
| Grafana Default Login | High |  | Grafana default admin login credentials were detected. |
| Grafana Login Check | Critical |  | Checks for a valid login on self hosted Grafana instance. |
| Grafana Login Panel - Detect | Info |  | Grafana login panel was detected. |
| Grafana Snapshot - Authentication Bypass | High | CVE-2021-39226 | Grafana instances up to 7.5.11 and 8.1.5 allow remote unauthenticated users to view the snapshot associated with the low... |
| Grafana v8.x - Arbitrary File Read | High | CVE-2021-43798 | Grafana versions 8.0.0-beta1 through 8.3.0 are vulnerable to a local directory traversal, allowing access to local files... |
| GraphiQL - Exposure | Low |  | Detected publicly exposed GraphiQL consoles. |
| Graphite Browser Login Panel - Detect | Info |  | Graphite Browser login panel was detected. |
| Gravity SMTP WordPress Plugin - Sensitive Information Exposure | High | CVE-2026-4020 | Gravity SMTP WordPress plugin <= 2.1.4 contains a sensitive information exposure caused by an unrestricted REST API endp... |
| Graylog - Default Login | High |  | Graylog instance is accessible with default admin credentials (admin/admin). This provides full administrative access to... |
| Graylog Login Panel - Detect | Info |  | Graylog login panel was detected. |
| Greenbone Security Assistant Panel - Detect | Info |  | Greenbone Security Assistant Web Panel is detected |
| Grocy - Default Admin Credentials | High |  | Detected Grocy was found using default credentials admin:admin.Successful authentication grants full access to the house... |
| Group-IB Managed XDR Login Panel - Detect | Info |  | Group-IB Managed XDR login panel was detected. |
| Gryphon Panel - Detect | Info |  | Gryphon router panel was detected. |
| Gurock TestRail Application files.md5 Exposure | High | CVE-2021-40875 | Improper access control in Gurock TestRail versions < 7.2.0.3014 resulted in sensitive information exposure. A threat ac... |
| Güralp Systems FMUS Series - Unauthenticated Access | Critical | CVE-2025-8286 | Güralp Systems FMUS Series Seismic Monitoring Devices expose an unauthenticated Telnet-based command line interface tha... |
| H2 Console Web Login Panel - Detect | Info |  | H2 Console Web login panel was detected. |
| H2O ImportFiles - Local File Inclusion | High | CVE-2023-6038 | An attacker is able to read any file on the server hosting the H2O dashboard without any authentication. |
| H2O Wave ML Application Server - Detect | Info |  | H2O Wave was detected. H2O Wave was an open-source Python development framework for building real-time interactive AI an... |
| H3C ER8300G2-X - Password Disclosure | Critical | CVE-2024-32238 | H3C ER8300G2-X is vulnerable to Incorrect Access Control. The password for the router's management system can be accesse... |
| H3c IMC - Remote Code Execution | Critical |  | H3c IMC allows remote unauthenticated attackers to cause the remote web application to execute arbitrary commands via th... |
| HAL Management Console Panel | Info |  | HAL Management Console login panel was discovered. |
| HCL BigFix Login Panel - Detect | Info |  | HCL BigFix login panel was detected. |
| HOOBS Panel - Detect | Info |  | HOOBS is a home automation platform that bridges HomeKit and non-HomeKit devices. |
| HP 1820-8G Switch J9979A Default Login | High |  | HP 1820-8G Switch J9979A default admin login credentials were discovered. |
| HP Service Manager Login Panel - Detect | Info |  | HP Service Manager login panel was detected. |
| HP Virtual Connect Manager Login Panel - Detect | Info |  | HP Virtual Connect Manager login panel was detected. |
| HPE OfficeConnect Switch - Panel Detect | Info |  | The HPE OfficeConnect Switch was a network switch series built for small and medium businesses.It provided reliable conn... |
| HPE OneView - Panel Detect | Info |  | HPE OneView is an infrastructure management platform that provides automated management, monitoring, and updates for HPE... |
| HTTP File Server <2.3c - Remote Command Execution | Critical | CVE-2014-6287 | HTTP File Server before 2.3c is susceptible to remote command execution. The findMacroMarker function in parserLib.pas a... |
| HTTPBin Login Panel - Detect | Info |  | HTTPBin login panel was detected. |
| HYPERPLANNING Login Panel - Detect | Info |  | HYPERPLANNING products was detected. |
| Haivision Gateway Login Panel - Detect | Info |  | Haivision Gateway login panel was detected. |
| Haivision Media Platform Login Panel - Detect | Info |  | Haivision Media Platform login panel was detected. |
| Halo ITSM - Pre-Authentication SQL Injection | Critical |  | A Time-Based SQL Injection vulnerability in Halo ITSM allows unauthenticated attackers to execute malicious SQL queries ... |
| Hangfire Dashboard Panel - Detect | Info |  | Hangfire Dashboard panel was detected. |
| Harbor Login Panel - Detect | Info |  | Harbor login panel was detected. |
| Harbor Registry - Default Admin Credentials | High |  | Detected: The Harbor container registry was found to be using default administrator credentials (admin:Harbor12345). An ... |
| HashiCorp Consul Web UI Login Panel - Detect | Info |  | HashiCorp Consul Web UI login panel was detected, |
| Hashicorp Consul Agent - Detect | Info |  | Hashicorp Consul Agent was detected. |
| Headlamp Kubernetes UI Panel - Detect | Medium |  | Detected Headlamp Kubernetes Web UI panel exposed, which could lead to unauthorized access to Kubernetes cluster managem... |
| Hestia Control Panel Login - Detect | Info |  | Hestia Control Panel login was detected. |
| Hide My WP Ghost < 5.2.02 - Hidden Login Page Disclosure | High | CVE-2024-6420 | The Hide My WP Ghost plugin does not prevent redirects to the login page via the auth_redirect WordPress function, allow... |
| HighMail Admin Login Panel - Detect | Info |  | HighMail admin login panel was detected. |
| Hikvision IP ping.php - Command Execution | Critical | CVE-2023-6895 | A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK). It has been declared as... |
| Hitachi Pentaho Business Analytics Server - Bypass Authorization | High | CVE-2022-43939 | Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.2, including 8.3.x contain security ... |
| HiveManager Login Panel - Detect | Info |  | HiveManager login panel was detected. |
| Home Assistant Panel | Info |  |  |
| Home Assistant Supervisor - Authentication Bypass | Critical | CVE-2023-27482 | Home Assistant Supervisor is an open source home automation tool. A remotely exploitable vulnerability bypassing authent... |
| Homebridge - Default Admin Credentials | High |  | Detected Homebridge UI was found using default administrator credentials (admin:admin). An attacker could have gained fu... |
| Homebridge - Unfinished Installation | High |  | Homebridge instance with incomplete installation detected. The setup wizard is exposed, allowing anyone to create the fi... |
| Homebridge Panel - Detect | Info |  | Homebridge allows you to integrate with smart home devices that do not natively support HomeKit. |
| Homematic Panel - Detect | Info |  | Homematic panel was deetcted. |
| Homer Panel - Detect | Info |  | A simple static homepage was discovered |
| Honeywell Excel Web Control Login Panel - Detect | Info |  | Honeywell Excel Web Control login panel was detected. |
| Honeywell PM43 Printers - Command Injection | Critical | CVE-2023-3710 | Improper Input Validation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Command Injec... |
| Hongjing e-HR 2020 - SQL Injection | High | CVE-2023-6655 | A vulnerability, which was classified as critical, has been found in Hongjing e-HR 2020. Affected by this issue is some ... |
| Hookbot Rat Panel - Detect | Info |  | Hookbot panel were detected. |
| Horde Login Panel - Detect | Info |  | Horde login panel was detected. |
| Horde Webmail Login Panel - Detect | Info |  | Horde Webmail login panel was detected. |
| Hospital Management System 1.0 - SQL Injection | Critical | CVE-2022-38637 | Hospital Management System 1.0 contains a SQL injection vulnerability via the editid parameter in /HMS/user-login.php.  ... |
| Hospital Management System 1.0 - SQL Injection | Critical | CVE-2022-32094 | Hospital Management System 1.0 contains a SQL injection vulnerability via the editid parameter in /HMS/doctor.php. An at... |
| Hospital Management System 1.0 - SQL Injection | High | CVE-2022-34590 | Hospital Management System 1.0 contains a SQL injection vulnerability via the editid parameter in /HMS/admin.php. An att... |
| Hospital Management System Login Panel - Detect | Info |  | Hospital Management System login panel was detected. |
| Hotel Booking Lite < 4.8.5 - Arbitrary File Download & Deletion | Critical | CVE-2023-5991 | The Hotel Booking Lite WordPress plugin before 4.8.5 does not validate file paths provided via user input, as well as do... |
| Hoteldruid v3.0.5 - SQL Injection | Critical | CVE-2023-43373 | Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the n_utente_agg parameter at /hoteldruid/... |
| Hoteldruid v3.0.5 - SQL Injection | Critical | CVE-2023-43374 | Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the id_utente_log parameter at /hoteldruid... |
| HuangDou UTCMS V9 - OS Command Injection | High | CVE-2024-9916 | A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some u... |
| Huawei HG532e Default Credential | High |  | Huawei HG532e default admin credentials were discovered. |
| Huawei HG532e Router Panel - Detect | Info |  | Huawei HG532e router login panel was detected. After installation, both the default username and default password are us... |
| Huawei HoloSens SDC - Panel | Info |  | Huawei HoloSens SDC Panel was discovered. |
| Hue Magic 3.0.0 - Local File Inclusion | High | CVE-2021-25864 | Hue Magic 3.0.0 is susceptible to local file inclusion via the res.sendFile API. |
| Huginn Login Panel - Detect | Info |  | Huginn products was detected. |
| Huly Login Panel - Detect | Info |  | Huly products was detected. |
| Hunk Companion < 1.9.0 - Unauthenticated Plugin Installation | Critical | CVE-2024-11972 | The plugin does not correctly authorize some REST API endpoints, allowing unauthenticated requests to install and activa... |
| Hybris - Default Login | High |  | Hybris contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive infor... |
| Hybris Administration Console Login Panel - Detect | Info |  | Hybris Administration Console login panel was detected. |
| Hybris Management Console Login Panel - Detect | Info |  | Hybris Management Console login panel was detected. |
| Hydra Router Dashboard - Detect | Info |  | Hydra router dashboard was detected. |
| HyperDX Panel - Detect | Info |  | HyperDX panel was discovered. |
| HyperTest Common Dashboard - Detect | Info |  | HyperTest Common Dashboard was detected. |
| Hytec Inter HWL-2511-SS - Remote Command Execution | Critical | CVE-2022-36553 | Hytec Inter HWL-2511-SS v1.05 and below was discovered to contain a command injection vulnerability via the component /w... |
| IBM Advanced System Management Panel - Detect | Info |  | IBM Advanced System Management panel was detected. |
| IBM BigFix Platform - Information Disclosure | Medium | CVE-2019-4061 | IBM BigFix Platform 9.2 and 9.5 contains an information disclosure vulnerability caused by not enabling authenticated ac... |
| IBM Data Risk Manager - Authentication Bypass via SAML | Critical | CVE-2020-4427 | IBM Data Risk Manager versions 2.0.1 through 2.0.6 are vulnerable to authentication bypass when configured with SAML aut... |
| IBM Decision Center Business Console - Default Login | High |  |  |
| IBM Decision Center Enterprise Console - Default Login | High |  |  |
| IBM Decision Center Enterprise Console - Panel Detection | Info |  | IBM Decision Center Enterprise Console panel was detected. |
| IBM Decision Server Console - Default Login | High |  |  |
| IBM Decision Server Console Panel - Detect | Info |  | IBM Decision Server Console panel was detected. |
| IBM Maximo Asset Management Information Disclosure - XML External Entity Injection | High | CVE-2020-4463 | IBM Maximo Asset Management is vulnerable to an
XML external entity injection (XXE) attack when processing XML data.
A r... |
| IBM Maximo Login Panel - Detect | Info |  | IBM Maximo login panel was detected. |
| IBM OpenAdmin Tool - Panel | Info |  |  |
| IBM Operational Decision Manager Panel - Detect | Info |  | IBM Operational Decision Manager panel was detected. |
| IBM Planning Analytics - Authentication Bypass & Remote Code Execution Version Detection | Critical | CVE-2019-4716 | IBM Planning Analytics versions 2.0.0 through 2.0.8 are vulnerable to a configuration overwrite that allows an unauthent... |
| IBM Power HMC - Default Login | High |  | IBM HMC default admin login credentials were discovered. |
| IBM Security Access Manager Login Panel - Detect | Info |  | IBM Security Access Manager login panel was detected. |
| IBM Security Verify Access Login - Panel | Info |  | IBM Security Verify Access login panel was detected. |
| IBM Service Assistant Login Panel - Detect | Info |  | IBM Service Assistant login panel was detected. |
| IBM WebSphere Application Server Community Edition Admin Login Panel - Detect | Info |  | IBM WebSphere Application Server Community Edition admin login panel was detected. |
| IBM WebSphere Portal Login Panel - Detect | Info |  | IBM WebSphere Portal login panel was detected. |
| IBM iNotes Login Panel - Detect | Info |  | IBM iNotes login panel was detected. |
| ICC PRO Login Panel - Detect | Info |  | ICC PRO login panel was detected. |
| ICE HRM Login - Detect | Info |  | The ICE HRM login panel was discovered. |
| ICT Protege WX Login Panel - Detect | Info |  |  |
| ICTBroadcast Login Panel - Detect | Info |  | ICTBroadcast login panel was detected. |
| IDEMIA BIOMetrics - Default Login | Medium |  | IDEMIA BIOMetrics application  default login credentials were discovered. |
| ILIAS LMS - Default Admin Credentials | High |  | The ILIAS learning management system was found to be using default administrator credentials (root:homer). An attacker w... |
| ILIAS Login Panel - Detect | Info |  | ILIAS login panel was detected. |
| INTELBRAS TELEFONE IP TIP200 60.61.75.22 - Local File Inclusion | High | CVE-2020-24285 | INTELBRAS TELEFONE IP TIP200 version 60.61.75.22 is vulnerable to information disclosure, allowing unauthenticated attac... |
| IPS Community Suite - Unauthenticated SQL Injection | Critical | CVE-2024-30163 | IPS Community Suite is vulnerable to unauthenticated SQL injection via the filter[] parameter in the /index.php?/store/ ... |
| IPdiva Mediation Login Panel - Detect | Info |  | IPdiva Mediation login panel was detected. |
| IPeakCMS 3.5 - SQL Injection | Critical | CVE-2021-3018 | ipeak Infosystems ibexwebCMS 3.5 contains an unauthenticated Boolean-based SQL injection caused by unsanitized 'id' para... |
| IRISNext Login Panel - Detect | Info |  | IRISNext products was detected. |
| ISPConfig Admin - Default Password | High |  | ISPConfig Admin Default Password Vulnerability exposes systems to unauthorized access, compromising data integrity and s... |
| ISPConfig Hosting Control Panel - Default Login | High |  | ISPConfig Hosting Control Panel Default Password Vulnerability exposes systems to unauthorized access, compromising data... |
| ITFlow Unfinished Installation | High |  | Detected ITFlow setup wizard was exposed with an unfinished installation, allowing attackers to configure the database a... |
| IceWarp Email Client - Cross Site Scripting | Medium | CVE-2023-39598 | Cross Site Scripting vulnerability in IceWarp Corporation WebClient v.10.2.1 allows a remote attacker to execute arbitra... |
| IceWarp Login Panel - Detect | Info |  | IceWarp login panel was detected. |
| IceWarp Mail Server <=10.4.4 - Local File Inclusion | High | CVE-2019-12593 | IceWarp Mail Server through 10.4.4 is prone to a local file inclusion vulnerability via webmail/calendar/minimizer/index... |
| IceWarp WebClient - Remote Code Execution | Critical |  | IceWarp WebClient is susceptible to remote code execution. |
| IceWarp WebMail 11.4.5.0 - Cross-Site Scripting | Medium | CVE-2020-27982 | IceWarp WebMail 11.4.5.0 is vulnerable to cross-site scripting via the language parameter. |
| IceWarp Webmail Server v10.2.1 - Cross Site Scripting | Medium | CVE-2023-37728 | Icewarp Icearp v10.2.1 was discovered to contain a cross-site scripting (XSS) vulnerability via the color parameter. |
| Icinga Exposed Dashboard | Medium |  | Icinga Dashboard was exposed. |
| Icinga Web 2 - Arbitrary File Disclosure | High | CVE-2022-24716 | Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Unauthenticated users can... |
| Icinga Web 2 Login Panel - Detect | Info |  | Icinga Web 2 login panel was detected. |
| IdeaCMS <= 1.7 - SQL Injection | Critical | CVE-2025-5569 | IdeaCMS up to 1.7 is vulnerable to SQL injection via the field parameter in article and product query interfaces. This t... |
| Ignite Realtime Openfire <4.42 - Local File Inclusion | Medium | CVE-2019-18393 | Ignite Realtime Openfire through 4.4.2 is vulnerable to local file inclusion via PluginServlet.java. It does not ensure ... |
| Ilch CMS Admin Login Panel - Detect | Info |  | Ilch CMS admin login panel was detected. |
| ImageResizer Debug - Information Exposure | Low |  | The ImageResizer debug endpoint exposes sensitive server configuration and path information. |
| Immich Panel - Detect | Info |  | Immich is a self-hosted photo and video backup solution |
| ImpressCMS < 1.4.3 - SQL Injection | High | CVE-2021-26599 | ImpressCMS before 1.4.3 is vulnerable to SQL injection via the groups parameter in include/findusers.php, allowing unaut... |
| ImpressCMS <1.4.3 - Incorrect Authorization | Medium | CVE-2021-26598 | ImpressCMS before 1.4.3 is susceptible to incorrect authorization via include/findusers.php. An attacker can provide a s... |
| InduSoft Web Studio NTWebServer Directory Traversal Vulnerability | Critical | CVE-2014-0780 | Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 7.1 before SP2 Patch 4 allows remote attackers t... |
| InfluxDB <1.7.6 - Authentication Bypass | Critical | CVE-2019-20933 | InfluxDB before 1.7.6 contains an authentication bypass vulnerability via the authenticate function in services/httpd/ha... |
| InfluxDB Admin Interface Panel - Detect | Info |  | InfluxDB admin interface panel was detected. |
| Infoblox NIOS Login Panel - Detect | Info |  | Infoblox NIOS login panel was detected. |
| Inspur Clusterengine 4 - Default Admin Login | High |  | Inspur Clusterengine version 4 default admin login credentials were successful. |
| Inspur Clusterengine V4 SYSshell - Remote Command Execution | Critical | CVE-2020-21224 | Inspur Clusterengine V4 SYSshell was found and allows remote command execution by design. |
| InstaWP Connect < 0.1.0.86 - Local PHP File Inclusion | High | CVE-2025-2636 | The InstaWP Connect - 1-click WP Staging & Migration plugin for WordPress is vulnerable to Local File Inclusion in all v... |
| Integrate Google Drive <= 1.5.3 - Information Disclosure | High | CVE-2025-12139 | File Manager for Google Drive - Integrate Google Drive with WordPress plugin for WordPress <= 1.5.3 contains sensitive i... |
| Integrated Management Module - Default Login | High |  | Integrated Management Module default login credentials were discovered. |
| Intel Active Management - Authentication Bypass | Critical | CVE-2017-5689 | Intel Active Management platforms are susceptible to authentication bypass. A non-privileged network attacker can gain s... |
| Intelbras NPLUG 1.0.0.14 - Authentication Bypass | Critical | CVE-2018-12455 | Intelbras NPLUG 1.0.0.14 is vulnerable to authentication bypass through cookie manipulation. An attacker can bypass auth... |
| Intelbras Router Login Panel - Detect | Info |  | Intelbras router logjn panel was detected. |
| Intelbras Router Panel - Detect | Info |  | Intelbras router panel was detected. |
| Intelbras Switch - Information Disclosure | High | CVE-2023-36144 | An authentication bypass in Intelbras Switch SG 2404 MR in firmware 1.00.54 allows an unauthenticated attacker to downlo... |
| Intelbras WRN 150 - Authentication Bypass | Critical | CVE-2017-14942 | Intelbras WRN 150 router is vulnerable to authentication bypass through cookie manipulation. An attacker can bypass auth... |
| Intellian Aptus Web Login Panel - Detect | Info |  | Intelllian Aptus Web login panel was detected. |
| Internet Multi Server Control Panel - Detect | Info |  | Internet Multi Server Control Panel was detected. |
| Invision Community <=5.0.6 Unauthenticated RCE via Template Injection | Critical | CVE-2025-47916 | Invision Community 5.0.0 before 5.0.7 allows remote code execution via crafted template strings to themeeditor.php. The ... |
| Issabel Login Panel - Detect | Info |  | Issabel login panel was detected. |
| Issabel PBX 4.0.0-6 - Directory Listing | High | CVE-2023-37599 | An issue in issabel-pbx v.4.0.0-6 allows a remote attacker to obtain sensitive information via the modules directory |
| Ivanti Cloud Services Appliance - Path Traversal | Critical | CVE-2024-8963 | Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to access restricted func... |
| Ivanti Connect Secure - Stack-based Buffer Overflow | Critical | CVE-2025-0282 | Ivanti Connect Secure < 22.7R2.5, Ivanti Policy Secure < 22.7R1.2, and Ivanti Neurons for ZTA gateways < 22.7R2.3 contai... |
| Ivanti Connect Secure Panel - Detect | Info |  | Ivanti Connect Secure provides a seamless, cost-effective SSL VPN solution for remote and mobile users from any web-enab... |
| Ivanti EPM Cloud Services Appliance Code Injection | Critical | CVE-2021-44529 | Ivanti EPM Cloud Services Appliance (CSA) before version 4.6.0-512 is susceptible to a code injection vulnerability beca... |
| Ivanti Endpoint Manager - Authentication Bypass | High | CVE-2026-1603 | Ivanti Endpoint Manager < 2024 SU5 contains an authentication bypass caused by improper access control, letting remote u... |
| Ivanti Endpoint Manager Mobile (EPMM) - Authentication Bypass | Critical | CVE-2023-35078 | Ivanti Endpoint Manager Mobile (EPMM), formerly MobileIron Core, through 11.10 allows remote attackers to obtain PII, ad... |
| Ivanti ICS - Authentication Bypass | High | CVE-2023-46805 | An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a re... |
| Ivanti Incapptic Connect Panel - Detect | Info |  | Ivanti Incapptic Connect panel was detected. |
| Ivanti Traffic Manager Panel - Detect | Info |  | An Ivanti Traffic Manager Login Panel was detected. |
| Ivanti(R) Cloud Services Appliance - Panel | Info |  | An Ivanti Cloud Services Appliance panel was detected. |
| JBoss SOA Platform Login Panel - Detect | Info |  | JBoss SOA Platform login panel was detected. |
| JBoss WS JUDDI Console Panel - Detect | Info |  | The jUDDI (Java Universal Description, Discovery and Integration) Registry is a core component of the JBoss Enterprise S... |
| JBoss jBPM Administration Console Default Login - Detect | High |  | JBoss jBPM Administration Console default login information was detected. |
| JBoss jBPM Administration Console Login Panel - Detect | Info |  | JBoss jBPM Administration Console login panel was detected. |
| JEHC-BPM - Remote Code Execute | Critical | CVE-2025-45854 | A Remote Command Execution vulnerability in the component /server/executeExec of JEHC-BPM <= v2.0.1 allows attackers to ... |
| JFinalCMS v5.0.0 - Directory Traversal | Medium | CVE-2023-41599 | An issue in the component /common/DownController.java of JFinalCMS v5.0.0 allows attackers to execute a directory traver... |
| JFrog Artifactory Artifacts Exposure | Low |  | JFrog Artifactory Artifact repository was exposed. |
| JFrog Artifactory Build - Exposure | Medium |  | Detected exposure of build information in JFrog Artifactory via unauthenticated API endpoints. Access to these endpoints... |
| JFrog Login Panel - Detect | Info |  | JFrog login panel was detected. |
| JHipster Platform - Default Login | High |  | Detects the presence of JHipster application dashboard or API endpoints that allow authentication using default credenti... |
| JS Help Desk <= 2.8.1 - SQL Injection | Critical | CVE-2023-50839 | The JS Help Desk – Best Help Desk & Support Plugin plugin for WordPress is vulnerable to SQL Injection via the ‘emai... |
| JS Help Desk <= 2.8.2 - SQL Injection | Critical | CVE-2023-7337 | JS Help Desk WordPress plugin 2.8.2 contains a SQL injection caused by insufficient escaping and preparation of user-sup... |
| Jaeger End-of-Life - Detect | Info |  | Detected Jaeger versions that have reached End-of-Life (EOL) and no longer receive security updates. |
| Jalios JCMS Login Panel - Detect | Info |  | Jalios JCMS login panel was detected. |
| Jamf MDM Login Panel - Detect | Info |  | Jamf Mobile Device Management login panel was detected. |
| Jamf Pro Login Panel - Detect | Info |  | Jamf Pro login panel was detected. |
| Jamf Pro Setup Assistant Panel - Detect | Info |  | Jamf Pro Setup Assistant panel was detected. |
| Jan v0.4.12 'readFileSync' - Path Traversal | High | CVE-2024-36857 | Jan v0.4.12 was discovered to contain an arbitrary file read vulnerability via the /v1/app/readFileSync interface. |
| Javafaces LFI | Medium | CVE-2013-3827 | An Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.... |
| Jedox Web Login Panel - Detect | Info |  | Jedox is an Enterprise Performance Management software which is used for planning, analytics and reporting  in finance a... |
| JeePlus CMS - SQL Injection | High |  | A SQL injection vulnerability exists in the JeePlus low-code development platform, allowing attackers to manipulate data... |
| Jeecg Boot <= 2.4.5 - Information Disclosure | High | CVE-2021-37304 | An Insecure Permissions issue in jeecg-boot 2.4.5 allows unauthenticated remote attackers to gain escalated privilege an... |
| Jeecg Boot <= 2.4.5 - Sensitive Information Disclosure | High | CVE-2021-37305 | Jeecg Boot <= 2.4.5 API interface has unauthorized access and leaks sensitive information such as email,phone and Enumer... |
| Jeecg P3 Biz Chat - Local File Inclusion | High | CVE-2023-33510 | Jeecg P3 Biz Chat 1.0.5 allows remote attackers to read arbitrary files through specific parameters. |
| Jeecg-Boot v3.5.1 - SQL Injection | Critical | CVE-2023-38992 | SQL injection vulnerability via the title parameter at /sys/dict/loadTreeData in jeecg-boot v3.5.1. |
| Jeecg-boot 3.5.0 qurestSql - SQL Injection | Critical | CVE-2023-1454 | A vulnerability classified as critical has been found in jeecg-boot 3.5.0. This affects an unknown part of the file jmre... |
| JeecgBoot 3.5.0 - SQL Injection | Critical | CVE-2023-34659 | jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interfac... |
| JeecgBoot v3.7.1 - SQL Injection | Critical | CVE-2024-48307 | The JeecgBoot application is vulnerable to SQL Injection via the `getTotalData` endpoint. An attacker can exploit this v... |
| Jeedom - Default Login | High |  | Jeedom default login has been detected. |
| Jeedom Login Panel - Detect | Info |  | Jeedom login panel was detected. |
| Jellyfin <10.7.0 - Local File Inclusion | Medium | CVE-2021-21402 | Jellyfin before 10.7.0 is vulnerable to local file inclusion. This issue is more prevalent when Windows is used as the h... |
| Jellyfin Console - Default Login | High |  | Weak Jellyfin credentials were discovered. |
| Jellyseerr Login Panel - Detect | Info |  |  |
| Jenkins - Remote Command Injection | Critical | CVE-2018-1000861 | Jenkins 2.153 and earlier and LTS 2.138.3 and earlier are susceptible to a remote command injection via stapler/core/src... |
| Jenkins API Panel - Detect | Info |  | Jenkins API panel was detected. |
| Jenkins Command Line Interface (CLI) Path Traversal Vulnerability | Critical | CVE-2024-23897 | Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces
an... |
| Jenkins Default Login | High |  | Jenkins credentials of admin:admin were discovered. |
| Jenkins Gitlab Hook <=1.4.2 - Cross-Site Scripting | Medium | CVE-2020-2096 | Jenkins Gitlab Hook 1.4.2 and earlier does not escape project names in the build_now endpoint, resulting in a reflected ... |
| Jenkins Login Detected | Info |  | Jenkins is an open source automation server. |
| Jenkins Users - Exposure | Info |  | Detected an exposed Jenkins asynchPeople endpoint that discloses user information (e.g., users, full names, and profile ... |
| JetBrains TeamCity > 2023.11.3 - Authentication Bypass | Critical | CVE-2024-23917 | In JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible |
| Jinhe OA - SQL Injection | High |  | SQL injection vulnerability in the ljc6/servlet/clobfield interface of Jinhe OA jc6. An attacker can obtain sensitive in... |
| Jinher OA - SQL Injection | High | CVE-2025-10090 | jinher jinher_oa is an office automation software that facilitates workflow management and collaboration within organiza... |
| Joget Panel - Detect | Info |  | Joget panel was detected. |
| Joomla HTTP Header Unauthenticated - Remote Code Execution | High | CVE-2015-8562 | Joomla! 1.5.x, 2.x, and 3.x before 3.4.6 allow remote attackers to conduct PHP object injection attacks and execute arbi... |
| Joomla! <3.7.1 - SQL Injection | Critical | CVE-2017-8917 | Joomla! before 3.7.1 contains a SQL injection vulnerability. An attacker can possibly obtain sensitive information from ... |
| Joomla! Core SQL Injection | High | CVE-2015-7297 | A SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands. |
| Joomla! Panel | Info |  |  |
| Joomla! Webservice - Password Disclosure | Medium | CVE-2023-23752 | An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized access to webservic... |
| JoomlaUX JUX Real Estate 3.4.0 - Reflected XSS | Medium | CVE-2025-2127 | A vulnerability was found in JoomlaUX JUX Real Estate 3.4.0 on Joomla. It has been classified as problematic. Affected i... |
| Joplin Server Login - Panel | Info |  | Joplin Server login panel detected. |
| Jorani 1.0.0 - Remote Code Execution | Critical | CVE-2023-26469 | Jorani 1.0.0, an attacker could leverage path traversal to access files and execute code on the server. |
| Jorani Login Panel - Detect | Info |  | Jorani login panel was detected. |
| Journyx - XML External Entities Injection (XXE) | High | CVE-2024-6893 | The "soap_cgi.pyc" API handler allows the XML body of SOAP requests to contain references to external entities. This all... |
| Journyx 11.5.4 - Reflected Cross Site Scripting | Medium | CVE-2024-6892 | Attackers can craft a malicious link that once clicked will execute arbitrary JavaScript in the context of the Journyx w... |
| JshERP Boot Panel - Detect | Info |  |  |
| JumpServer > 3.6.4 - Information Disclosure | Medium | CVE-2023-42442 | JumpServer is an open source bastion host and a professional operation and maintenance security audit system. Starting i... |
| JumpServer Login Panel - Detect | Info |  | JumpServer Open Source Bastion Host login panel was detected. |
| Juniper J-Web - Remote Code Execution | Critical | CVE-2023-36845 | A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series all... |
| Juniper J-Web Panel - Detect | Info |  | Juniper J-Web panel was detected. |
| Juniper Web Device Manager - Cross-Site Scripting | Medium | CVE-2022-22242 | Juniper Web Device Manager (J-Web) in Junos OS contains a cross-site scripting vulnerability. This can allow an unauthen... |
| Jupyter Notebook - Remote Command Execution | High |  | Jupyter Notebook is an interactive Notebook, computer application is a web based visualization, Jupyter Notebook API/ter... |
| Jupyter Notebook Login Panel - Detect | Info |  | Jupyter Notebook login panel was detected. |
| Jupyterhub - Default Admin Discovery | High |  | Jupyterhub default admin credentials were discovered. |
| JustBoil.me Images Plugin - Exposed Image Upload | Medium |  | JustBoil.me Images Plugin for TinyMCE contains an exposed dialog interface that could lead to potential security vulnera... |
| KLog Server - Default Login | High |  | KLog Server contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive ... |
| Kanboard - Default Login | High |  | Kanboard contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive inf... |
| Kanboard Login Panel - Detect | Info |  | Kanboard login panel was detected. |
| Kaseya VSA < 9.5.7 - Credential Disclosure via Windows Agent | Critical | CVE-2021-30116 | Kaseya VSA before 9.5.7 allows credential disclosure, as exploited in the wild in July 2021. By default Kaseya VSA on pr... |
| Kasm Login Panel - Detect | Info |  | Kasm workspaces login panel was detected. |
| Kavita Login Panel - Detect | Info |  | Kavita login panel was detected. |
| Kentico - Installer Privilege Escalation | Critical | CVE-2017-17736 | Kentico 9.0 before 9.0.51 and 10.0 before 10.0.48 are susceptible to a privilege escalation attack. An attacker can obta... |
| Kerio Connect Login Panel - Detect | Info |  | Kerio Connect login panel was detected. |
| Kerio Controle Panel - Detect | Info |  | Protect your network from viruses, malware and malicious activity with GFI KerioControl, the easy-to-administer yet powe... |
| Kettle - Default Login | Medium |  | Kettle contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive infor... |
| Kettle Panel - Detect | Info |  | Kettle panel was detected. |
| KeyCloak - Information Exposure | Medium | CVE-2020-27838 | A flaw was found in keycloak in versions prior to 13.0.0. The client registration endpoint allows fetching information a... |
| Keycloak Admin Console Configuration Disclosure | Low |  | Detected Keycloak admin console configuration was exposing realm name, client ID, SSL requirements, and authentication s... |
| Keycloak Admin Login Panel - Detect | Info |  | Keycloak admin login panel was detected. |
| Kiali - Detect | Info |  | kiali panel was detected. |
| Kibana - Local File Inclusion | Critical | CVE-2018-17246 | Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker with... |
| Kibana Login Panel - Detect | Info |  | Kibana login panel was detected. |
| Kibana Timelion - Arbitrary Code Execution | Critical | CVE-2019-7609 | Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker... |
| Kiteworks PCN Panel - Detect | Info |  | Kiteworks PCN Login Panel was detected. |
| KiviCare Clinic & Patient Management System (EHR) <= 3.6.4 - SQL Injection | High | CVE-2024-11728 | The KiviCare Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to SQL Injection via the 'visit... |
| Kiwi TCMS Information Disclosure | High |  | Internal info exposed in Kiwi TCMS. |
| Kiwi TCMS Login Panel - Detect | Info |  | Kiwi TCMS login panel was detected. |
| KoboldAI Panel - Detect | Info |  | KoboldAI was detected. KoboldAI was an AI text adventure and story generation interface that supports multiple local and... |
| Koel Panel - Detect | Info |  | Personal audio streaming service that works. |
| Kong Manager OSS/Admin - Exposure | Medium |  | Exposed Kong Manager (OSS/Admin) interface accessible without authentication. |
| Kopano WebApp Login Panel - Detect | Info |  | Kopano WebApp login panel was detected. |
| Kraken Cluster Monitoring Dashboard - Detect | Info |  | Kraken Cluster Monitoring Dashboard was detected. |
| KubeOperator Foreground `kubeconfig` - File Download | Critical | CVE-2023-22480 | KubeOperator is an open source Kubernetes distribution focused on helping enterprises plan, deploy and operate productio... |
| KubePi <= v1.6.4 LoginLogsSearch - Unauthorized Access | High | CVE-2023-22478 | KubePi is a modern Kubernetes panel. The API interfaces with unauthorized entities and may leak sensitive information. T... |
| KubePi JwtSigKey - Admin Authentication Bypass | Critical | CVE-2023-22463 | KubePi is a k8s panel. The jwt authentication function of KubePi through version 1.6.2 uses hard-coded Jwtsigkeys, resul... |
| KubeView <=0.1.31 - Information Disclosure | Critical | CVE-2022-45933 | KubeView through 0.1.31 is susceptible to information disclosure. An attacker can obtain control of a Kubernetes cluster... |
| KubeView Dashboard - Detect | Info |  | KubeView dashboard was detected. |
| Kubernetes API Server - YAML Parsing DoS (Billion Laughs) | High | CVE-2019-11253 | The Kubernetes API server is vulnerable to a denial of service attack via YAML/JSON parsing. An attacker can send a spec... |
| Kubernetes Enterprise Manager Panel - Detect | Info |  | Kubernetes Enterprise Manager panel was detected. |
| Kubernetes Local Cluster Web View Panel- Detect | Medium |  | Kubernetes local cluster web view panel discovered. |
| Kubio AI Page Builder <= 2.5.1 - Local File Inclusion | Critical | CVE-2025-2294 | The Kubio AI Page Builder plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and includin... |
| Kyocera Printer d-COPIA253MF - Directory Traversal | High | CVE-2020-23575 | Kyocera Printer d-COPIA253MF plus is susceptible to a directory traversal vulnerability which could allow an attacker to... |
| Kyocera TASKalfa printer - Path Traversal | Medium | CVE-2023-34259 | CCRX has a Path Traversal vulnerability. Path Traversal is an attack on web applications. By manipulating the value of t... |
| LDAP Account Manager Login Panel - Detect | Info |  | LDAP Account Manager login panel was detected. |
| LOYTEC LGATE-902 6.3.2 - Local File Inclusion | High | CVE-2018-14918 | LOYTEC LGATE-902 6.3.2 is susceptible to local file inclusion which could allow an attacker to manipulate path reference... |
| LaRecipe < 2.8.1 Remote Code Execution via SSTI | Critical | CVE-2025-53833 | LaRecipe is an application that allows users to create documentation with Markdown inside a Laravel app. Versions prior ... |
| LabKey Server Login Panel - Detect | Info |  | LabKey Server login panel was detected. |
| Label Studio - Login Panel | Info |  | Detects the presence of the Label Studio Login Page. |
| Laminas Project laminas-http - Remote Code Execution | Critical | CVE-2021-3007 | Laminas Project laminas-http < 2.14.2 and Zend Framework 3.0.0 contain a deserialization vulnerability caused by __destr... |
| Lancom Router Login Panel - Detect | Info |  | Lancom router login panel was detected. |
| Langflow - Broken Access Control | Critical | CVE-2026-21445 | Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.0.dev45, multiple cr... |
| Langflow AI - Unauthenticated Remote Code Execution | Critical | CVE-2025-3248 | Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/validate/code endpoint.A remote and un... |
| Langflow AI <= 1.6.9 - CORS Misconfiguration | Critical | CVE-2025-34291 | Langflow AI versions 1.6.9 and earlier are vulnerable to a CORS misconfiguration that allows any origin to make credenti... |
| Lansweeper Login Panel - Detect | Info |  | Lansweeper login panel was detected. |
| Lansweeper Unauthenticated SQL Injection | Critical | CVE-2019-13462 | Lansweeper before 7.1.117.4 allows unauthenticated SQL injection. |
| Laravel Backpack Admin Login Panel - Detect | Info |  | Laravel Backpack admin login panel was detected. |
| Laravel Filemanager v2.5.1 - Local File Inclusion | Medium | CVE-2022-40734 | Laravel Filemanager (aka UniSharp) through version 2.5.1 is vulnerable to local file inclusion via download?working_dir=... |
| Leantime - Detect | Info |  | Detects a Leantime server, a project management system for non-project managers. |
| LearnDash LMS < 4.10.2 - Sensitive Information Exposure | Medium | CVE-2024-1210 | The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and includ... |
| LearnDash LMS < 4.10.2 - Sensitive Information Exposure via assignments | Medium | CVE-2024-1209 | The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and includ... |
| LearnDash LMS < 4.10.3 - Sensitive Information Exposure | Medium | CVE-2024-1208 | The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and includ... |
| LearnPress < 4.2.6.8.1 - Information Disclosure | Medium | CVE-2024-5483 | LearnPress – WordPress LMS Plugin contains a sensitive information exposure caused by incorrect implementation of get_... |
| LearnPress < 4.2.7.1 - SQL Injection | Critical | CVE-2024-8529 | The LearnPress WordPress LMS Plugin before 4.2.7.1 is vulnerable to unauthenticated SQL injection via the 'c_fields' par... |
| LearnPress < 4.2.7.1 - SQL Injection | Critical | CVE-2024-8522 | The LearnPress - WordPress LMS Plugin plugin for WordPress is vulnerable to SQL Injection via the 'c_only_fields' parame... |
| LearnPress < 4.2.7.4 - Course Material - Information Disclosure | Medium | CVE-2024-11868 | LearnPress – WordPress LMS Plugin contains a sensitive information exposure caused by insecure handling in class-lp-re... |
| LearnPress < 4.3.0 - Arbitrary Callback Execution to Information Exposure | Medium | CVE-2025-11368 | The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Sensitive Information Disclosure in all ve... |
| LearnPress < 4.3.2 - Broken Access Control | Medium | CVE-2025-13956 | The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthorized access of data due to a missi... |
| LearnPress <= 4.2.5.7 - SQL Injection | High | CVE-2023-6567 | The LearnPress plugin for WordPress is vulnerable to time-based SQL Injection via the 'order_by' parameter in all versio... |
| LearnPress Plugin < 4.2.0 - Local File Inclusion | Critical | CVE-2022-47615 | Local File Inclusion vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions. |
| LearnPress Plugin < 4.2.0 - Unauthenticated Time-Based Blind SQLi | Critical | CVE-2022-45808 | SQL Injection vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions. |
| Lenovo Fan Power Controller Login Panel - Detect | Info |  | Lenovo Fan Power Controller login panel was detected. |
| Leostream Default Login | High |  | Leostream default admin credentials were discovered. |
| Leostream Login Panel - Detect | Info |  | Leostream login panel was detected. |
| Letta Letta 0.7.12 - Remote Code Execution | High | CVE-2025-51482 | Letta 0.7.12 is vulnerable to remote code execution via POST /v1/tools/run in letta.server.rest_api.routers.v1.tools.run... |
| LibreChat <= 0.7.9 - HTML Injection via Accept-Language Header | Medium | CVE-2025-8848 | danny-avila/librechat 0.7.9 contains a stored XSS caused by improper sanitization of the Accept-Language header, letting... |
| LibreChat Login Panel - Detection | Info |  | Detected LibreChat login panel. LibreChat is an open-source, self-hosted AI chat interface. |
| LibreNMS Login Panel - Detect | Info |  | LibreNMS login panel was detected. |
| LibrePhotos Panel - Detect | Info |  |  |
| LibreSpeed Panel - Detect | Info |  | LibreSpeed is a very lightweight speed test implemented in Javascript, using XMLHttpRequest and Web Workers. |
| Liferay Login Panel - Detect | Info |  | Liferay login panel was detected, |
| Liferay Portal Unauthenticated < 7.2.1 CE GA2 - Remote Code Execution | Critical | CVE-2020-7961 | Liferay Portal prior to 7.2.1 CE GA2 allows remote attackers to execute arbitrary code via JSON web services (JSONWS). |
| Lightdash version <= 0.510.3 Arbitrary File Read | High | CVE-2023-35844 | packages/backend/src/routers in Lightdash before 0.510.3
has insecure file endpoints, e.g., they allow .. directory
trav... |
| LimeSurvey - Default Admin Credentials | High |  | Detected the LimeSurvey survey management platform was found to be using default administrator credentials (admin:passwo... |
| Lin CMS Spring Boot - Default JWT Token | High | CVE-2022-32430 | An access control issue in Lin CMS Spring Boot v0.2.1 allows attackers to access the backend information and functions w... |
| LinShare Login Panel - Detect | Info |  | LinShare login panel was detected. |
| Linear eMerge E3-Series - Cross-Site Scripting | Medium | CVE-2022-46381 | Linear eMerge E3-Series devices contain a cross-site scripting vulnerability via the type parameter, e.g., to the badgin... |
| Linear eMerge E3-Series - Information Disclosure | High | CVE-2022-31269 | Linear eMerge E3-Series devices are susceptible to information disclosure. Admin credentials are stored in clear text at... |
| Linkerd Panel - Detect | Info |  | Linkerd panel was detected. |
| Linksys Smart Wi-Fi Login Panel - Detect | Info |  | Linksys Smart Wi-Fi login panel was detected. |
| ListSERV Maestro <= 9.0-8 RCE | Medium | CVE-2010-1870 | A struts-based OGNL remote code execution vulnerability exists in ListSERV Maestro before and including version 9.0-8. |
| ListingPro < 2.6.1 - Arbitrary Plugin Installation/Activation/Deactivation | Critical | CVE-2020-36719 | The ListingPro - WordPress Directory & Listing Theme for WordPress is vulnerable to Arbitrary Plugin Installation, Activ... |
| ListingPro < 2.6.1 - Sensitive Data Disclosure | High | CVE-2020-36723 | The ListingPro - WordPress Directory & Listing Theme for WordPress is vulnerable to Sensitive Data Exposure in versions ... |
| LiteLLM API - Swagger UI Detection | Info |  | Detects exposed LiteLLM API Swagger UI interface. LiteLLM is a unified API for 100+ LLM providers (OpenAI, Azure, Anthro... |
| Live Helper Chat Admin Login Panel - Detect | Info |  | Live Helper Chat admin login panel was detected. |
| LiveZilla Login Panel - Detect | Info |  | LiveZilla login panel was detected. |
| LocalAI - Partial Local File Read | Medium | CVE-2024-6095 | A vulnerability in the /models/apply endpoint of mudler/localai versions 2.15.0 allows for Server-Side Request Forgery (... |
| LockSelf Login Panel - Detect | Info |  | LockSelf login panel was detected. |
| Locklizard Web Viewer Login Panel - Detect | Info |  | Locklizard Web Viewer login panel was detected. |
| Login as User or Customer < 3.3 - Privilege Escalation | Critical | CVE-2022-4305 | The plugin lacks authorization checks to ensure that users are allowed to log in as another one, which could allow unaut... |
| Logitech Harmony Pro Installer Portal Login Panel - Detect | Info |  | Logitech Harmony Pro Installer Portal login panel was detected. |
| Lomnido Panel - Detect | Info |  | Lomnido was detected. |
| Looker Login Panel - Detect | Info |  | Looker login panel was detected. |
| LottieFiles WordPress Plugin <= 3.0.0 - Missing Authorization | High | CVE-2025-68043 | LottieFiles LottieFiles <= 3.0.0 contains a broken access control vulnerability caused by incorrectly configured access ... |
| Loxone Intercom Video Panel - Detect | Info |  | Loxone Intercom Video panel was detected. |
| Loxone WebInterface Panel - Detect | Info |  |  |
| Loytec PLC - Default Login | High |  | Identified Loytec PLC web interfaces that were accessible using default credentials (admin:loytec4u). These devices were... |
| Lucee - Default Login | High |  | Lucee admin panel using the default login password was discovered. |
| Lucee - Unset Credentials | High |  | The Lucee admin panel has a first-time setup page which allows any user to set the administrator password. |
| Lucee < 6.0.1.59 - Remote Code Execution | Critical |  |  |
| Lucee Web and Lucee Server Admin Login Panel - Detect | Info |  | Lucee admin login panels were detected in both Web and Server tabs. |
| M-Bus Converter Web Interface - Detect | Info |  |  |
| M-Files Web Login Panel - Detect | Info |  | M-Files Web login panel was detected. |
| MAG Dashboard Login Panel - Detect | Info |  | MAG Dashboard login panel was detected. |
| MCMS 5.2.4 - SQL Injection | Critical | CVE-2022-25125 | MCMS 5.2.4 contains a SQL injection vulnerability via search.do in the file /mdiy/dict/listExcludeApp. An attacker can p... |
| MCMS 5.2.5 - SQL Injection | Critical | CVE-2022-23898 | MCMS 5.2.5 contains a SQL injection vulnerability via the categoryId parameter in the file IContentDao.xml. An attacker ... |
| MCP Inspector < 0.14.0 UnauthenticatedRemote Code Execution | Critical | CVE-2025-49596 | The MCP inspector is a developer tool for testing and debugging MCP servers. Versions of MCP Inspector below 0.14.1 are ... |
| MISP Threat Intelligence Sharing Platform Panel - Detect | Info |  |  |
| MLFlow < 2.8.1 - Sensitive Information Disclosure | High | CVE-2023-43472 | An issue in MLFlow versions 2.8.1 and before allows a remote attacker to obtain sensitive information via a crafted requ... |
| MLflow Absolute Path Traversal | Critical | CVE-2023-3765 | Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0. |
| MOFI4500-4GXeLTE-V2 Default Login | High |  | Mofi Network MOFI4500-4GXELTE wireless router default admin credentials were discovered. |
| MOVEit Transfer - SQL Injection | Critical | CVE-2023-35708 | In Progress MOVEit Transfer before 2021.0.8 (13.0.8), 2021.1.6 (13.1.6), 2022.0.6 (14.0.6), 2022.1.7 (14.1.7), and 2023.... |
| MPDV Mikrolab GmbH HYDRA X, MIP 2 & FEDRA 2 - Path Traversal | High | CVE-2025-12055 | MPDV Mikrolab GmbH HYDRA X, MIP 2, and FEDRA 2 <= Maintenance Pack 36 with Servicepack 8 (week 36/2025) contain an unaut... |
| MPFTVC Admin Login Panel - Detect | Info |  | MPFTVC admin login panel was detected. |
| MSNSwitch Firmware MNT.2408 - Authentication Bypass | Critical | CVE-2022-32429 | MSNSwitch Firmware MNT.2408 is susceptible to authentication bypass in the component http://MYDEVICEIP/cgi-bin-sdb/Expor... |
| MSPControl Login Panel - Detect | Info |  | MSPControl login panel was detected. |
| MStore API < 3.9.8 - SQL Injection | Critical | CVE-2023-3077 | The MStore API WordPress plugin before 3.9.8 is vulnerable to Blind SQL injection via the product_id parameter. |
| MStore API <= 3.9.1 - Authentication Bypass | Critical | CVE-2023-2734 | The MStore API plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.9.1. This... |
| MStore API <= 3.9.2 - Authentication Bypass | Critical | CVE-2023-2732 | The MStore API plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.9.2. This... |
| MStore API <= 4.10.7 - Unauthorized Account Access and Privilege Escalation | Critical | CVE-2023-3277 | The MStore API plugin for WordPress is vulnerable to Unauthorized Account Access and Privilege Escalation in versions up... |
| MachForm Admin Panel - Detect | Info |  | MachForm Admin panel was detected. |
| Maestro LISTSERV - Detect | Info |  | Maestro LISTSERV panel was detected. |
| Maestro LuCI Login Panel - Detect | Info |  | Maestro LuCI login panel was detected. |
| Mage AI - Insecure Default Authentication Setup | Medium | CVE-2025-2129 | A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The ma... |
| Magnolia CMS Default Login - Detect | High |  | Magnolia CMS default login credentials were detected. |
| Magnolia CMS Login Panel - Detect | Info |  | Magnolia CMS login panel was detected. |
| MagnusBilling - Default Login | High |  | MagnusBilling installs with a default administrative account using the credentials root / magnus. If unchanged, these cr... |
| MagnusBilling - Login Panel | Info |  | Identified an exposed MagnusBilling login panel. |
| Mail Mint < 1.19.5 - Unauthenticated Email Disclosure | High | CVE-2026-2025 | Mail Mint WordPress plugin < 1.19.5 contains an information disclosure vulnerability caused by lack of authorization in ... |
| MailEnable Mail Service < v10 - Cross-Site Scripting | Medium | CVE-2025-44148 | Cross Site Scripting (XSS) vulnerability in MailEnable before v10 allows a remote attacker to execute arbitrary code via... |
| MailHog Panel - Detect | Info |  | MailHog panel was detected. |
| MailWatch Login Panel - Detect | Info |  | MailWatch login panel was detected. |
| Mailpit < 1.28.3 - Server-Side Request Forgery | High | CVE-2026-21859 | Mailpit <= 1.28.0 contains a server-side request forgery caused by insufficient validation of internal IP addresses in t... |
| MainWP Dashboard <= 3.1.2 - Stored Cross-Site Scripting | High | CVE-2016-15041 | MainWP Dashboard – The Private WordPress Manager for Multiple Website Maintenance plugin for WordPress versions up to ... |
| MajorDoMo - Unauthenticated RCE | Critical | CVE-2026-27174 | MajorDoMo contains a remote code execution caused by an include order bug and lack of exit after redirect in admin panel... |
| MajorDoMo thumb.php - OS Command Injection | Critical | CVE-2023-50917 | MajorDoMo (aka Major Domestic Module) before 0662e5e allows command execution via thumb.php shell metacharacters. NOTE: ... |
| Maltrail Panel - Detect | Info |  | Maltrail is a malicious traffic detection system, utilizing publicly available (black)lists containing malicious and/or ... |
| Malwared (Build Your Own Botnet) - Detect | Info |  | Detects the presence of the Malwared - Build Your Own Botnet tool on the target system. |
| Malwared BYOB - Unauthenticated Remote Code Execution | Critical |  | Malwared BYOB - Unauthenticated RCE allows remote code execution. |
| ManageEngine Applications Manager - Default Credentials | High |  | Default credentials grants administrative access to ManageEngine Applications Manager, which can be later escalated into... |
| ManageEngine ServiceDesk 9.3.9328 - Arbitrary File Retrieval | High | CVE-2017-11512 | ManageEngine ServiceDesk 9.3.9328 is vulnerable to an arbitrary file retrieval due to improper restrictions of the pathn... |
| MantisBT <=2.30 - Arbitrary Password Reset/Admin Access | High | CVE-2017-7615 | MantisBT through 2.3.0 allows arbitrary password reset and unauthenticated admin access via an empty confirm_hash value ... |
| MantisBT Default Admin Login | High |  | A MantisBT default admin login was discovered. |
| MantisBT Login Panel - Detect | Info |  | MantisBT login panel was detected. |
| MapSVG < 6.2.20 - Unauthenticated SQLi | Critical | CVE-2022-0592 | The MapSVG WordPress plugin before 6.2.20 does not validate and escape a parameter via a REST endpoint before using it i... |
| MapTiler Tileserver-php v2.0 - Unauthenticated File Read | High | CVE-2025-44137 | MapTiler Tileserver-php v2.0 contains a directory traversal caused by improper sanitization of GET parameters in renderT... |
| MapTiler Tileserver-php v2.0 - Unauthenticated XSS | Medium | CVE-2025-44136 | MapTiler Tileserver-php v2.0 contains a reflected XSS caused by unencoded reflection of the GET parameter \"layer\" in a... |
| MasterSAM Star Gate v11 - Local File Inclusion | High | CVE-2024-55457 | MasterSAM Star Gate v11 is vulnerable to a directory traversal attack via the endpoint /adama/adama/downloadService. An ... |
| MasterStudy LMS WordPress Plugin <= 3.2.5 - SQL Injection | Critical | CVE-2024-1512 | The MasterStudy LMS WordPress Plugin for Online Courses and Education plugin for WordPress is vulnerable to union based ... |
| Masteriyo LMS <= 1.7.3 - Insecure Direct Object Reference | Medium | CVE-2024-33939 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Masteriyo Masteriyo - LMS. Unauth access to co... |
| Matomo Panel - Detect | Info |  | google analytics alternative that protects your data and your customers privacy. |
| Mattermost Login - Panel | Info |  | Mattermost Login Panel was discovered. |
| MeTube Instance Detected | Info |  | A MeTube instance was detected. |
| Media Library Assistant < 2.82 - Unauthenticated Limited Local File Inclusion | High | CVE-2020-11732 | Media Library Assistant plugin for WordPress before 2.82 contains a local file inclusion caused by unsanitized mla_galle... |
| Meduza Stealer Panel - Detect | Info |  | Meduza Stealer panel were detected. |
| Memos 0.13.2 - Cross-Site Scripting & SSRF | Medium |  | An SSRF vulnerability exists at the `/o/get/image` that allows unauthenticated users to enumerate the internal network a... |
| Memos Panel - Detect | Info |  | Memos is a privacy-first, lightweight note-taking service |
| MeshCentral Login Panel - Detect | Info |  | MeshCentral login panel was detected. |
| MetInfo CMS <= 8.1 - Remote Code Execution | Critical | CVE-2026-29014 | MetInfo CMS 7.9, 8.0, and 8.1 contain an unauthenticated PHP code injection vulnerability caused by insufficient input n... |
| Metabase - Local File Inclusion | High | CVE-2021-41277 | Metabase is an open source data analytics platform. In affected versions a local file inclusion security issue has been ... |
| Metabase < 0.46.6.1 - Remote Code Execution | Critical | CVE-2023-38646 | Metabase open source before 0.46.6.1 and Metabase Enterprise before 1.46.6.1 allow attackers to execute arbitrary comman... |
| Metabase Installer - Exposure | High |  | Detected Metabase installer page, allowing unauthorized database setup and configuration. |
| Metabase Login Panel - Detect | Info |  | Metabase login panel was detected. |
| Metasploit Panel - Detect | Info |  | Metasploit Web Panel is detected |
| Metasploit Setup and Configuration Page - Detect | Info |  | Metasploit setup and configuration page was detected. |
| MeterSphere Login Panel - Detect | Info |  | MeterSphere login panel was detected. |
| Metersphere - Arbitrary File Read | High | CVE-2023-25573 | Metersphere is an open source continuous testing platform. In affected versions an improper access control vulnerability... |
| Micro Focus Application Lifecycle Management - Panel | Info |  | Micro Focus Application Lifecycle Management login panel was detected. |
| Micro Focus Filr Login Panel - Detect | Info |  | Micro Focus Filr login panel was detected. |
| Micro Focus Vibe Login Panel - Detect | Info |  | Micro Focus Vibe login panel was detected. |
| Microsoft Exchange - Authentication Bypass | High | CVE-2021-33766 | Microsoft Exchange Server Information Disclosure Vulnerability. This vulnerability enables an attacker to bypass authent... |
| Microsoft Exchange - Pre-Auth SSRF / ACL Bypass (ProxyNotFound) | Critical | CVE-2021-28480 | Microsoft Exchange Server contains a remote code execution caused by improper input validation in the server component, ... |
| Microsoft Exchange - Pre-Auth SSRF / ACL Bypass (ProxyNotFound) | Critical |  | Microsoft Exchange Server contains a remote code execution caused by improper input validation in the server component, ... |
| Microsoft Exchange Admin Center Login Panel - Detect | Info |  | Microsoft Exchange Admin Center login panel was detected. |
| Microsoft Exchange Server End-of-Life - Detect | Info |  | Detected Microsoft Exchange Server versions that have reached End-of-Life (EOL) and no longer receive security updates. |
| Microsoft Exchange Server Pre-Auth POST Based Cross-Site Scripting | Medium | CVE-2021-41349 | Microsoft Exchange Server is vulnerable to a spoofing vulnerability. Be aware this CVE ID is unique from CVE-2021-42305. |
| Microsoft Exchange Web Service - Detect | Info |  | Microsoft Exchange Web Services was detected. |
| Microsoft Windows 'HTTP.sys' - Remote Code Execution | Critical | CVE-2015-1635 | HTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold an... |
| Microweber <1.1.20 - Information Disclosure | High | CVE-2020-13405 | Microweber before 1.1.20 is susceptible to information disclosure via userfiles/modules/users/controller/controller.php.... |
| Microweber <1.2.15 - Cross-Site Scripting | Medium | CVE-2022-1439 | Microweber prior to 1.2.15 contains a reflected cross-site scripting vulnerability. An attacker can execute arbitrary sc... |
| MikroTik Router OS Login Panel - Detect | Info |  | MikroTik Router OS login panel was detected. |
| MikroTik RouterOS Admin Login Panel - Detect | Info |  | MikroTik RouterOS admin login panel was detected. |
| Milesight Routers - Information Disclosure | High | CVE-2023-43261 | A critical security vulnerability has been identified in Milesight Industrial Cellular Routers, compromising the securit... |
| MinIO Browser Login Panel - Detect | Info |  | MinIO Browser login panel was detected. |
| MinIO Cluster Deployment - Information Disclosure | High | CVE-2023-28432 | MinIO is susceptible to information disclosure. In a cluster deployment starting with RELEASE.2019-12-17T23-16-33Z and p... |
| MinIO Console Login Panel - Detect | Info |  | MinIO Console login panel was detected. |
| Mingsoft MCMS - SQL Injection | Critical | CVE-2022-4375 | SQL injection vulnerability in Mingsoft MCMS up to 5.2.9 via the sqlWhere parameter in /cms/category/list. |
| Mingsoft MCMS 5.2.9 - SQL Injection | Critical | CVE-2023-50578 | Mingsoft MCMS v5.2.9 contains a SQL injection caused by unsanitized categoryType parameter at /content/list.do, letting ... |
| Mingsoft MCMS v5.2.7 - SQL Injection | Critical | CVE-2022-26585 | Mingsoft MCMS v5.2.7 contains an SQL injection vulnerability via /cms/content/list that allows unauthenticated attackers... |
| Minio Default Login | High |  | Minio default admin credentials were discovered. |
| Mirantis Kubernetes Engine Panel - Detect | Info |  | Mirantis Kubernetes Engine panel was detected. |
| Mirth Connect - Default Admin Credentials | High |  | Detected Mirth Connect was using default credentials admin:admin. Mirth Connect is a widely used healthcare integration ... |
| MistServer Installation Wizard - Exposure | High |  | MistServer installation/setup wizard is publicly accessible, allowing unauthorized users to create admin accounts and ta... |
| Mitel 6000 - Default Login | High |  | This template detects the use of default credentials (admin:22222) on Mitel 6000 devices, which may allow unauthorized a... |
| Mitel Login Panel - Detect | Info |  | Mitel login panel was detected. |
| Mitel MiCollab - Arbitary File Read | Critical | CVE-2024-55550 | The Mitel Collab Arbitrary File Read vulnerability allows an unauthenticated attacker to read arbitrary files from the u... |
| Mitel MiCollab - Authentication Bypass | High | CVE-2024-41713 | A vulnerability in the NuPoint Unified Messaging (NPM) component of Mitel MiCollab through 9.8 SP1 FP2 (9.8.1.201) could... |
| Mitel MiCollab - Information Disclosure & Denial of Service | Critical | CVE-2022-26143 | Mitel MiCollab before 9.4 SP1 FP1 and MiVoice Business Express through 8.1 contain a vulnerability in the TP-240 compone... |
| Mitel MiCollab <= 9.8.0.33 - SQL Injection | Critical | CVE-2024-35286 | A vulnerability in NuPoint Messenger (NPM) of Mitel MiCollab through 9.8.0.33 allows an unauthenticated attacker to cond... |
| Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal | Medium | CVE-2020-11798 | A Directory Traversal vulnerability in the web conference component of Mitel MiCollab AWV before 8.1.2.4 and 9.x before ... |
| Mitel MiCollab Login Panel - Detect | Info |  | Mitel MiCollab login panel was detected. |
| Mitel NuPoint Unified Messaging Panel - Detect | Info |  | Mitel NuPoint Unified Messaging login panel was detected. |
| Mobile Management Platform Panel - Detect | Info |  | Mobile Management Platform panel was detected. |
| MobileIron Core & Connector <= v10.6 & Sentry <= v9.8 - Remote Code Execution | Critical | CVE-2020-15505 | A remote code execution vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, ... |
| MobileIron Core - Remote Unauthenticated API Access | Critical | CVE-2023-35082 | Ivanti Endpoint Manager Mobile (EPMM), formerly MobileIron Core, Since CVE-2023-35082 arises from the same place as CVE-... |
| MobileIron Sentry Panel - Detect | Info |  | MobileIron Sentry panel was detected. |
| Mobotix - Default Login | High |  | Mobotix contains a default admin login vulnerability. An attacker can obtain access to user accounts and access sensitiv... |
| Modoboa < 2.1.0 - Improper Authorization | Critical | CVE-2023-2227 | Improper Authorization in GitHub repository modoboa/modoboa prior to 2.1.0. |
| Modoboa Login Panel - Detect | Info |  | Modoboa login panel was detected. |
| Modular DS - Broken Access Control | High | CVE-2026-23550 | Modular DS = 2.5.1 contains a broken access control vulnerability caused by incorrect privilege assignment, letting atta... |
| Molgenis - Default Login | High |  | Attempts to login to Molgenis using the default credentials (admin/admin). Successful login may indicate a security risk... |
| MongoDB Ops Manager Login Panel - Detect | Info |  | MongoDB Ops Manager login panel was detected. |
| Mongoose - NoSQL Injection | Critical | CVE-2025-23061 | NoSQL injection vulnerability in Mongoose < 8.9.5 affecting the populate() function's match option. This vulnerability e... |
| Monitorr Panel - Detect | Info |  |  |
| Monsta FTP - Detect | Info |  | Detects Monsta FTP web-based file manager interface. |
| Monstra Admin Panel - Detect | Info |  | Monstra admin panel was detected. |
| Moodle LTI module Reflected - Cross-Site Scripting | Medium | CVE-2022-35653 | A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitizat... |
| Moodle Workplace Login Panel - Detect | Info |  | Moodle workplace login panel was detected. |
| Movable Type Pro Login Panel - Detect | Info |  | Movable Type Pro login panel was detected. |
| Multiple Shipping Address Woocommerce < 2.0 - SQL Injection | High | CVE-2022-0783 | The Multiple Shipping Address Woocommerce plugin before 2.0 does not properly sanitize and escape numerous parameters be... |
| Munin Monitoring Dashboard - Exposure | Medium |  | Detected Munin monitoring dashboard, exposing system metrics and server statistics. |
| MyBB - Full Path Disclosure | Low |  | Detected MyBB forum software exposed the server's full filesystem path through PHP fatal errors when files that implemen... |
| MyBB Installation Panel - Detect | High |  | MyBB installation panel was detected. |
| MyBB Login Panel - Detect | Info |  | MyBB login panel was detected. |
| MyQ Print Server Panel - Detect | Info |  |  |
| MyStrom Panel - Detect | Info |  | Mystrom panel was detected. |
| Mystic Stealer Panel - Detect | Info |  | Mystic Stealer panel were detected. |
| N-able N-central < 2024.2 - Authentication Bypass Detection | Critical | CVE-2024-28200 | N-central server versions prior to 2024.2 contain an authentication bypass in the user interface, letting attackers acce... |
| N-central - Authentication Bypass | Medium | CVE-2025-9316 | N-central < 2025.4 can generate sessionIDs for unauthenticated users This issue affects N-central: before 2025.4. |
| N-central Login Panel - Detect | Info |  | N-central login panel was detected. |
| N8n - Config | Medium |  | The `/rest/settings` endpoint in N8n was publicly exposed, which could have disclosed internal configuration details and... |
| NAKIVO Backup and Replication Solution - Unauthenticated Arbitrary File Read | High | CVE-2024-48248 | NAKIVO Backup & Replication is a data protection solution used for backing up and restoring virtualized and physical env... |
| NConf Login Panel - Detect | Info |  | NConf login panel was detected. |
| NETGEAR Routers - Authentication Bypass | High | CVE-2017-5521 | NETGEAR R8500, R8300, R7000, R6400, R7300, R7100LG, R6300v2, WNDR3400v3, WNR3500Lv2, R6250, R6700, R6900, and R8000 devi... |
| NETGEAR Routers - Remote Code Execution | High | CVE-2016-6277 | NETGEAR routers R6250 before 1.0.4.6.Beta, R6400 before 1.0.1.18.Beta, R6700 before 1.0.1.14.Beta, R6900, R7000 before 1... |
| NI Web-based Configuration & Monitoring - Detect | Info |  |  |
| NP Data Cache Panel - Detect | Info |  | NP Data Cache panel was detected. |
| NPS - Authentication Bypass | High |  | This will reveal all parameters configured on the NPS, including the account username and password of the proxy. |
| NPort Web Console Login Panel - Detect | Info |  | NPort Web Console login panel was detected. |
| NS-ASG Application Security Gateway 6.3 - Sql Injection | Medium | CVE-2024-2330 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This... |
| NSQ Admin Panel - Detect | Medium |  | NSQ admin panel was detected. |
| NUUO NVRmini - Remote Command Execution | Critical | CVE-2018-14933 | NUUO NVRmini is vulnerable to unauthenticated remote command execution through the upgrade_handle.php file. The vulnerab... |
| NZBGet Login Panel - Detect | Info |  | NZBGet login panel was detected. |
| Nacos - Information Disclosure | High |  | Nacos unauthorized download of configuration information. |
| NagVis Login Panel - Detect | Info |  | NagVis login panel was detected. |
| Nagios Default Login | High |  | Nagios default admin credentials were discovered. |
| Nagios Log Server - Detect | Info |  | Detects the presence of Nagios Log Server by identifying specific response patterns, HTTP headers, or unique page elemen... |
| Nagios Login Panel - Detect | Info |  | Nagios login panel was detected. |
| Nagios XI Default Admin Login - Detect | Critical |  | Nagios XI default admin login credentials were detected. |
| Nagios XI Login Panel - Detect | Info |  | Nagios XI login panel was detected. |
| NagiosXI <= 5.4.12 - SQL injection | High | CVE-2018-10736 | A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/info.php key1 parameter. |
| NagiosXI <= 5.4.12 `commandline.php` SQL injection | High | CVE-2018-10735 | A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/commandline.php cname parameter. |
| NagiosXI <= 5.4.12 logbook.php SQL injection | High | CVE-2018-10737 | A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/logbook.php txtSearch parameter. |
| NagiosXI <= 5.4.12 menuaccess.php - SQL injection | High | CVE-2018-10738 | A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/menuaccess.php chbKey1 parameter. |
| Navicat On-Prem Server Panel - Detect | Info |  | Navicat On-Prem Server is an on-premise solution that provides you with the option to host a cloud environment for stori... |
| Navidrome <=0.54.5 - Authentication Bypass in Subsonic API | Medium | CVE-2025-27112 | Navidrome is an open source web-based music collection server and streamer. Starting in version 0.52.0 and prior to vers... |
| Ncast busiFacade - Remote Command Execution | High | CVE-2024-0305 | The Ncast Yingshi high-definition intelligent recording and playback system is a newly developed audio and video recordi... |
| Neo4j Browser - Detect | Info |  | The Neo4j Browser has been detected. |
| Neobox Web Server Login Panel - Detect | Info |  | Neobox Web Server login panel was detected. |
| NetAlert X - Arbitary File Read | Critical | CVE-2024-48766 | A directory traversal vulnerability has been identified in NetAlertX versions v24.7.18 - v24.9.12. |
| NetBox - Default Admin Credentials | High |  | Detected that NetBox was using the default credentials admin:admin. The official netbox-docker deployment set SUPERUSER_... |
| NetMRI < 7.6.1 - Authentication Bypass via Hardcoded Credentials | Medium | CVE-2025-32815 | An issue was discovered in Infoblox NETMRI before 7.6.1. Authentication Bypass via a Hardcoded credential can occur. |
| NetMRI Unauthenticated SQL Injection via skipjackUsername | Critical | CVE-2025-32814 | An issue was discovered in Infoblox NETMRI before 7.6.1. Unauthenticated SQL Injection can occur. |
| NetMizer LogManagement System Data - Directory Exposure | High |  | Directory Exposure vulnerability in the NetMizer log management system of Beijing Lingzhou Network Technology Co., Ltd. ... |
| NetMizer LogManagement System cmd.php - Remote Code Execution | Critical |  | Remote Command Execution vulnerability in the NetMizer log management system cmd.php, and the attacker can execute the c... |
| NetSUS Server Default Login | High |  | NetSUS Server default admin credentials were discovered. |
| NetSUS Server Login Panel - Detect | Info |  | NetSUS Server login panel was detected. |
| NetScaler Console - Panel | Info |  | NetScaler Console login panel was discovered. |
| NetScaler Console - Sensitive Information Disclosure | Critical | CVE-2024-6235 | Sensitive information disclosure in NetScaler Console |
| Netdata Dashboard Panel - Detect | Info |  | Netdata Dashboard panel was detected. |
| Netdata Panel - Detect | Info |  | Netdata panel was discovered. |
| Netdisco Admin - Default Login | Critical |  | Detects use of hard-coded credentials in Netdisco. |
| Netentsec NS-ICG - Default Login | High |  | Netentsec NS-ICG contains a default login vulnerability. An attacker can obtain access to user accounts and access sensi... |
| Netflix Conductor UI Panel - Detect | Info |  | Netflix Conductor UI panel was detected. |
| Netflow Analyzer - Default Login | High |  | Netflow Analyzer default login was discovered. |
| Netflow Analyzer Login - Panel | Info |  |  |
| Netgear DGN2200 - Improper Authentication | High | CVE-2024-57046 | A vulnerability in the Netgear DGN2200 router with firmware version v1.0.0.46 and earlier permits unauthorized individua... |
| Netgear WNR614 - Improper Authentication | High |  | A vulnerability in the Netgear WNR614 router permits unauthorized individuals to bypass the authentication. When adding ... |
| Netgear-WN604 downloadFile.php - Information Disclosure | Medium | CVE-2024-6646 | There is an information leakage vulnerability in the downloadFile.php interface of Netgear WN604. A remote attacker usin... |
| Netis Wifi Router - Information Disclosure | High | CVE-2024-48455 | An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0.0.3749 and Netis Wifi ... |
| Netmaker - Hardcoded DNS Secret Key | High | CVE-2023-32077 | Netmaker makes networks with WireGuard. Prior to versions 0.17.1 and 0.18.6, hardcoded DNS key usage has been found in N... |
| Netris Dashboard Panel - Detect | Info |  | Netris Dashboard panel was detected. |
| Netsparker Login Panel - Detect | Info |  | Netsparker login panel was detected. |
| Network Technologies Inc ENVIROMUX - Default Login | High |  | The ENVIROMUX environment monitoring system from Network Technologies Inc was found to be using its default login creden... |
| Newspaper Theme 6.4–6.7.1 - Privilege Escalation | Critical | CVE-2016-10972 | Newspaper Theme versions 6.4 to 6.7.1 for WordPress lacked proper options access control through td_ajax_update_panel, w... |
| Next Terminal - Default Login | High |  | Next Terminal default login was discovered. |
| Next.js <9.3.2 - Local File Inclusion | Medium | CVE-2020-5284 | Next.js versions before 9.3.2 are vulnerable to local file inclusion. An attacker can craft special requests to access f... |
| Next.js Cache Poisoning | High |  | Next.js is vulnerable to cache poisoning through the x-middleware-prefetch and x-invoke-status headers. This can result ... |
| NextGEN Gallery <= 3.59 - Missing Authorization to Unauthenticated Information Disclosure | Medium | CVE-2024-3097 | The WordPress Gallery Plugin – NextGEN Gallery plugin for WordPress is vulnerable to unauthorized access of data due t... |
| NextcloudPi Login - Panel | Info |  | Detects the presence of a NextcloudPi login page. NextcloudPi is a ready-to-use Nextcloud instance for Raspberry Pi. |
| Nexus Default Login | High |  | Nexus default admin credentials were discovered. |
| Nexus Login Panel - Detect | Info |  | Nexus login panel was detected. |
| Nexus Repository Manager - Anonymous Access Enabled | Medium |  | Detected Nexus Repository Manager instance with anonymous access enabled, allowing unauthenticated users to list and bro... |
| Nginx Admin Manager Login Panel - Detect | Info |  | Nginx Admin Manager login panel was detected. |
| Nginx Proxy Manager - Default Login | High |  | Default Nginx Proxy Manager credentials was discovered. |
| Nginx Proxy Manager Login Panel - Detect | Info |  | Nginx Proxy Manager login panel was detected. |
| Nginx UI - Broken Access Control | Critical | CVE-2026-33032 | Network attackers can fully control nginx service, including config modification and service restart, leading to complet... |
| Nginx UI < 2.3.3 - Information Disclosure | Critical | CVE-2026-27944 | Nginx UI < 2.3.3 contains an information disclosure vulnerability caused by unauthenticated access to /api/backup endpoi... |
| Nginx UI Panel - Detect | Info |  | Nginx UI panel was detected. |
| Ninja Tables <4.1.9 - Unauthenticated Arbitrary File Read | High |  | The Ninja Tables plugin for WordPress (versions < 4.1.9) is vulnerable to an unauthenticated arbitrary file download vul... |
| NoEscape Login Panel - Detect | Info |  | NoEscape login panel was detected. |
| NocoBase - Default Login | High |  | NocoBase default login was discovered. |
| NocoDB Panel - Detect | Info |  | NocoDB Login panel was discovered. |
| NocoDB version <= 0.106.1 - Arbitrary File Read | High | CVE-2023-35843 | NocoDB through 0.106.1 has a path traversal vulnerability that allows an unauthenticated attacker to access arbitrary fi... |
| Node RED Dashboard <2.26.2 - Local File Inclusion | High | CVE-2021-3223 | NodeRED-Dashboard before 2.26.2 is vulnerable to local file inclusion because it allows ui_base/js/..%2f directory trave... |
| Node-Red - Default Login | Critical |  | Allows attacker to log in and execute RCE on the Node-Red panel using the default credentials. |
| Node.js REPL History Disclosure | Low |  | The Node.js REPL history file (.node_repl_history) was exposed, which had contained a log of commands entered into the N... |
| NodeBB XML-RPC Request xmlrpc.php - XML Injection | Critical | CVE-2023-43187 | A remote code execution (RCE) vulnerability in the xmlrpc.php endpoint of NodeBB Inc NodeBB forum software prior to v1.1... |
| Nodogsplash - Directory Traversal | High | CVE-2023-39120 | Nodogsplash product was affected by a directory traversal vulnerability that also impacted the OpenWrt product. This vul... |
| Nordex Control Wind Farm Portal Login Panel - Detect | Info |  | Nordex Control Wind Farm Portal login panel was detected. |
| Normhost Backup Server Manager Panel - Detect | Info |  | Normhost Backup server manager panel was detected. |
| Nortek Linear eMerge E3-Series - SQL Injection | Critical | CVE-2022-38627 | Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered ... |
| Nortek Linear eMerge E3-Series <0.32-08f - Remote Command Injection | Critical | CVE-2022-31499 | Nortek Linear eMerge E3-Series devices before 0.32-08f are susceptible to remote command injection via ReaderNo. An atta... |
| Nortek Linear eMerge Panel - Detect | Info |  | Nortek Linear eMerge panel was detected. |
| NotificationX <= 2.8.2 - SQL Injection | Critical | CVE-2024-1698 | The NotificationX - Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar Plugin With Elementor plugin for... |
| NotificationX Dropshipping < 4.4 - SQL Injection | Critical |  | The plugin does not properly sanitise and escape a parameter before using it in a SQL statement via a REST endpoint avai... |
| Nozomi Guardian Login Panel - Detect | Info |  | Nozomi Guardian login panel was detected. |
| Nsfocus - Arbitrary User Login | High |  | Nsfocus bastion host has an arbitrary user login vulnerability. Attackers can use the vulnerability to log in any user b... |
| Nuxeo Platform Login Panel - Detect | Info |  | Nuxeo Platform login panel was detected. |
| O2 Router Setup Panel - Detect | Info |  | O2 router setup panel was detected. |
| O2OA - Default Login | High |  | O2OA is an open source and free enterprise and team office platform. It provides four major platforms portal management,... |
| OCS Inventory Login Panel - Detect | Info |  | OCS Inventory login panel was detected. |
| OKIOK S-Filer Portal Login Panel - Detect | Info |  | OKIOK S-Filer Portal login panel was detected. |
| OLT Web Management Interface Login Panel - Detect | Info |  | OLT Web Management Interface login panel was detected. |
| OLYMPIC Banking System Login Panel - Detect | Info |  | OLYMPIC Banking System was detected. |
| OPNsense Panel - Detect | Info |  | OPNsense panel was detected. |
| OSASI Login - Panel | Info |  | OSASI Login panel was discovered. |
| OSASI PLC - Default Login | High |  | Detected OSASI PLC web interface accessible with default credentials, potentially allowing unauthorized administrative a... |
| OSNEXUS QuantaStor Manager Panel - Detect | Info |  | OSNEXUS QuantaStor Manager login panel was detected. |
| OTOBO Login Panel - Detect | Info |  | OTOBO login panel was detected. |
| OcoMon Login Panel - Detect | Info |  | a tiny helpdesk system written in php |
| OctoberCMS - Default Admin Discovery | High |  | OctoberCMS default admin credentials were discovered. |
| Odoo - Database Manager Discovery | Low |  | Odoo database manager was discovered. |
| Odoo - Panel Detect | Info |  |  |
| Odoo Apps - Cross-Site Scripting via Prototype Pollution | High | CVE-2021-20086 | jquery-bbq 1.2.1 contains a prototype pollution caused by improperly controlled modification of object prototype attribu... |
| Odoo OpenERP Database Selector Panel - Detect | Info |  | Odoo OpenERP database selector panel was detected. |
| Office Web Apps Server Panel - Detect | Info |  | Microsoft Office Web App Login Panel was discovered. |
| OfficeKeeper Admin Login Panel - Detect | Info |  | OfficeKeeper admin login panel was detected. |
| Okta Login Panel - Detect | Info |  | Okta login panel was detected. |
| Omnia MPX 1.5.0+r1 - Local File Inclusion | Critical | CVE-2022-36642 | Telos Alliance Omnia MPX Node through 1.5.0+r1 is vulnerable to local file inclusion via logs/downloadMainLog. By retrie... |
| Omnia MPX Node Login Panel - Detect | Info |  | Omnia MPX Node login panel was detected. |
| Omnissa Workspace ONE UEM - Path Traversal | High |  | Omnissa Workspace ONE UEM contains a path traversal caused by crafted GET requests to restricted API endpoints, letting ... |
| OneDev < 4.0.3 - User Access Token Leak | High | CVE-2021-21246 | OneDev before version 4.0.3 contains an insecure endpoint that allows retrieval of arbitrary user details, including acc... |
| OneDev Panel - Detect | Info |  | OneDev is a Git Server with CI/CD, Kanban, and Packages. |
| OneDev.io < 11.0.9 - Arbitrary File Read | High | CVE-2024-45309 | Files on the host computer can be accessed by directory traversal. |
| Open Game Panel Login Panel - Detect | Info |  | Open Game Panel login panel was detected. |
| Open Virtualization Userportal & Webadmin Panel Detection | Info |  | Open Virtualization Userportal & Webadmin panels were detected. Open Virtualization Manager is an open-source distribute... |
| Open Web Analytics Login - Detect | Info |  | Detects the presence of Open Web Analytics login page. |
| Open WebUI - Default Login | Critical |  | Detected the presence of an OpenWebUI panel with default credentials (admin@localhost/admin). Successful authentication ... |
| OpenAM Login Panel - Detect | Info |  | OpenAM login panel was detected. |
| OpenBullet 2 - Panel | Info |  | Openbullet was detected. |
| OpenCATS - Default Login | High |  | OpenCATS contains a default admin login vulnerability. An attacker can obtain access to user accounts and access sensiti... |
| OpenCATS Login Panel - Detect | Info |  | OpenCATS login panel was detected. |
| OpenCMS 14 & 15 - Cross Site Scripting | Medium | CVE-2023-6379 | Cross-site scripting (XSS) vulnerability in Alkacon Software Open CMS, affecting versions 14 and 15 of the 'Mercury' tem... |
| OpenCart Core 4.0.2.3 'search' - SQL Injection | High |  | Opencart allows SQL Injection via parameter 'search' in /index.php?route=product/search&search=. Exploiting this issue c... |
| OpenCart Login Panel - Detect | Info |  | OpenCart login panel was detected. |
| OpenCode < 1.0.216 - Unauthenticated Remote Code Execution | High | CVE-2026-22812 | OpenCode versions prior to 1.0.216 contain an unauthenticated remote code execution vulnerability. The application expos... |
| OpenEMR - Default Admin Discovery | High |  | OpenEMR default admin credentials were discovered. |
| OpenEMR Product Registration Panel - Detect | Info |  | OpenEMR Product Registration panel was detected. |
| OpenEdge Login Panel - Detect | Info |  | An OpenEdge login panel was detected. |
| OpenHands Panel - Detect | Info |  | OpenHands (formerly OpenDevin) was detected. OpenHands is an open-source AI software engineering agent platform that can... |
| OpenLiteSpeed WebAdmin - Default Login | High |  | Detected OpenLiteSpeed WebAdmin Console was using default credentials. |
| OpenMediaVault - Default Login | High |  |  |
| OpenMetadata - Admin User Enumeration | Medium |  | Enumerates the admin users registered on OpenMetadata server. |
| OpenObserve Login Panel - Detect | Info |  | OpenObserve products was detected. |
| OpenPLC Webserver v3 - Default Login | High |  | Identifies default credentials (openplc:openplc) on OpenPLC Webserver v3, allowing unauthorized access to the web interf... |
| OpenProject - Default Admin Credentials | High |  | Detected OpenProject was found using the default administrator credentials admin:admin. An attacker could gain full admi... |
| OpenProject < 12.5.4 - Project Identifiers Exposure | Medium | CVE-2023-33960 | OpenProject versions before 12.5.6 generate a publicly accessible robots.txt file revealing project identifiers, even if... |
| OpenSIS 7.3 - SQL Injection | Critical | CVE-2020-6637 | OpenSIS Community Edition version 7.3 is vulnerable to SQL injection via the USERNAME parameter of index.php. |
| OpenSIS Login Panel - Detect | Info |  | OpenSIS login panel was detected. |
| OpenSearch Dashboard Panel - Detect | Info |  | OpenSearch Dashboard is a visualization and management tool for OpenSearch. This template detects the presence of the Op... |
| OpenSign Login Panel - Detect | Info |  | OpenSign Login panel was discovered. |
| OpenText Content Server Login Panel - Detect | Info |  | OpenText Content Server products was detected. |
| OpenVPN Admin Login Panel - Detect | Info |  | OpenVPN Admin login panel was detected. |
| OpenVPN Connect Panel - Detect | Info |  | OpenVPN Connect panel was detected. |
| OpenVPN Server Router Management Panel - Detect | Info |  | OpenVPN Server Router Management Panel was detected. |
| OpenVZ Web Panel Login Panel - Detect | Info |  | OpenVZ Web Panel login panel was detected. |
| OpenVas Login Panel - Detect | Info |  | An OpenVas Admin login panel was detected. |
| OpenX/Revive Adserver Login Panel - Detect | Info |  | OpenX login panel was detected. Note that OpenX is now a Revive Adserver. |
| Openfire Admin Console Login Panel - Detect | Info |  | Openfire Admin Console login panel was detected. |
| Openfire Administration Console - Authentication Bypass | High | CVE-2023-32315 | Openfire is an XMPP server licensed under the Open Source Apache License. Openfire's administrative console, a web-based... |
| Opentwrt Login / Configuration Interface | Info |  |  |
| Opentwrt luCI - Admin Login Page | Info |  | An Opentwrt admin login page was discovered. |
| Openweb UI Panel - Detect | Info |  | OpenWebUI was detected - a platform for running AI on your own terms |
| Opinio Login Panel - Detect | Info |  | Opinio login panel was detected. |
| Opsview Monitor Pro - Local File Inclusion | High | CVE-2016-10367 | Opsview Monitor Pro prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x without a certai... |
| Oracle ADF Faces Deserialization of Untrusted Data Vulnerability | Critical | CVE-2022-21445 | Vulnerability in versions 12.2.1.3.0 and 12.2.1.4.0 of the Oracle Application Development
Framework (ADF) component of O... |
| Oracle Access Management Login Panel - Detect | Info |  | Oracle Access Management login panel was detected. |
| Oracle Access Manager - Remote Code Execution | Critical | CVE-2021-35587 | The Oracle Access Manager  portion of Oracle Fusion Middleware (component: OpenSSO Agent) is vulnerable to remote code e... |
| Oracle Agile Product Lifecycle Management (PLM) Incorrect Authorization Vulnerability | High | CVE-2024-21287 | A vulnerability found within version 9.3.6 of the Oracle Agile PLM Framework allows an unauthenticated
attacker access t... |
| Oracle Application Server Panel - Detect | Info |  | Oracle Application Server login panel was detected. |
| Oracle Business Intelligence Default Login | High |  | Oracle Business Intelligence default admin credentials were discovered. |
| Oracle Business Intelligence Login Panel - Detect | Info |  | Oracle Business Intelligence login panel was detected. |
| Oracle Commerce Business Control Center Login Panel - Detect | Info |  | Oracle Commerce Business Control Center login panel was detected. |
| Oracle E-Business Suite 12.2.3–12.2.14 – Remote Code Execution | Critical | CVE-2025-61882 | Oracle Concurrent Processing 12.2.3-12.2.14 contains a remote code execution caused by unauthenticated network access vi... |
| Oracle E-Business Suite <=12.2 - Authentication Bypass | High | CVE-2022-21500 | Oracle E-Business Suite (component: Manage Proxies) 12.1 and 12.2 are susceptible to an easily exploitable vulnerability... |
| Oracle E-Business Suite Login Panel - Detect | Info |  | Oracle E-Business Suite login panel was detected. |
| Oracle Forms & Reports RCE (CVE-2012-3152 & CVE-2012-3153) | Medium | CVE-2012-3153 | An unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.4,
11.1.1.6, a... |
| Oracle Fusion - Directory Traversal/Local File Inclusion | High | CVE-2020-14864 | Oracle Business Intelligence Enterprise Edition 5.5.0.0.0, 12.2.1.3.0, and 12.2.1.4.0 are vulnerable to local file inclu... |
| Oracle Fusion Middleware WebLogic Server Administration Console - Remote Code Execution | High | CVE-2020-14883 | The Oracle Fusion Middleware WebLogic Server admin console in versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 an... |
| Oracle Identity Manager REST WebServices - Authentication Bypass | Critical | CVE-2025-61757 | Vulnerability in the Identity Manager product of Oracle Fusion Middleware (component: REST WebServices). Supported versi... |
| Oracle Integrated Lights Out Manager Login Panel - Detect | Info |  | Oracle Integrated Lights Out Manager login panel was detected. |
| Oracle Opera Login - Detect | Info |  |  |
| Oracle PeopleSoft - Default Login | High |  | Oracle PeopleSoft contains a default admin login vulnerability. An attacker can obtain access to user accounts and acces... |
| Oracle PeopleSoft Enterprise Login Panel - Detect | Info |  | Oracle PeopleSoft Enterprise login panel detected. |
| Oracle PeopleSoft Login Panel - Detect | Info |  | Oracle PeopleSoft login panel was detected. |
| Oracle Peoplesoft - Unauthenticated File Read | High | CVE-2023-22047 | Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component- Portal).  Supported vers... |
| Oracle Retail Xstore Suite - Pre-authenticated Path Traversal | High | CVE-2024-21136 | Vulnerability in the Oracle Retail Xstore Office product of Oracle Retail Applications (component: Security). Supported ... |
| Oracle WebLogic Login Panel - Detect | Info |  | Oracle WebLogic login panel was detected. |
| Oracle WebLogic Server - Remote Code Execution | Critical | CVE-2018-2893 | The Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services) versions 10.3.6.0, 12.1.3.... |
| Oracle WebLogic Server - Remote Code Execution | Critical | CVE-2020-2551 | Oracle WebLogic Server (Oracle Fusion Middleware (component: WLS Core Components) is susceptible to a remote code execut... |
| Oracle WebLogic Server - Remote Command Execution | Critical | CVE-2019-2725 | The Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services) allows unauthenticated att... |
| Oracle WebLogic Server Local File Inclusion | High | CVE-2022-21371 | An easily exploitable local file inclusion vulnerability allows unauthenticated attackers with network access via HTTP t... |
| Oracle WebLogic UDDI Explorer Panel - Detect | Info |  | Oracle WebLogic UDDI Explorer panel was detected. |
| Orchid Core VMS Panel - Detect | Info |  | Orchid Core VMS panel was detected. |
| Order Delivery Date Pro for WooCommerce < 12.3.1 - Arbitrary Option Update | Critical | CVE-2025-2907 | The Order Delivery Date WordPress plugin before 12.3.1 does not have authorization and CSRF checks when importing settin... |
| OurMGMT3 Admin Login Panel - Detect | Info |  | OurMGMT3 admin login panel was detected. |
| OutSystems Service Center Login Panel - Detect | Info |  | OutSystems Service Center login panel was detected. |
| OwnCloud - Phpinfo Configuration | High | CVE-2023-49103 | An issue was discovered in ownCloud owncloud/graphapi 0.2.x before 0.2.1 and 0.3.x before 0.3.1. The graphapi app relies... |
| Owncast - Default Credentials | High |  | Detected Owncast using default admin credentials admin:abc123. The admin API was accessible via HTTP Basic authenticatio... |
| PAHTool Login Panel - Detect | Info |  | PAHTool login panel was detected. |
| PAN-OS Management Interface - Path Confusion to Authentication Bypass | Critical | CVE-2025-0108 | A vulnerability in PAN-OS management interface allows authentication bypass through path confusion between Nginx and Apa... |
| PAN-OS Management Panel - Detect | Info |  | PAN-OS management panel was detected. |
| PAN-OS Management Web Interface - Authentication Bypass | Critical | CVE-2024-0012 | An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access t... |
| PDF Generator Addon for Elementor Page Builder <= 1.7.5 - Arbitrary File Download | High | CVE-2024-9935 | The PDF Generator Addon for Elementor Page Builder plugin for WordPress is vulnerable to Path Traversal in all versions ... |
| PDI Intellifuel - Device Page | Low |  |  |
| PHP CGI - Argument Injection | Critical | CVE-2024-4577 | PHP CGI - Argument Injection (CVE-2024-4577) is a critical argument injection flaw in PHP. |
| PHP LDAP Admin Panel - Detect | Info |  |  |
| PHP Login System 2.0.1 - Cross-Site Scripting | Medium | CVE-2023-38875 | msaad1999's PHP-Login-System 2.0.1 contains a reflected cross-site scripting caused by unsanitized input in 'validator' ... |
| PHPCI Configuration Exposure "phpci.yml" Exposure | Info |  | PHPCI Configuration "phpci.yml" File was exposed. |
| PHPCMS 2008 - Remote Code Execution via Template Injection | Critical | CVE-2018-19127 | PHPCMS 2008 suffers from an unauthenticated RCE via template injection in type.php, where attacker-supplied content is w... |
| PHPGurukul Hospital Management System 4.0 - SQL Injection | High | CVE-2020-22165 | PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\user-login.php. Remote unaut... |
| PHPIPAM <v1.5.1 - Missing Authorization | Medium | CVE-2023-0678 | In phpIPAM 1.5.1, an unauthenticated user could download the list of high-usage IP subnets that contains sensitive infor... |
| PHPJabbers Food Delivery Script - SQL Injection | Critical | CVE-2023-40748 | PHPJabbers Food Delivery Script 3.0 has a SQL injection (SQLi) vulnerability in the "q" parameter of index.php. |
| PHPJabbers Food Delivery Script v3.0 - SQL Injection | Critical | CVE-2023-40749 | PHPJabbers Food Delivery Script v3.0 is vulnerable to SQL Injection in the "column" parameter of index.php. |
| PHPJabbers Shuttle Booking Software 1.0 - Cross Site Scripting | Medium | CVE-2023-4112 | The attacker can send to victim a link containing a malicious URL in an email or instant message can perform a wide vari... |
| PHPJabbers Taxi Booking 2.0 - Cross Site Scripting | Medium | CVE-2023-4116 | A vulnerability classified as problematic was found in PHP Jabbers Taxi Booking 2.0. Affected by this vulnerability is a... |
| PHPMailer Panel - Detect | Info |  | PHPMailer panel was detected. |
| PMB 7.4.6 - Cross-Site Scripting | Medium | CVE-2023-24733 | PMB 7.4.6 contains a cross-site scripting vulnerability via the query parameter at /admin/convert/export_z3950_new.php. ... |
| PRONOTE Login Panel - Detect | Info |  | PRONOTE products was detected. |
| PRTG Network Monitor - Hardcoded Credentials | High |  | PRTG Network Monitor contains a hardcoded credential vulnerability. An attacker can obtain access to user accounts and a... |
| Pair Drop Panel - Detect | Info |  | Local file sharing in your browser. Inspired by Apple's AirDrop. Fork of Snapdrop. |
| Palo Alto Expedition - Admin Account Takeover | Critical | CVE-2024-5910 | Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account ... |
| Palo Alto Expedition - SQL Injection | High | CVE-2024-9465 | An SQL injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to reveal Expedition ... |
| Palo Alto Expedition Project Login - Detect | Info |  | Palo Alto Expedition Project login panel was detected. |
| Palo Alto Network PAN-OS - Remote Code Execution | Critical | CVE-2017-15944 | Palo Alto Network PAN-OS and Panorama before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 al... |
| Palo Alto Networks PAN-OS Default Login | High |  | Palo Alto Networks PAN-OS application default admin credentials were discovered. |
| Pandora FMS Mobile Console Login Panel - Detect | Info |  | Pandora FMS Mobile Console login panel was detected. |
| PaperCut < 22.1.3 - Path Traversal | Critical | CVE-2023-39143 | PaperCut NG and PaperCut MF before 22.1.3 are vulnerable to path traversal which enables attackers to read, delete, and ... |
| PaperCut NG Unauthenticated XMLRPC Functionality | Medium | CVE-2023-4568 | PaperCut NG allows for unauthenticated XMLRPC commands to be run by default. Versions 22.0.12 and below are confirmed to... |
| Parallels H-Sphere 3.6.1713 - Cross-Site Scripting | Medium | CVE-2022-30777 | Parallels H-Sphere 3.6.1713 contains a cross-site scripting vulnerability via the index_en.php 'from' parameter. |
| Parallels H-Sphere Login Panel - Detect | Info |  | Parallels H-Sphere login panel was detected. |
| Parse Dashboard Login Panel - Detect | Info |  | Parse Dashboard login panel was detected. |
| Parse Server - GraphQL Schema Information Disclosure | Medium |  | The Parse Server GraphQL API previously allowed public access to the GraphQL schema without requiring a session token or... |
| Passbolt Login Panel | Info |  | Passbolt login panel was detected. |
| Payroll Management System Web Login Panel - Detect | Info |  | Payroll Management System Web login panel was detected. |
| Pega Infinity Login Panel - Detect | Info |  | Pega Infinity login panel was detected. |
| Pelco Sarix - Default Login | High |  | Pelco Sarix camera default login credentials (admin/admin) were discovered using Digest Authentication. |
| Pentaho Default Login | High |  | Pentaho default admin credentials were discovered. |
| Perforce Repository Disclosure | Low |  | Detected an exposed .p4ignore file, which could have revealed ignored files, sensitive paths, or developer-specific info... |
| Persis Panel - Detect | Info |  | Persis panel was detected, |
| Personal Weather Station Dashboard 12 - Directory Traversal | High | CVE-2025-47423 | Personal Weather Station Dashboard 12_lts allows unauthenticated remote attackers to read arbitrary files via ../ direct... |
| Phabricator Login Panel - Detect | Info |  | Phabricator login panel was detected. |
| Phoenix Contact CHARX SEC-3XXX AC Charging Controller Panel - Detect | Info |  | Phoenix Contact CHARX SEC-3XXX AC Charging Controller panel was detected. |
| Phoenix Contact CHARX SEC-3XXX AC Charging Controller REST API - Detect | Info |  | Phoenix Contact CHARX SEC-3XXX AC Charging Controller REST API was detected. |
| Phoenix Contact CHARX SEC-3XXX AC Controller < 1.7.3 - Multiple Vulnerabilities | Critical |  | Multiple vulnerabilities exist in Phoenix Contact CHARX SEC-3XXX AC Controller versions prior to 1.7.3. Successful explo... |
| Phoronix Test Suite Panel - Detect | Info |  | Phoronix Test Suite panel was detected. |
| Photo Gallery by 10Web < 1.6.0 - SQL Injection | Critical | CVE-2022-0169 | The Photo Gallery by 10Web WordPress plugin before 1.6.0 does not validate and escape the bwg_tag_id_bwg_thumbnails_0 pa... |
| PhotoPrism Panel - Detect | Info |  | PhotoPrism is an AI-powered photos app for the decentralized web. This template detects the presence of PhotoPrism login... |
| PhpMyAdmin - Unauthenticated Access | High |  | Unauthenticated Access to phpmyadmin dashboard. |
| PhpMyAdmin <4.8.2 - Local File Inclusion | High | CVE-2018-12613 | PhpMyAdmin before version 4.8.2 is susceptible to local file inclusion that allows an attacker to include (view and pote... |
| PhpMyAdmin Scripts - Remote Code Execution | High | CVE-2009-1151 | PhpMyAdmin Scripts 2.11.x before 2.11.9.5 and 3.x before 3.1.3.1 are susceptible to a remote code execution in setup.php... |
| Pichome 2.1.0 - Arbitrary File Read | High | CVE-2025-1743 | A vulnerability, which was classified as critical, was found in zyx0814 Pichome 2.1.0. This affects an unknown part of t... |
| Pichome Login Panel - Detect | Info |  | Pichome login panel was detected. |
| Piwigo - User Enumeration via Password Reset | Medium | CVE-2025-62512 | Piwigo is an open source photo gallery application for the web. In version 15.5.0 and likely earlier 15.x releases, the ... |
| Piwigo Login Panel - Detect | Info |  | Piwigo login panel was detected. |
| Planet eStream Login Panel - Detect | Info |  | Planet eStream login panel was detected. |
| Plausible Panel - Detect | Info |  | Plausible is intuitive, lightweight and open source web analytics. |
| Plesk End-of-Life - Detect | Info |  | Detected Plesk versions that have reached End-of-Life (EOL) and no longer receive security updates. |
| Plesk Login Panel - Detect | Info |  | Plesk login panel was detected. |
| Plesk Obsidian Login Panel - Detect | Info |  | Plesk Obsidian login panel was detected. |
| PocketBase Panel - Detect | Info |  | PocketBase Login panel was discovered. |
| Polarion Siemens Login - Panel | Info |  | Detects the exposed Polarion Siemens login page. |
| Polycom HDX - Web Interface Exposure | Low |  | Detecetd Polycom HDX video conferencing system web interface, potentially allowing unauthorized access to device configu... |
| Popup-Maker < 1.8.12 - Broken Authentication | Critical | CVE-2019-17574 | An issue was discovered in the Popup Maker plugin before 1.8.13 for WordPress. An unauthenticated attacker can partially... |
| Portainer - Init Deploy Discovery | Medium |  | Portainer initialization deployment files were discovered. |
| Portainer Login Panel - Detect | Info |  |  |
| Portal do Software Publico Brasileiro i3geo 7.0.5 - Local File Inclusion | Critical | CVE-2022-32409 | Portal do Software Publico Brasileiro i3geo 7.0.5 is vulnerable to local file inclusion in the component codemirror.php,... |
| Post Grid <= 2.2.50 - Information Exposure via REST API | High | CVE-2023-40211 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in PickPlugins Post Grid Combo – 36+ Gutenber... |
| PostHog Login Panel - Detect | Info |  | PostHog login panel was detected. |
| Poste.io Admin Panel - Detect | Info |  | Poste.io login panel was detected. |
| PowerChute Network Shutdown Panel - Detect | Info |  |  |
| PowerCom Network Manager | Info |  |  |
| PowerJob - Default Login | High |  | PowerJob default login credentials were discovered. |
| PowerJob <=4.3.2 - Unauthenticated Access | Medium | CVE-2023-29923 | PowerJob V4.3.1 is vulnerable to Insecure Permissions. via the list job interface. |
| PowerJob List - Authorization Bypass | Medium | CVE-2025-11580 | PowerJob = 5.1.2 contains a broken access control caused by missing authorization in /user/list function, letting remote... |
| PowerJob Login Panel - Detect | Info |  | PowerJob login panel was detected. |
| PowerShell Universal - Default Login | High |  | PowerShell Universal default admin credentials were discovered. |
| Powertek Firmware <3.30.30 - Authorization Bypass | High | CVE-2022-33174 | Powertek firmware (multiple brands) before 3.30.30 running Power Distribution Units are vulnerable to authorization bypa... |
| Pre-Auth Takeover of Build Pipelines in GoCD | High | CVE-2021-43287 | GoCD contains a critical information disclosure vulnerability whose exploitation allows unauthenticated attackers to lea... |
| PrestaShop < 1.7.6.6 - Information Exposure via Upload Directory | Low | CVE-2020-15081 | PrestaShop versions after 1.5.0.0 and before 1.7.6.6 are vulnerable to information exposure through directory listing in... |
| PrestaShop Theme Volty CMS Blog - SQL Injection | Critical | CVE-2023-39650 | In the module 'Theme Volty CMS Blog' (tvcmsblog) up to versions 4.0.1 from Theme Volty for PrestaShop, a guest can perfo... |
| PrestaShop `tshirtecommerce` Module - SQL Injection | Critical | CVE-2023-27637 | The tshirtecommerce module for PrestaShop is vulnerable to unauthenticated SQL injection via the designer endpoint, allo... |
| PrestaShop fieldpopupnewsletter Module - Cross Site Scripting | Medium | CVE-2023-39676 | Fieldpopupnewsletter Prestashop Module v1.0.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerabi... |
| PrestaShop productsalert - SQL Injection | Critical | CVE-2024-36683 | In the module 'Products Alert' (productsalert) up to version 1.7.4 from Smart Modules for PrestaShop, a guest can perfor... |
| PrestaShop xipblog - SQL Injection | Critical | CVE-2023-27847 | In the blog module (xipblog), an anonymous user can perform SQL injection. Even though the module has been patched in ve... |
| Prestashop posstaticfooter <= 1.0.0 - SQL Injection | Critical | CVE-2023-30194 | Prestashop posstaticfooter <= 1.0.0 is vulnerable to SQL Injection via posstaticfooter::getPosCurrentHook(). |
| Prettier - Ignore File Disclosure | Info |  | The .prettierignore file is publicly accessible, potentially revealing project structure, sensitive file paths, and inte... |
| Prime Mover < 1.9.3 - Sensitive Data Exposure | High | CVE-2023-6505 | Prime Mover plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1... |
| Primetek Primefaces 5.x - Remote Code Execution | Critical | CVE-2017-1000486 | Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution. |
| Prison Management System - SQL Injection Authentication Bypass | High | CVE-2024-33288 | Sql injection vulnerability was found on the login page in Prison Management System |
| Pritunl - Panel | Info |  | Realtime website and application monitoring tool |
| PrivateGPT - Detect | Info |  | PrivateGPT panel has been detected. |
| ProcessWire Login - Panel Detect | Info |  | ProcessWire login panel was detected. |
| Procore Login - Panel | Info |  |  |
| Prodigy Commerce <= 3.3.0 - Local File Inclusion | Critical | CVE-2026-0926 | Prodigy Commerce WordPress plugin <= 3.2.9 contains a local file inclusion caused by improper sanitization of 'parameter... |
| ProfileGrid <= 5.7.8 - SQL Injection | Critical | CVE-2024-30490 | The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to SQL Injection in version... |
| Progress Kemp LoadMaster - Command Injection | Critical | CVE-2024-1212 | Unauthenticated remote attackers can access the system through the LoadMaster management interface, enabling arbitrary s... |
| Progress Kemp LoadMaster Panel - Detect | Info |  | A Progress Kemp LoadMaster panel was detected. |
| Progress ShareFile Storage Zones Controller - Authentication Bypass | Critical | CVE-2026-2699 | Customer Managed ShareFile Storage Zones Controller (SZC) contains an authentication bypass (Execution After Redirect) t... |
| Project Insight Login Panel - Detect | Info |  | Project Insight login panel was detected. |
| ProjectSend Login Panel - Detect | Info |  | ProjectSend login panel was detected. |
| Proofpoint Protection Server Panel - Detect | Info |  | Proofpoint Protection Server panel was detected. |
| Protect WP Admin < 4.0 - Unauthenticated Protection Bypass | Medium | CVE-2023-3139 | The Protect WP Admin WordPress plugin before version 4.0 disclosed the URL of the admin panel through the redirection of... |
| Proxmox Virtual Environment Login Panel - Detect | Info |  | Proxmox Virtual Environment login panel was detected. |
| Pterodactyl Panel - Remote Code Execution | Critical | CVE-2025-49132 | Pterodactyl is a free, open-source game server management panel. Using the /locales/locale.json with the locale and name... |
| Pterodactyl game server - Panel | Info |  | Detects Pterodactyl game server management panel. |
| Pulsar Admin Console Panel - Detect | Info |  | Pulsar admin console panel was detected. |
| Pulsar Admin UI Panel - Detect | Info |  | Pulsar admin UI panel was detected. |
| Pulsar360 Admin Panel - Detect | Info |  | Pulsar360 admin panel was detected. |
| Pulse Connect Secure SSL VPN Arbitrary File Read | Critical | CVE-2019-11510 | Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4 all contain an a... |
| Puppetboard Panel - Detect | Info |  | Puppetboard panel was detected. |
| Pure Storage Login Panel - Detect | Info |  | Pure Storage login panel was detected. |
| PyLoad Default Login | High |  | PyLoad Default Credentials were discovered. |
| PyLoad Login - Panel | Info |  | A Pyload Login was detected. |
| Python Requirements File Disclosure | Low |  | Detected Python requirements.txt file. This file contains Python package dependencies and versions that could reveal tec... |
| Python Setup Configuration - Exposure | Low |  | Python Setup Configuration "setup.py" File was exposed. |
| QNAP HBS 3 - Broken Access Control | Critical | CVE-2021-28799 | An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 (Hybrid Backup Sync. ) If exp... |
| QNAP Music Station < 5.4.0 - Authentication Bypass | Medium | CVE-2023-45038 | An improper authentication vulnerability has been reported to affect Music Station. If exploited, the vulnerability coul... |
| QNAP Photo Station - Path Traversal | Critical | CVE-2019-7195 | QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attack... |
| QNAP Photo Station Panel - Detect | Info |  | QNAP Photo Station panel was detected. |
| QNAP QTS Photo Station External Reference - Local File Inclusion | Critical | CVE-2022-27593 | QNAP QTS Photo Station External Reference is vulnerable to local file inclusion via an externally controlled reference t... |
| QNAP QTS and Photo Station 6.0.3 - Remote Command Execution | Critical | CVE-2019-7192 | This improper access control vulnerability allows remote attackers to gain unauthorized access to the system. To fix the... |
| QNAP Turbo NAS Login Panel - Detect | Info |  | QNAP QTS login panel was detected. |
| Qlik Sense Enterprise - HTTP Request Smuggling | Critical | CVE-2023-41265 | An HTTP Request Tunneling vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023 Patch 3 and ear... |
| Qlik Sense Enterprise - Path Traversal | Medium | CVE-2023-41266 | A path traversal vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023 Patch 3 and earlier, Feb... |
| Qlik Sense Server Panel - Detect | Info |  | Qlik Sense Server panel was detected. |
| QlikView AccessPoint Login Panel - Detect | Info |  | QlikView AccessPoint login panel was detected. |
| QloApps 1.6.0 - SQL Injection | High | CVE-2023-36284 | An unauthenticated Time-Based SQL injection found in Webkul QloApps 1.6.0 via GET parameters date_from, date_to, and id_... |
| QmailAdmin Login Panel - Detect | Info |  | QmailAdmin login panel was detected. |
| Qualitor ITSM - Detect | Info |  | Qualitor ITSM login panel was detected. |
| Quest KACE System Management Appliance 8.0.318 - Remote Code Execution | Critical | CVE-2018-11138 | The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by... |
| Quest Modem Configuration Login - Panel | Info |  | Quest Modem Configuration login Panel was detected. |
| Quick.CMS v6.7 - SQL Injection | High |  | Quick.CMS version 6.7 suffers from a remote SQL injection vulnerability that allows for authentication bypass. |
| Quilium Panel - Detect | Info |  | Quilium CMS Login Panel was detected. |
| Quiz and Survey Master <= 8.1.4 - SQL Injection | Critical | CVE-2023-28787 | ExpressTech Quiz And Survey Master (versions up to 8.1.4) contains an SQL injection caused by improper neutralization of... |
| Qwik - Unauthenticated RCE via server$ Deserialization | Critical | CVE-2026-27971 | Qwik <=1.19.0 contains an insecure deserialization vulnerability in the server$ RPC mechanism, letting unauthenticated a... |
| RCDevs WebADM Panel - Detect | Info |  | RCDevs WebADM Login Panel was detected. |
| RD Web Access Panel - Detect | Info |  | RD web access panel was discovered. |
| RDWeb RemoteApp and Desktop Connections - Web Access | Info |  | RDWeb RemoteApp and Desktop Connections does not display. |
| RG-UAC Ruijie - Password Hashes Leak | High |  | Multiple Firewall Devices from vendor Ruijie Networks are affected by an information leakage vulnerability where credent... |
| RStudio Sign In Panel - Detect | Info |  | RStudio Sign In panel was detected. |
| RWS WorldServer - Authentication Bypass | Critical | CVE-2022-34267 | An issue was discovered in RWS WorldServer before 11.7.3. Adding a token parameter with the value of 02 bypasses all aut... |
| RabbitMQ Default Login | High |  | RabbitMQ default admin credentials were discovered. |
| Racksnet Login Panel - Detect | Info |  | Racksnet login panel was detected. |
| RaidenMAILD Mail Server v.4.9.4 - Path Traversal | High | CVE-2024-32399 | Directory Traversal vulnerability in RaidenMAILD Mail Server v.4.9.4 and before allows a remote attacker to obtain sensi... |
| RailsAdmin Dashboard Exposure | High |  | Detected RailsAdmin dashboard was exposed without proper authentication, allowing unauthorized access to data management... |
| Rainloop WebMail - Default Admin Login | High |  | Rainloop WebMail default admin login credentials were successful. |
| Rancher Dashboard Panel - Detect | Info |  | Rancher Dashboard was detected. |
| Rancher Default Login | High |  | Rancher default admin credentials were discovered. Rancher is an open-source multi-cluster orchestration platform that l... |
| Rancher Login Panel - Detect | Info |  | Rancher login panel was detected. |
| Rapid7 Nexpose VM Security Console - Detect | Info |  | Rapid7 Nexpose VM Security Console login panel was detected. |
| RaspAP 2.8.7 - Unauthenticated Command Injection | Critical | CVE-2022-39986 | A Command injection vulnerability in RaspAP 2.8.0 thru 2.8.7 allows unauthenticated attackers to execute arbitrary comma... |
| RaspberryMatic Login Panel - Detect | Info |  | RaspberryMatic login panel was detected. |
| Ray API - Local File Inclusion | High | CVE-2023-6021 | LFI in Ray's log API endpoint allows attackers to read any file on the server without authentication. |
| Ray Static File - Local File Inclusion | High | CVE-2023-6020 | LFI in Ray's /static/ directory allows attackers to read any file on the server without authentication. |
| Rclone RC - Broken Access Control | Critical | CVE-2026-41176 | Rclone >= 1.45.0 and < 1.73.5 contains a broken access control vulnerability caused by unauthenticated access to the RC ... |
| ReCrystallize Server - Authentication Bypass | High | CVE-2024-26331 | This vulnerability allows an attacker to bypass authentication in the ReCrystallize Server application by manipulating t... |
| React Server Components - Remote Code Execution | Critical | CVE-2025-55182 | React Server Components 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including react-server-dom-parcel,
react-server-dom-turbopack... |
| Really Simple Security < 9.1.2 - Authentication Bypass | Critical | CVE-2024-10924 | The Really Simple Security (Free, Pro, and Pro Multisite) plugins for WordPress are vulnerable to authentication bypass ... |
| Red Hat JBoss Enterprise Application Platform - Sensitive Information Disclosure | Medium | CVE-2010-1429 | Red Hat JBoss Enterprise Application Platform 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 is susceptible to sensitiv... |
| Red Hat Satellite Panel - Detect | Info |  |  |
| Redash Login Panel - Detect | Info |  | Redash login panel was detected. |
| Redash Setup Configuration - Default Secrets Disclosure | Medium | CVE-2021-41192 | Redash Setup Configuration is vulnerable to default secrets disclosure (Insecure Default Initialization of Resource). If... |
| Redis Commander - Default Login | High |  | Redis Commander Default Login credentials were discovered. |
| Redis Enterprise - Detect | Info |  |  |
| Redis Sandbox Escape - Remote Code Execution | Critical | CVE-2022-0543 | This template exploits CVE-2022-0543, a Lua-based Redis sandbox escape. The
vulnerability was introduced by Debian and U... |
| Redmine - Default Admin Credentials | High |  | Detected Redmine project management application was found to have been using the default administrator credentials (admi... |
| Redmine Login Panel - Detect | Info |  | Redmine login panel was detected. |
| Regify Login Panel - Detect | Info |  | Regify Login Panel was detected. |
| Registrations for the Events Calendar < 2.7.6 - SQL Injection | Critical | CVE-2021-24943 | The Registrations for the Events Calendar WordPress plugin before 2.7.6 does not sanitise and escape the event_id in the... |
| RemKon Device Manager Login Panel - Detect | Info |  | RemKon Device Manager login panel was detected. |
| Remedy Axis Login Panel - Detect | Info |  |  |
| Remote Spark Gateway Configuration/Credentials - Exposure | Medium |  | Remote Spark Gateway config found via /gateway.conf. |
| Remotely Registration Enabled | High |  | Checks if the Remotely self-hosted remote desktop and collaboration web application has its user registration endpoint e... |
| Reolink E1 Zoom Camera <=3.0.0.716 - Information Disclosure | High | CVE-2021-40150 | Reolink E1 Zoom camera through 3.0.0.716 is susceptible to information disclosure. The web server discloses its configur... |
| Reolink E1 Zoom Camera <=3.0.0.716 - Private Key Disclosure | Medium | CVE-2021-40149 | Reolink E1 Zoom Camera versions 3.0.0.716 and below suffer from a private key (RSA) disclosure vulnerability. |
| Reolink Panel - Detect | Info |  | Reolink panel was discovered. |
| Repetier Server - Directory Traversal | High | CVE-2023-31059 | Repetier Server through 1.4.10 allows ..%5c directory traversal for reading files that contain credentials, as demonstra... |
| Repetier Server Panel - Detect | Info |  | Repetier Server login panel detected. |
| Reportico Administration Page - Detect | Info |  | Create a simple report using the designer front end in seconds from a single SQL statement. Add expressions, user criter... |
| Reposilite >= 3.3.0, < 3.5.12 - Arbitrary File Read | High | CVE-2024-36117 | Reposilite is an open source, lightweight and easy-to-use repository manager for Maven based artifacts in JVM ecosystem.... |
| Reposilite Login Panel - Detect | Info |  | Reposilite products was detected. |
| Reprise License Manager 14.2 - Authentication Bypass | Critical | CVE-2021-44152 | Reprise License Manager (RLM) 14.2 does not verify authentication or authorization and allows unauthenticated users to c... |
| Reprise License Manager 14.2 - Cross-Site Scripting | Medium | CVE-2021-45422 | Reprise License Manager 14.2 contains a cross-site scripting vulnerability in the /goform/activate_process "count" param... |
| Reprise License Manager 14.2 - Cross-Site Scripting | Medium | CVE-2022-28363 | Reprise License Manager 14.2 contains a reflected cross-site scripting vulnerability in the /goform/login_process 'usern... |
| Reprise License Manager 14.2 - Information Disclosure | Medium | CVE-2022-28365 | Reprise License Manager 14.2 is susceptible to information disclosure via a GET request to /goforms/rlminfo. No authenti... |
| Request Tracker - Panel | Info |  | Request Tracker panel was discovered. |
| Residential Gateway Login Panel - Detect | Info |  | Residential Gateway login panel was detected. |
| RestroPress 3.0.0-3.2.1 - Authentication Bypass | Critical | CVE-2025-9209 | RestroPress Online Food Ordering System WordPress plugin 3.0.0 to 3.1.9.2 contains an authentication bypass caused by ex... |
| Retool Login Panel - Detect | Info |  | Retool login panel was detected. |
| RevPi Webstatus <= v2.4.5 - Authentication Bypass | Critical | CVE-2025-41646 | An unauthorized remote attacker can bypass the authentication of the affected software package by misusing an incorrect ... |
| Revive Adserver 4.2 - Remote Code Execution | Critical | CVE-2019-5434 | Revive Adserver 4.2 is susceptible to remote code execution. An attacker can send a crafted payload to the XML-RPC invoc... |
| Revive Adserver <5.1.0 - Open Redirect | Medium | CVE-2021-22873 | Revive Adserver before 5.1.0 contains an open redirect vulnerability via the dest, oadest, and ct0 parameters of the lg.... |
| Revive Adserver <=5.0.3 - Cross-Site Scripting | Medium | CVE-2020-8115 | Revive Adserver 5.0.3 and prior contains a reflected cross-site scripting vulnerability in the publicly accessible afr.p... |
| Ricoh Web Image Monitor - Detect | Info |  | Ricoh Web Image Monitor device was detected. |
| Ricoh Web Image Monitor - Reflected XSS | Medium | CVE-2025-41393 | A reflected cross-site scripting vulnerability exists in the laser printers and MFPs (multifunction printers) which impl... |
| Riello Netman 204 - SQL Injection | Critical | CVE-2024-8877 | The three endpoints /cgi-bin/db_datalog_w.cgi, /cgi-bin/db_eventlog_w.cgi, and /cgi-bin/db_multimetr_w.cgi are vulnerabl... |
| Riello UPS NetMan 204 Network Card - Default Login | High |  | Default logins on Riello UPS NetMan 204 is used. Attacker can access to UPS and attacker can manipulate the UPS settings... |
| Riello UPS NetMan 204 Panel - Detect | Info |  | Riello UPS NetMan 204 login panel was detected. |
| RiteCMS - Default Login | High |  | RiteCMS Default Credentials were discovered. |
| Rocket.Chat <=3.13 - NoSQL Injection | Critical | CVE-2021-22911 | Rocket.Chat 3.11, 3.12 and 3.13 contains a NoSQL injection vulnerability which allows unauthenticated access to an API e... |
| RocketChat Login Panel - Detect | Info |  | RocketChat login panel was detected. |
| Rockmongo Default Login | High |  | Rockmongo default admin credentials were discovered. |
| Roxy File Manager - Panel Detect | Info |  | Roxy File Manager panel was detected. |
| Roxy-WI - Remote Code Execution | Critical | CVE-2022-31126 | Roxy-WI before 6.1.1.0 is susceptible to remote code execution. System commands can be run remotely via the ssh_command ... |
| Roxy-WI < 6.1.1.0 - Remote Code Execution | Critical | CVE-2022-31137 | Roxy-WI before 6.1.1.0 is susceptible to remote code execution. System commands can be run remotely via the subprocess_e... |
| Ruckus Wireless - Default Login | Critical |  | Ruckus Wireless router contains a default admin login vulnerability. An attacker can obtain access to user accounts and ... |
| Ruckus Wireless Admin Login Panel - Detect | Info |  | Ruckus Wireless admin login panel was detected. |
| Ruckus Wireless Unleashed Login Panel - Detect | Info |  | Ruckus Wireless Unleashed login panel was detected. |
| Ruckus vRioT IoT Controller - Authentication Bypass | Critical | CVE-2020-26879 | Ruckus vRioT through 1.5.1.0.21 contains an API backdoor caused by a hardcoded token in validate_token.py,letting unauth... |
| Ruijie NBR Series Routers - Default Login | High |  | Ruijie NBR Series Routers Default Login username and password was discovered. |
| Ruijie RG-EG - Remote Code Execution | Critical |  | Ruijie RG-EG easy gateway WEB management system front-end RCE has a command execution vulnerability. An attacker without... |
| Ruijie RG-EW1200G Router Background - Login Bypass | High | CVE-2023-4415 | A vulnerability was found in Ruijie RG-EW1200G 07161417 r483. It has been rated as critical. Affected by this issue is s... |
| Ruijie RG-NBS2009G-P - Improper Authentication | Critical | CVE-2024-24116 | An issue in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release(9736) allows a remote attacker to gain privileges via the syst... |
| Ruijie RG-UAC Login Panel - Detect | Info |  | Ruijie RG-UAC login panel was detected. |
| Rundeck - Default Login | High |  | Rundeck default login was discovered. |
| Rundeck Login Panel - Detect | Info |  | Rundeck login panel was detected. |
| RustDesk Web Client - Default login | High |  | Detected RustDesk Web Client Admin Console was using default credentials. |
| Rustfs - Detect | Info |  | Detects a Rustfs server, a high-performance, distributed object storage system built in Rust. |
| Rustici Content Controller Panel - Detect | Info |  | Rustici Content Controller panel was detected. |
| SAP Analytics Cloud Panel - Detect | Info |  | SAP Analytics Cloud panel was detected. |
| SAP Knowledge Warehouse <=7.5.0 - Cross-Site Scripting | Medium | CVE-2021-42063 | SAP Knowledge Warehouse 7.30, 7.31, 7.40, and 7.50 contain a reflected cross-site scripting vulnerability via the usage ... |
| SAP Management Console - Panel | Info |  | Detected the SAP Management Console (SAP MC) web panel by requesting /sapmc/sapmc.html and checking for a gSOAP server h... |
| SAP Memory Pipes (MPI) Desynchronization | Critical | CVE-2022-22536 | SAP NetWeaver Application Server ABAP, SAP NetWeaver Application Server Java, ABAP Platform, SAP Content Server 7.53 and... |
| SAP NetWeaver - Backdoor Detection | Critical |  | Detected a potential backdoor in SAP NetWeaver allowing unauthorized command execution. |
| SAP NetWeaver Application Server Java 7.5 - Local File Inclusion | High | CVE-2017-12637 | SAP NetWeaver Application Server Java 7.5 is susceptible to local file inclusion in scheduler/ui/js/ffffffffbca41eb4/UIU... |
| SAP NetWeaver Composition Environment Tools - Detect | Info |  | Detects the presence of the SAP NetWeaver Process Integration / Composition Environment Tools page |
| SAP NetWeaver SQL Injection Vulnerability | Critical | CVE-2016-2386 | SQL injection vulnerability in the UDDI server of the SAP NetWeaver J2EE Engine 7.40 allows remote attackers to
execute ... |
| SAP Solution Manager 7.2 - Remote Command Execution | Critical | CVE-2020-6207 | SAP Solution Manager (SolMan) running version 7.2 has a remote command execution vulnerability within the SAP EEM servle... |
| SAP SuccessFactors Login Panel - Detect | Info |  | SAP SuccessFactors login panel was detected. |
| SAP xMII 15.0 for SAP NetWeaver 7.4 - Local File Inclusion | High | CVE-2016-2389 | SAP xMII 15.0 for SAP NetWeaver 7.4 is susceptible to a local file inclusion vulnerability in the GetFileList function. ... |
| SAS Login Panel - Detect | Info |  | SAS login panel has been detected. |
| SAUTER moduWeb Vision Panel - Detect | Info |  | Sauter moduWeb Vision was detected. |
| SEH utnserver Pro/ProMAX/INU-100 20.1.22 - Cross-Site Scripting | High | CVE-2024-5420 | A vulnerability was found in utnserver Pro, utnserver ProMAX, and INU-100 version 20.1.22 and earlier, affecting the dev... |
| SGP Login Panel - Detect | Info |  | SGP login panel was detected. |
| SHOUTcast Server Panel - Detect | Info |  | SHOUTcast Server panel was detected. |
| SKYSEA Client View Panel - Detect | Info |  | SKYSEA Client View panel was detected. |
| SOPlanning - Default Login | High |  | SOPlanning contains default credentials. An attacker can obtain access to user accounts and access sensitive information... |
| SOUND4 IMPACT/FIRST/PULSE/Eco <= 2.x - Authentication Bypass | High |  | The application suffers from an SQL Injection vulnerability. Input passed through the 'username' POST parameter in 'inde... |
| SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x (PHPTail) Unauthenticated File Disclosure | Medium |  | The application suffers from an unauthenticated file disclosure vulnerability. Using the 'file' GET parameter attackers ... |
| SPIP - Remote Command Execution | Critical | CVE-2023-27372 | SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. T... |
| SQL Buddy Login Panel - Detect | Info |  | SQL Buddy login panel was detected. |
| SQL Monitor - Discovery | Info |  | SQL Monitor was discovered. |
| SSH PrivX Login Panel - Detect | Info |  | SSH PrivX login panel was detected. |
| SSL VPN Session Hijacking | Critical | CVE-2024-53704 | An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authe... |
| STAGIL Navigation for Jira Menu & Themes <2.0.52 - Local File Inclusion | High | CVE-2023-26255 | STAGIL Navigation for Jira Menu & Themes plugin before 2.0.52 is susceptible to local file inclusion via modifying the f... |
| STAGIL Navigation for Jira Menu & Themes <2.0.52 - Local File Inclusion | High | CVE-2023-26256 | STAGIL Navigation for Jira Menu & Themes plugin before 2.0.52 is susceptible to local file inclusion via modifying the f... |
| SUNGROW Logger1000 Panel - Detect | Info |  | SUNGROW (Solar Energy Inverter Monitoring Devices) Logger1000 panel was detected. |
| SUSE Manager Server - Panel | Info |  | SUSE Manager login panel detected. |
| SafeNet Authentication Login Panel - Detect | Info |  | SafeNet Authentication Service Self Enrollment login panel was detected. |
| Sage X3 Login Panel - Detect | Info |  | Sage X3 login panel was detected. |
| Saia PCD Web Server Panel - Detect | Info |  | Saia PCD Web Server panel was detected. |
| SaltStack <=3002 - Shell Injection | Critical | CVE-2020-16846 | SaltStack Salt through 3002 allows an unauthenticated user with network access to the Salt API to use shell injections t... |
| SaltStack Config Panel - Detect | Info |  | SaltStack config panel was detected. |
| Samsung MagicINFO Panel - Detect | Info |  | Samsung MagicINFO panel was discovered. |
| Samsung Printer - Default Login | High |  | Samsung printers contain a default admin login vulnerability. An attacker can obtain access to user accounts and access ... |
| Sanity Studio Panel - Detect | Info |  | Sanity Studio panel was detected. Sanity is a headless CMS platform. |
| Sante PACS Server.exe - Path Traversal Information Disclosure | High | CVE-2025-2264 | A Path Traversal Information Disclosure vulnerability exists in "Sante PACS Server.exe". An unauthenticated remote attac... |
| Satellian Intellian Aptus Web <= 1.24 - Remote Command Execution | Critical | CVE-2020-7980 | Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to th... |
| Satis Composer Repository - Detect | Info |  | Satis composer repository was detected |
| Sato - Default Login | High |  | Sato using default credentials was discovered. |
| SawtoothSoftware Lighthouse Studio < 9.16.14 - Pre-Auth Remote Code Execution | Critical | CVE-2025-34300 | A pre-authentication remote code execution vulnerability exists in Sawtooth Software’s Lighthouse Studio versions prio... |
| Scan2Net - Panel | Info |  | Scan2Net Login was detected. This software is used to manage ImageAccess devices.Universities and public institutions of... |
| Schneider Electric Pelco VideoXpert Enterprise 2.0 - Path Traversal | Medium | CVE-2017-9965 | Schneider Electric Pelco VideoXpert Enterprise versions 2.0 and prior contain a directory traversal caused by insufficie... |
| Scribble Diffusion Panel - Detect | Info |  | A tool to turn your rough sketch into a refined image using AI. |
| ScriptCase Panel Detect | Info |  |  |
| ScriptCase Production Environment Login | Info |  |  |
| Seafile Panel - Detect | Info |  | Seafile panel was detected. |
| Seagate NAS Login - Detect | Info |  | Seagate NAS - SEAGATE Login was detected. |
| Seagate NAS OS 4.3.15.1 - Server Information Disclosure | High | CVE-2018-12296 | Seagate NAS OS version 4.3.15.1 has insufficient access control which allows attackers to obtain information about the N... |
| SecurEnvoy Login Panel - Detect | Info |  | SecurEnvoy login panel was detected. |
| SecurEnvoy Two Factor Authentication - LDAP Injection | Critical | CVE-2024-37393 | Multiple LDAP injections vulnerabilities exist in SecurEnvoy MFA before 9.4.514 due to improper validation of user-suppl... |
| Securden Unified PAM - Authentication Bypass | Critical |  | An authentication bypass vulnerability exists which allows an unauthenticated attacker to control administrator backup f... |
| Secure Login Service Login Panel - Detect | Info |  | Secure Login Service login panel was detected. |
| SecurePoint UTM 12.x Session ID Leak | High | CVE-2023-22620 | An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi allows sessionid infor... |
| Securepoint UTM - Leaking Remote Memory Contents | Medium | CVE-2023-22897 | An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi allows information dis... |
| Security Onion Panel - Detect | Info |  | Security Onion is a free and open source Linux distribution for intrusion detection, security monitoring, and log manage... |
| SecuritySpy Camera Panel - Detect | Info |  | SecuritySpy Camera panel was detected. |
| SeedDMS Default Login | High |  | SeedDMS default admin credentials were discovered. |
| SeedDMS Login Panel - Detect | Info |  | SeedDMS login panel was detected. |
| Seeyon OA A6 setextno.jsp - SQL Injection | High |  | Seeyon OA A6 initDataAssess.jsp has leaked user sensitive information,You can blast the user password through the obtain... |
| Selenium Grid Panel - Detect | Info |  | Selenium Grid panel was detected. |
| SelfCheck System Manager - Panel | Info |  |  |
| Sensei LMS < 4.24.2 - Email Template Leak | High | CVE-2024-7786 | The Sensei LMS WordPress plugin before 4.24.2 does not properly protect some its REST API routes, allowing unauthenticat... |
| Sensu by Sumo Logic Login Panel - Detect | Info |  | Sensu by Sumo Logic login panel was detected. |
| SentinelOne Management Console Login Panel - Detect | Info |  | SentinelOne Management Console login panel was detected. |
| Sentry Login Panel | Info |  | Sentry login panel was detected. |
| SequoiaDB Login Panel - Detect | Info |  | SequoiaDB login panel was detected. |
| Server Backup Manager SE Panel - Detect | Info |  | Server Backup Manager SE login panel was detected. |
| Service Finder Bookings - Authentication Bypass | Critical | CVE-2025-5947 | Service Finder Bookings WordPress plugin <= 6.0 contains a privilege escalation caused by improper validation of user co... |
| ServiceNow - Incomplete Input Validation | Critical | CVE-2024-5217 | ServiceNow has addressed an input validation vulnerability that was identified in the Washington DC, Vancouver, and earl... |
| ServiceNow Login Panel - Detect | Info |  | ServiceNow Login Panel was detected. |
| ServiceNow UI Macros - Template Injection | Critical | CVE-2024-4879 | ServiceNow has addressed an input validation vulnerability that was identified in Vancouver and Washington DC Now Platfo... |
| SevOne NMS Network Manager | Info |  |  |
| ShardingSphere ElasticJob UI Panel | Info |  | An ShardingSphere ElasticJob UI panel was detected. |
| Sharefile Login - Panel | Info |  | ShareFile is a cloud-based file sharing and collaboration platform that provides secure access to files from anywhere. |
| Shell In A Box - Detect | Info |  | Shell In A Box implements a web server that can export arbitrary command line tools to a web based terminal emulator |
| Shield Security WP Plugin <= 18.5.9 - Local File Inclusion | Critical | CVE-2023-6989 | The Shield Security Smart Bot Blocking & Intrusion Prevention Security plugin for WordPress is vulnerable to Local File ... |
| Shiziyu CMS Api Controller - SQL Injection | High |  | Shiziyu CMS ApiController.class.php parameter filtering is not rigorous, resulting in SQL injection vulnerability. |
| ShokoServer System - Local File Inclusion (LFI) | High | CVE-2023-43662 | ShokoServer is a media server which specializes in organizing anime. In affected versions the `/api/Image/WithPath` endp... |
| ShortPixel Adaptive Images < 3.6.3 - Cross Site Scripting | Medium | CVE-2023-0334 | The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-... |
| ShowDoc Panel Detection | Info |  | ShowDoc panel was detected. ShowDoc was a tool for documenting APIs and interfaces. |
| Sidekiq < 7.0.8 - Cross-Site Scripting | Critical | CVE-2023-1892 | An XSS vulnerability on a Sidekiq admin panel can pose serious risks to the security and functionality of the system. |
| Sidekiq Dashboard Panel - Detect | Medium |  | Sidekiq Dashboard panel was detected. |
| Siemens SIMATIC HMI Miniweb - Default Login | High |  | Identified Siemens SIMATIC HMI MiniWeb interfaces that were accessible using default credentials.These interfaces are us... |
| Signet Explorer Dashboard - Detect | Info |  | Signet Explorer Dashboard was detected. |
| SillyTavern Panel - Detect | Info |  | SillyTavern was detected. SillyTavern is a character-based AI roleplay and chat frontend that connects to local or remot... |
| SimpleHelp <= 5.5.7 - Unauthenticated Path Traversal | High | CVE-2024-57727 | SimpleHelp remote support software v5.5.7 and before is vulnerable to multiple path traversal vulnerabilities that enabl... |
| Sitecore - Remote Code Execution | Critical | CVE-2023-35813 | Multiple Sitecore products allow remote code execution. This affects Experience Manager, Experience Platform, and Experi... |
| Sitecore CMS - Cross-Site Scripting | Medium | CVE-2014-100004 | Sitecore CMS contains a cross-site scripting vulnerability via the "special way" of displaying XML Controls directly, wh... |
| Sitecore Experience Manager (XM) and Experience Platform (XP) - Hardcoded Credentials | High | CVE-2025-34509 | Sitecore Experience Manager (XM) and Experience Platform (XP) versions 10.1 to 10.1.4 rev. 011974 PRE, all versions of 1... |
| Sitecore Experience Platform <= 10.4 - Arbitrary File Read | High | CVE-2024-46938 | An issue was discovered in Sitecore Experience Platform (XP), Experience Manager (XM), and Experience Commerce (XC) 8.0 ... |
| Sitecore Login Panel - Detect | Info |  | Sitecore login panel was detected. |
| Sitefinity Login | Info |  | This template identifies the Sitefinity login page. |
| Skeepers Login Panel - Detect | Info |  | Skeepers login panel was detected. |
| Smart s200 Management Platform v.S200 - SQL Injection | High | CVE-2024-27718 | SQL Injection vulnerability in Baizhuo Network Smart s200 Management Platform v.S200 allows a local attacker to obtain s... |
| SmartPing Dashboard Panel - Detect | Info |  | SmartPing Dashboard panel was detected. |
| SmartSearchWP < 2.4.6 - OpenAI Key Disclosure | Medium | CVE-2024-6845 | The plugin does not have proper authorization in one of its REST endpoint, allowing unauthenticated users to retrieve th... |
| SmarterMail Login Panel - Detect | Info |  | SmarterMail login panel was detected. |
| Social Auto Poster <= 5.3.14 - Stored Cross-Site Scripting | High | CVE-2024-6753 | Social Auto Poster plugin for WordPress versions up to 5.3.14 contains a stored cross-site scripting caused by insuffici... |
| SoftEther VPN Admin Console - Default Login | High |  | The administrative password for the SoftEther VPN Server is blank. |
| SoftEther VPN Panel - Detect | Info |  | SoftEther VPN panel was detected. |
| SolarView 6.00 - Remote Command Execution | Critical | CVE-2022-40881 | SolarView Compact 6.00 is vulnerable to a command injection via network_test.php. |
| SolarView Compact 6.00 - OS Command Injection | Critical | CVE-2023-23333 | SolarView Compact 6.00 was discovered to contain a command injection vulnerability, attackers can execute commands by by... |
| SolarView Compact 6.00 - OS Command Injection | Critical | CVE-2022-29303 | SolarView Compact 6.00 was discovered to contain a command injection vulnerability via conf_mail.php. |
| SolarView Compact <= 6.00 - Local File Inclusion | Critical | CVE-2023-29919 | There is an arbitrary read file vulnerability in SolarView Compact 6.00 and below, attackers can bypass authentication t... |
| SolarView Compact Panel - Detect | Info |  | SolarView Compact panel was detected. |
| SolarWinds ARM (Access Rights Manager) - Detect | Info |  | SolarWinds ARM login panel was detected. |
| SolarWinds Orion API - Auth Bypass | Critical | CVE-2020-10148 | SolarWinds Orion API is vulnerable to an authentication bypass vulnerability that could allow a remote attacker to execu... |
| SolarWinds Orion Default Login | High |  | SolarWinds Orion default admin credentials were discovered. |
| SolarWinds Security Event Manager - Unauthenticated RCE | High | CVE-2024-0692 | The SolarWinds Security Event Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows ... |
| SolarWinds Serv-U - Directory Traversal | High | CVE-2024-28995 | SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive fil... |
| SolarWinds Web Help Desk - Authentication Bypass | Critical | CVE-2025-40554 | SolarWinds Web Help Desk 12.8.8 HF1 and earlier contains an authentication bypass vulnerability in the WebObjects sessio... |
| SolarWinds Web Help Desk - Authentication Bypass | Critical | CVE-2025-40552 | SolarWinds Web Help Desk contains an authentication bypass vulnerability caused by improper access control, letting atta... |
| SolarWinds Web Help Desk - Hardcoded Credential | Critical | CVE-2024-28987 | The SolarWinds Web Help Desk (WHD) software is affected by a hardcoded credential vulnerability, allowing remote unauthe... |
| SolarWinds Web Help Desk < 12.8.3 - Insecure Deserialization | Critical | CVE-2024-28986 | SolarWinds Web Help Desk before version 12.8.3 contain a critical Java deserialization vulnerability that enables remote... |
| SolarWinds Web Help Desk < 12.8.8 Hotfix 1 (HF1) - Security Control Bypass | High | CVE-2025-40536 | SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability that if exploited, could... |
| Solara <1.35.1 - Local File Inclusion | High | CVE-2024-39903 | A Local File Inclusion (LFI) vulnerability was identified in widgetti/solara, in version <1.35.1, which was fixed in ver... |
| Somansa DLP Login Panel - Detect | Info |  | Somansa DLP login panel was detected. |
| SonarQube Default Login - Detect | High |  | SonarQube contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive in... |
| Sonatype Nexus Repository Manager  <3.15.0 - Remote Code Execution | Critical | CVE-2019-7238 | Sonatype Nexus Repository Manager before 3.15.0 is susceptible to remote code execution. |
| Sonatype Nexus Repository Manager 3 - Local File Inclusion | High | CVE-2024-4956 | Path Traversal in Sonatype Nexus Repository 3 allows an unauthenticated attacker to read system files. Fixed in version ... |
| Sonatype Nexus Repository Manager 3 - Remote Code Execution | High | CVE-2020-10199 | Sonatype Nexus Repository before 3.21.2 allows JavaEL Injection |
| SonicWall Analyzer Login Panel - Detect | Info |  | SonicWall Analyzer login panel was detected. |
| SonicWall Appliance Management Console Login Panel - Detect | Info |  | SonicWall Appliance Management Console login panel was detected. |
| SonicWall GMS and Analytics - SQL Injection | High | CVE-2023-34133 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in SonicWall GMS and ... |
| SonicWall Network Security Login - Detect | Info |  | SonicWall Network Security Login panel was detected. |
| SonicWall SMA1000 LFI | High | CVE-2023-0126 | Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated atta... |
| Sonicwall - Pre-Authentication Arbitrary File Read | Critical | CVE-2024-38475 | Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to fi... |
| Sophos Firewall <=18.5 MR3 - Remote Code Execution | Critical | CVE-2022-1040 | Sophos Firewall version v18.5 MR3 and older contains an authentication bypass vulnerability in the User Portal and Webad... |
| Sophos Firewall Login Panel - Detect | Info |  | Sophos Firewall login panel was detected. |
| Sophos Mobile Panel - Detect | Info |  | Sophos Mobile panel was detected. |
| Sophos Web Appliance | Info |  |  |
| Sound4 IMPACT/FIRST/PULSE/Eco <=2.x - Authentication Bypass | High |  | The application suffers from an SQL Injection vulnerability. Input passed through the 'password' POST parameter in 'inde... |
| SpaceLogic C-Bus Home Controller <=1.31.460 - Remote Command Execution | High | CVE-2022-34753 | SpaceLogic C-Bus Home Controller through 1.31.460 is susceptible to remote command execution via improper neutralization... |
| SpaceLogic C-Bus Home Panel - Detect | Info |  |  |
| Spam protection, AntiSpam, FireWall by CleanTalk < 5.153.4 - Unauthenticated Blind SQL Injection | High | CVE-2021-24295 | It was possible to exploit an Unauthenticated Time-Based Blind SQL Injection vulnerability in the Spam protection, AntiS... |
| Speedtest Panel - Detection | Info |  | Speedtest panel was discovered |
| SphinxOnline Panel - Detect | Info |  | SphinxOnline Login Panel was detected. |
| Splunk - Default Password | High |  | Splunk Default Password Vulnerability exposes systems to unauthorized access, compromising data integrity and security. |
| Splunk <=7.0.1 - Information Disclosure | Medium | CVE-2018-11409 | Splunk through 7.0.1 is susceptible to information disclosure by appending __raw/services/server/info/server-info?output... |
| Splunk Enterprise - Local File Inclusion | High | CVE-2024-36991 | In Splunk Enterprise on Windows versions below 9.2.2, 9.1.5, and 9.0.10, an attacker could perform a path traversal on t... |
| Splunk Enterprise Login Panel - Detect | Info |  | Splunk Enterprise login panel was detected. |
| Splunk SOAR Login Panel - Detect | Info |  | Splunk SOAR login panel was detected. |
| SpotWeb Login Panel - Detect | Info |  |  |
| Spotweb <= 1.5.1 - Cross Site Scripting (Reflected) | Medium | CVE-2021-43725 | There is a Cross Site Scripting (XSS) vulnerability in SpotPage_login.php of Spotweb 1.5.1 and below, which allows remot... |
| Spring Cloud Config Server - Local File Inclusion | High | CVE-2020-5410 | Spring Cloud Config Server versions 2.2.x prior to 2.2.3, versions 2.1.x prior to 2.1.9, and older unsupported versions ... |
| SqWebMail Login Panel - Detect | Info |  | SqWebMail login panel was detected. |
| Squid End-of-Life - Detect | Info |  | Detected Squid proxy versions that have reached End-of-Life (EOL) and no longer receive security updates. |
| Squidex Headless CMS Panel - Detect | Info |  | Squidex is an open source headless CMS and content management hub. |
| SquirrelMail 1.2.11 - Local File Inclusion | High |  | SquirrelMail 1.2.11 is vulnerable to local file inclusion. |
| SquirrelMail 1.2.6/1.2.7 - Cross-Site Scripting | High | CVE-2002-1131 | The Virtual Keyboard plugin for SquirrelMail 1.2.6/1.2.7 is prone to a cross-site scripting vulnerability because it fai... |
| SquirrelMail Login Panel - Detect | Info |  | SquirrelMail login panel was detected. |
| Squirrelmail <=1.4.6 - Local File Inclusion | High | CVE-2006-2842 | SquirrelMail 1.4.6 and earlier versions are susceptible to a PHP local file inclusion vulnerability in functions/plugin.... |
| Stackposts Social Marketing Tool v1.0 - SQL Injection | High |  | SQL Injection is a type of SQL injection attack in which an attacker can exploit a vulnerability in a web application's ... |
| Star Micronics Network Utility Panel - Detect | Info |  | Star Micronics Network Utility panel was detected. |
| Stash < 0.26.0 - SQL Injection | Critical | CVE-2024-32231 | Stash up to v0.25.1 was discovered to contain a SQL injection vulnerability via the sort parameter. |
| SteVe Login Panel - Detect | Info |  | SteVe login panel was detected. |
| SteVe Login Panel - Detect | Info |  | SteVe login panel was detected. |
| Stirling PDF Panel - Detect | Info |  | Stirling PDF panel was discovered. |
| Stock Ticker <= 3.23.2 - Cross-Site Scripting | Medium | CVE-2023-40208 | The Stock Ticker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in the ajax_stockticker_load funct... |
| Stop User Enumeration WordPress plugin - Authentication Bypass | Medium | CVE-2025-4302 | Stop User Enumeration WordPress plugin < 1.7.3 contains an authentication bypass caused by URL-encoding the REST API pat... |
| Storybook Panel - Detect | Info |  | Storybook panel was detected. |
| Strapi Login Panel - Detect | Info |  | Strapi login panel was detected. |
| Strider CD Panel - Detect | Info |  | Strider CD panel was detected. |
| Structurizr - Default Login | High |  | Structurizr contains default credentials. |
| Structurizr Panel - Detect | Info |  | Structurizr login panel was detected. |
| Subscribe to Category <= 2.7.4 - SQL Injection | Critical | CVE-2023-32590 | The Subscribe to Category contains a sql_injection caused by improper neutralization of special elements used in an SQL ... |
| SugarCRM Login Panel - Detect | Info |  | SugarCRM login panel was detected. |
| SuiteCRM - SQL Injection | Critical | CVE-2024-36412 | SuiteCRM is an open-source Customer Relationship Management (CRM) software application. Prior to versions 7.14.4 and 8.6... |
| SuiteCRM Unauthenticated Graphql Introspection | Medium | CVE-2023-47643 | Graphql Introspection is enabled without authentication, exposing the scheme defining all object types, arguments, and f... |
| Sunbird DCIM - Detect | Info |  | Sunbird DCIM login panel was detected. |
| SuperAGI Panel - Detect | Info |  | SuperAGI panel was detected. SuperAGI was an open-source autonomous AI agent platform that enables building, managing, a... |
| SuperAdmin Login Panel - Detect | Info |  | SuperAdmin login panel was detected. |
| SuperWebMailer 9.00.0.01710 - Cross-Site Scripting | Medium | CVE-2023-38192 | An issue was discovered in SuperWebMailer 9.00.0.01710 allowing XSS via crafted incorrect passwords. |
| SuperWebmailer 7.21.0.01526 - Remote Code Execution | Critical | CVE-2020-11546 | SuperWebMailer 7.21.0.01526 is susceptible to a remote code execution vulnerability in the Language parameter of mailing... |
| Supermicro BMC Login Panel - Detect | Info |  | Supermicro BMC login panel was detected. |
| Supermicro Ipmi - Default Admin Login | High |  | Supermicro Ipmi default admin login credentials were successful. |
| Supershell - Default Login | High |  | Supershell is a WEB management platform that integrates the reverse_ssh service. |
| Supertokens Login Panel - Detect | Info |  | A Supertokens login panel was detected. |
| SupportCandy < 2.2.7 - Reflected Cross-Site Scripting | Medium | CVE-2021-24878 | The SupportCandy WordPress plugin before 2.2.7 does not sanitise and escape the query string before outputting it back i... |
| Suprema BioStar 2 Panel - Detect | Info |  |  |
| Swift Performance Lite < 2.3.7.2 - Local PHP File Inclusion | High | CVE-2024-10516 | A vulnerability in Swift Performance Lite before version 2.3.7.2 allows unauthenticated attackers to perform local PHP f... |
| Syfadis Xperience Login Panel - Detect | Info |  | Syfadis Xperience login panel was detected. |
| Symantec Data Loss Prevention Login Panel - Detect | Info |  | Symantec Data Loss Prevention login panel was detected. |
| Symantec Encryption Server Login Panel - Detect | Info |  | Symantec Encryption Server login panel was detected. |
| Symantec Endpoint Protection Manager Login Panel - Detect | Info |  | Symantec Endpoint Protection Manager login panel was detected. |
| Symantec PGP Global Directory Panel - Detect | Info |  | Symantec PGP Global Directory panel was detected. |
| Symfony Lock File - Exposure | Low |  | symfony.lock was found accessible, exposing a full list of installed Composer packages, library versions, and metadata f... |
| Symfony Profiler - Remote Access via Injected Arguments | High | CVE-2024-50340 | symfony/runtime is a module for the Symphony PHP framework which enables decoupling PHP applications from global state. ... |
| Symmetricom SyncServer Panel - Detect | Info |  |  |
| Symmetricom SyncServer Unauthenticated - Remote Command Execution | Critical | CVE-2022-40022 | Microchip Technology (Microsemi) SyncServer S650 was discovered to contain a command injection vulnerability. |
| Synacor Zimbra Collaboration <8.7.11p10 - XML External Entity Injection | Critical | CVE-2019-9670 | Synacor Zimbra Collaboration Suite 8.7.x before 8.7.11p10 has an XML external entity injection (XXE) vulnerability via t... |
| Synapse Mobility Login Panel - Detect | Info |  | Synapse Mobility login panel was detected. |
| SyncThru Web Service Panel - Detect | Info |  | SyncThru Web Service panel was detected. |
| Synology DSM System Info - Detect | Info |  | Detected the disclosure of Synology DiskStation Manager (DSM) system information via the SYNO.API.Info endpoint, identif... |
| Synopsys Coverity Panel | Info |  | Coverity® is a fast, accurate, and highly scalable static analysis (SAST) solution that helps development and security ... |
| Synway SMG Gateway 9-2radius.php - Remote Command Execution | Critical |  | Synway SMG Gateway Management Software contains a remote command execution vulnerability in 9-2radius.php, where the rad... |
| SysAid Login Panel - Detect | Info |  | Detects the presence of a SysAid Help Desk Software login panel by identifying characteristic login pages, favicon hash,... |
| T-Up OpenFrame | Info |  |  |
| TIBCO JasperReports Library - Directory Traversal | Medium | CVE-2018-18809 | The default server implementation of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO JasperReports Library Comm... |
| TIBCO Jaspersoft Login Panel - Detect | Info |  | TIBCO Jaspersoft login panel was detected. |
| TIBCO Managed File Transfer - Panel | Info |  | TIBCO Managed File Transfer Login Panel was discovered. |
| TITool PrintMonitor - Blind SQL Injection | Critical | CVE-2018-7282 | The username parameter of the TITool PrintMonitor solution during the login request is vulnerable to and/or time-based b... |
| TOTOLINK A3002RU 1.0.8 - Information Disclosure | Medium | CVE-2018-13317 | TOTOLINK A3002RU firmware version 1.0.8 contains a vulnerability in which an unauthenticated attacker can obtain the pla... |
| TOTOLINK A3700R - Command Injection | Critical | CVE-2023-46574 | An issue in TOTOLINK A3700R v.9.1.2u.6165_20211012 allows a remote attacker to execute arbitrary code via the FileName p... |
| TOTOLINK CP450 v4.1.0cu.747_B20191224 - Hard-Coded Password Vulnerability | Critical | CVE-2024-7332 | A critical vulnerability has been discovered in TOTOLINK CP450 version 4.1.0cu.747_B20191224. This vulnerability affects... |
| TOTOLINK CX-A3002RU - Remote Code Execution | Medium | CVE-2024-51228 | An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121.1002 and TOTOLINK-CX-N300R... |
| TOTOLINK EX1200T 4.1.2cu.5215 - Authentication Bypass | Critical | CVE-2021-42887 | TOTOLINK EX1200T 4.1.2cu.5215 is susceptible to authentication bypass. An attacker can bypass login by sending a specifi... |
| TOTOLINK EX1800T TOTOLINK EX1800T - Command Injection | High | CVE-2024-34257 | TOTOLINK EX1800T V9.1.0cu.2112_B20220316 has a vulnerability in the apcliEncrypType parameter that allows unauthorized e... |
| TOTOLINK N150RT - Password Exposure | High |  | Detects password exposure vulnerability in TOTOLINK N150RT router where sensitive credentials are exposed in the passwor... |
| TOTOLINK/Realtek Routers - CAPTCHA Bypass | Critical | CVE-2019-19825 | On certain TOTOLINK Realtek SDK based routers, the CAPTCHA text can be retrieved via a POST request to the boafrm/formLo... |
| TOTOLINK/Realtek Routers - Information Disclosure | High | CVE-2019-19822 | A certain router administration interface using Realtek APMIB (e.g., on TOTOLINK models) allows unauthenticated remote a... |
| TOTOLINK/Realtek Routers - Information Disclosure | High | CVE-2019-19823 | A certain router administration interface using Realtek APMIB (e.g., on TOTOLINK models) allows unauthenticated remote a... |
| TOTOLink Router - Remote Command Execution | Critical |  | TOTOLink routers are vulnerable to unauthenticated remote command execution via the /boaform/formWsc endpoint. An attack... |
| TP-LINK - Local File Inclusion | High | CVE-2015-3035 | TP-LINK is susceptible to local file inclusion in these products: Archer C5 (1.2) with firmware before 150317, Archer C7... |
| TP-LINK WR840N v6 up to 0.9.1 4.16 - Improper Authentication | Critical | CVE-2024-57050 | A vulnerability in the TP-Link WR840N v6 router with firmware version 0.9.1 4.16 and earlier permits unauthorized indivi... |
| TP-Link Archer AX21 (AX1800) - Unauthenticated Command Injection | Critical | CVE-2023-1389 | TP-Link Archer AX21 (AX1800) routers are vulnerable to unauthenticated OS command injection via the country parameter in... |
| TP-Link Archer C20 - Authentication Bypass | Critical | CVE-2024-57049 | A vulnerability in the TP-Link Archer C20 router with firmware version V6.6_230412 and earlier permits unauthorized indi... |
| TP-Link Wireless N Router WR940N - Default-Login | High |  |  |
| TRENDnet TEW-827DRU Login Panel - Detect | Info |  | TRENDnet TEW-827DRU login panel was detected. |
| TRUfusion Enterprise <= 7.10.4.0 - Admin Contact Portal | High | CVE-2025-27225 | TRUfusion Enterprise versions 7.10.4.0 and earlier contained a vulnerability that allowed unauthenticated access to the ... |
| TRUfusion Enterprise <= 7.10.4.0 - Authentication Bypass | Critical | CVE-2025-27223 | Hard-Coded Cryptographic key allowing to forge session cookies that can be used to entirely bypass authentication |
| TRUfusion Enterprise <= 7.10.4.0 - Path Traversal | Critical | CVE-2025-27222 | Pre-Auth Path Traversal Allowing to Leak Local server files disclosing sensitive clear-text passwords. |
| TVT NVMS 1000 - Local File Inclusion | High | CVE-2019-20085 | TVT NVMS-1000 devices allow GET /.. local file inclusion attacks. |
| Tabby Panel - Detect | Info |  | Tabby panel was discovered. |
| Tableau Services Manager Login Panel - Detect | Info |  | Tableau Services Manager login panel was detected. |
| Tactical RMM Login Panel - Detect | Info |  | Tactical RMM login panel was detected. |
| Tailon Panel - Detect | Unknown |  |  |
| TamronOS IPTV/VOD - Remote Command Execution | Critical |  | TamronOS IPTV/VOD contains a remote command execution in the 'host' parameter of the /api/ping endpoint. |
| Tautulli Panel - Detect | Info |  | A Python based monitoring and tracking tool for Plex Media Server. |
| Tautulli Panel - Unauthenticated Access | Medium |  |  |
| TeamCity < 2023.11.4 - Authentication Bypass | Critical | CVE-2024-27198 | In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible |
| TeamCity Login Panel - Detect | Info |  | TeamCity login panel was detected. |
| TeamForge Panel - Detection | Info |  | TeamForge Login Panel was discovered. |
| TeamPass 2.1.27.36 - Improper Authentication | High | CVE-2020-12478 | TeamPass 2.1.27.36 is susceptible to improper authentication. An attacker can retrieve files from the TeamPass web root,... |
| TeamPass Panel - Detect | Info |  | TeamPass panel was detected. |
| Tekton Dashboard Panel - Detect | Info |  | Tekton Dashboard panel was detected. |
| Telecontrol Server Basic Panel - Detect | Info |  | Telecontrol Server Basic panel was discovered. |
| Teleport - Authentication Bypass | Critical | CVE-2025-49825 | Teleport versions prior to 17.5.2 are vulnerable to a remote authentication bypass vulnerability. This issue allows atta... |
| Teleport Login Panel - Detect | Info |  | Detects Teleport web login interface exposed at /web/login and version information from /webapi/ping |
| Telerik Report Server Login Panel - Detect | Info |  | Telerik Report Server login panel was detected. |
| Telesquare TLR-2005KSH - Remote Command Execution | Critical | CVE-2024-29269 | Telesquare Tlr-2005Ksh is a Sk Telecom Lte router from South Korea's Telesquare company.Telesquare TLR-2005Ksh versions ... |
| Telesquare TLR-2005KSH Login Panel - Detect | Info |  | Telesquare TLR-2005KSH login panel was detected. |
| TemboSocial Admin Panel - Detect | Info |  | TemboSocial Admin panel was detected. |
| Temenos Transact Login Panel - Detect | Info |  | Temenos Transact login panel was detected. |
| Tenable Nessus Panel - Detect | Info |  | Tenable Nessus panel was detected. |
| Tenda 11N - Authentication Bypass | Critical | CVE-2022-42233 | Tenda 11N with firmware version V5.07.33_cn contains an authentication bypass vulnerability. An attacker can possibly ob... |
| Tenda 11n Wireless Router - Admin Panel | Info |  | The administrative panel for a Tenda Technology 11n Wireless Router was found. |
| Tenda Web Master Login Panel - Detect | Info |  | Tenda Web Master login panel was detected. |
| Tenemos T24 Login Panel - Detect | Info |  | Tenemos T24 products was detected. |
| Teradek Cube Administrative Console - Panel | Info |  |  |
| TerraMaster TOS < 4.2.30 Server Information Disclosure | High | CVE-2022-24990 | TerraMaster NAS devices running TOS prior to version 4.2.30 are vulnerable to information disclosure. |
| Terraform Enterprise Panel - Detect | Info |  | Terraform Enterprise panel was detected. |
| The Events Calendar < 6.4.0.1 - Cross-site Scripting | Medium | CVE-2024-4180 | The Events Calendar WordPress plugin < 6.4.0.1 contains a stored XSS caused by improper sanitization of user-submitted c... |
| The Events Calendar <= 6.15.2 - Information Disclosure | Medium | CVE-2025-9808 | The Events Calendar WordPress plugin <= 6.15.2 contains an information disclosure vulnerability caused by REST endpoint ... |
| The Plus Addons for Elementor Page Builder < 4.1.7 - Authentication Bypass | Critical | CVE-2021-24175 | The Plus Addons for Elementor plugin (before version 4.1.7) allowed attackers to bypass authentication, gain admin acces... |
| ThemeGrill Demo Importer < 1.6.2 - Database Reset | Critical | CVE-2020-36333 | ThemeGrill Demo Importer before 1.6.2 does not require authentication for wiping the database due to a reset_wizard_acti... |
| Themes Coder Ecommerce <= 1.3.4 - SQL Injection | High | CVE-2024-13726 | The Themes Coder Ecommerce WordPress plugin through 1.3.4 does not properly sanitise and escape a parameter before using... |
| ThinVNC - Authentication Bypass | Critical | CVE-2022-25226 | ThinVNC version 1.0b1 allows an unauthenticated user to bypass the authentication process via a specific command, potent... |
| Thinfinity Iframe Injection | Critical | CVE-2021-45092 | A vulnerability exists in Thinfinity VirtualUI in a function located in /lab.html reachable which by default  could allo... |
| Thinfinity VirtualUI Panel - Detect | Info |  | Thinfinity VirtualUI panel was detected. |
| Thinfinity VirtualUI User Enumeration | Medium | CVE-2021-44848 | Thinfinity VirtualUI (before v3.0), /changePassword returns different responses for requests depending on whether the us... |
| ThingsBoard Panel - Detect | Info |  | ThingsBoard was detected — a Open-source IoT Platform for device management, data collection, processing and visualiza... |
| ThinkPHP 5.0.24 - Information Disclosure | High | CVE-2022-25481 | ThinkPHP 5.0.24 is susceptible to information disclosure. This version was configured without the PATHINFO parameter. Th... |
| ThinkPHP < 3.2.4 - Remote Code Execution | High | CVE-2019-9082 | ThinkPHP before 3.2.4, as used in Open Source BMS v1.1.1 and other products, allows Remote Command Execution via the s p... |
| Thinkphp Lang - Local File Inclusion | Critical | CVE-2022-47945 | ThinkPHP Framework before 6.0.14 allows local file inclusion via the lang parameter when the language pack feature is en... |
| Thruk Login Panel - Detect | Info |  | Thruk Monitoring panel was detected. |
| Tigase XMPP Server - Exposure | Info |  |  |
| Tiki Wiki CMS GroupWare - Authentication Bypass | Critical | CVE-2020-15906 | tiki-login.php in Tiki before 21.2 sets the admin password to a blank value after 50 invalid login attempts. |
| Tiki Wiki CMS Groupware 5.2 - Local File Inclusion | Critical | CVE-2010-4239 | Tiki Wiki CMS Groupware 5.2 is susceptible to a local file inclusion vulnerability. |
| Tiki Wiki CMS Groupware Login Panel - Detect | Info |  | Tiki Wiki CMS Groupware login panel was detected. |
| TileServer API - Cross Site Scripting | Medium | CVE-2024-35627 | tileserver-gl up to v4.4.10 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /data... |
| Time Clock <= 1.2.2 & Time Clock Pro <= 1.1.4 - Remote Code Execution | High | CVE-2024-9593 | The Time Clock plugin and Time Clock Pro plugin for WordPress are vulnerable to Remote Code Execution in versions up to,... |
| TimeKeeper - Default Login | High |  | TimeKeeper contains default credentials. An attacker can obtain access to user accounts and access sensitive information... |
| Tiny File Manager - Default Login | High |  | Tiny File Manager contains a default login vulnerability. An attacker can obtain access to user accounts and access sens... |
| Tiny File Manager Panel - Detect | Info |  | Tiny File Manager panel was detected. |
| Tiny RSS Panel - Detect | Info |  | Tiny Tiny RSS is a free RSS feed reader |
| Titan FTP Server 6.03 and 6.0.5.549 - Heap Overflow via Long Commands | Critical | CVE-2008-0702 | Titan FTP Server versions 6.03 and 6.05 (builds) contain multiple heap-based buffer overflow vulnerabilities. Remote att... |
| Titan FTP Server 6.05 DELE Command - Heap Overflow | Critical | CVE-2008-5281 | Titan FTP Server version 6.05 build 550 contains a heap overflow vulnerability when processing long DELE commands. Remot... |
| Tixeo Login Panel - Detect | Info |  | Tixeo login panel was detected. |
| Tomcat Exposed - Detect | Info |  | An Apache Tomcat instance was detected. |
| Tongda OA 11.7 - Authentication Bypass | High |  | Tongda OA is a collaborative office automation software independently developed by Beijing Tongda Xinke Technology Co., ... |
| ToolJet - Default Login | High |  | ToolJet contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive info... |
| ToolJet Login Panel - Detect | Info |  | ToolJet login panel was detected. |
| Tools4Ever Self-Service Reset Password Manager - Panel | Info |  | Detects Tools4Ever Self-Service Reset Password Manager login panel. |
| Topsec TopAppLB - Authentication Bypass | High |  | Topsec TopAppLB is vulnerable to authetication bypass .Enter any account on the login page, the password is `;id`. |
| Toshiba TopAccess - Default-Login | High |  |  |
| Toshiba TopAccess Panel - Detect | Info |  |  |
| Total Donations Plugin for WordPress < 2.0.6 - Arbitrary Options Update | Critical | CVE-2019-6703 | Incorrect access control in migla_ajax_functions.php in the Calmar Webmedia Total Donations plugin through 2.0.5 for Wor... |
| Totemomail Login Panel - Detect | Info |  | Totemomail login panel was detected. |
| Traccar Panel - Detect | Info |  | Traccar panel was discovered. |
| Traccar(Windows) 6.1- 6.8.1 - Local File Inclusion | High | CVE-2025-61666 | Traccar 5.8-6.0 (non-default installs with web.override set) and 6.1-6.8.1 (default installs) contain a local file inclu... |
| Traefik Dashboard Panel - Detect | Info |  | Traefik Dashboard panel was detected. |
| Traggo Server - Local File Inclusion | High | CVE-2023-34843 | traggo/server version 0.3.0 is vulnerable to directory traversal. |
| Trassir WebView Default Login - Detect | High |  | Trassir WebView contains a default login vulnerability. An attacker can obtain access to user accounts and access sensit... |
| Trend Micro Apex One Login Panel - Detect | Info |  | Trend Micro Apex One login panel was detected. |
| Trilium <0.52.4 - Cross-Site Scripting | Medium | CVE-2022-2290 | Trilium prior to 0.52.4, 0.53.1-beta contains a cross-site scripting vulnerability which can allow an attacker to execut... |
| Trinity Audio <= 5.21.0 - Information Exposure | Medium | CVE-2025-9196 | The Trinity Audio Text to Speech AI audio player to convert content into audio plugin for WordPress is vulnerable to Sen... |
| Triofox - Improper Access Control | Critical | CVE-2025-12480 | The Gladinet Triofox solution before 12.91.1126.65588 and CentreStack before 12.10.595.65696 allow unauthenticated acces... |
| TrueNAS Panel - Detect | Info |  | TrueNAS scale is a free and open-source NAS solution |
| Tufin SecureTrack Login Panel - Detect | Info |  | Tufin SecureTrack login panel was detected. |
| TurboMeeting - Boolean-based SQL Injection | Critical | CVE-2024-38289 | A Boolean-based SQL injection vulnerability in the "RHUB TurboMeeting" web application. This vulnerability could allow a... |
| TurnKey LAMP Panel - Detect | Info |  | TurnKey LAMP Control Panel was detected. |
| TurnKey OpenVPN Panel - Detect | Info |  | TurnKey OpenVPN panel was detected. |
| Tutor LMS <= 2.1.10 - SQL Injection | High | CVE-2024-1751 | Tutor LMS – eLearning and online course solution plugin for WordPress [all versions up to 2.6.1] contains a time-based... |
| Tutor LMS <= 2.7.6 - SQL Injection | High | CVE-2024-10400 | The Tutor LMS plugin for WordPress is vulnerable to SQL Injection via the ‘rating_filter’ parameter in all versions ... |
| Typo3 Directory Listing | Low |  | Detects directory listing enabled on the TYPO3 temp directory. The typo3temp folder contains cached files, compiled asse... |
| UFIDA NC - Arbitrary File Read | High |  | UFIDA NC is vulnerable to an arbitrary file read vulnerability in the nc.uap.lfw.file.action.DocServlet component. An un... |
| UFIDA U8 CRM cfillbacksetting.php - SQL Injection | High |  | UFIDA U8-CRM system /config/fillbacksetting.php contains an SQL injection vulnerability, which allows attackers to manip... |
| UFIDA U8 CRM fillbacksetting.php - SQL Injection | High |  | UFIDA U8-CRM system /config/fillbacksetting.php contains an SQL injection vulnerability, which allows attackers to manip... |
| UNA CMS <= 14.0.0-RC4 - PHP Object Injection | Critical | CVE-2025-32101 | The vulnerability is located in the /template/scripts/BxBaseMenuSetAclLevel.php script. Specifically, within the BxBaseM... |
| UPS Adapter CS141 SNMP Module Default Login | Medium |  | UPS Adapter CS141 SNMP Module default login credentials were discovered. |
| Ubigeo de Peru < 3.6.4 - SQL Injection | Critical | CVE-2022-0814 | The plugin does not properly sanitise and escape some parameters before using them in SQL statements via various AJAX ac... |
| UiPath Orchestrator Login Panel - Detect | Info |  | UiPath Orchestrator login panel was detected. |
| Umami Panel - Detect | Info |  | simple, fast, privacy-focused, open-source analytics solution. |
| Umbraco CMS - Directory Listing Exposure | Medium |  | Detected directory listing enabled on sensitive Umbraco CMS directories, potentially exposing configuration files, logs,... |
| Umbraco Login Panel - Detect | Info |  | Umbraco login panel was detected. |
| Umbraco Mini Profiler - Exposure | Low |  | Detected the exposure of the MiniProfiler debugging interface in Umbraco CMS. When exposed, it can reveal sensitive info... |
| UnRaid <=6.80 - Remote Code Execution | Critical | CVE-2020-5847 | UnRaid <=6.80 allows remote unauthenticated attackers to execute arbitrary code. |
| Unauthenticated Remote Code Execution – Bricks <= 1.9.6 | Critical | CVE-2024-25600 | Bricks Builder is a popular WordPress development theme with approximately 25,000 active installations. It provides an i... |
| UniFi - NFC Credentials | High |  | An unauthenticated GET to /api/v1/user_assets/touch_pass/keys returns JSON containing live credential material (PEM priv... |
| UniFi Network Login Panel - Detect | Info |  | UniFi Network login panel was detected. |
| UniFi OS - Panel | Info |  | UniFi OS Panel was discovered |
| Unibox Panel - Detect | Info |  | Unibox Administrator panel was detected. |
| Unity Plastic SCM Login Panel - Detect | Info |  | Unity Plastic SCM login panel was detected. |
| Universal Media Server v13.2.1 - Cross Site Scripting | Medium |  | Universal Media Server v13.2.1 CMS v2.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability. |
| Unleash Panel - Detect | Info |  | Open-source feature management solution built for developers. |
| Unraid Authentication Bypass Vulnerability | High | CVE-2020-5849 | Unraid 6.8.0 allows authentication bypass. |
| Untangle Administrator Login Panel - Detect | Info |  | Untangle Administrator is a centralized web-based management console that allows administrators to efficiently configure... |
| Uptime Kuma - Panel | Info |  | Realtime website and application monitoring tool |
| UrBackup Panel - Detect | Info |  |  |
| User Control Panel - Detect | Info |  | User Control Panel was detected. |
| User Management/Registration & Login v3.0 - SQL Injection | High |  | User Registration & Login and User Management System v3.0 admin panel has SQL vulnerability. Even though the person who ... |
| User Meta WP Plugin < 3.1 - Sensitive Information Exposure | Medium | CVE-2024-33575 | The User Meta is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.0 via the /views/d... |
| User Submitted Posts <= 20251121 - Unauthenticated Open Redirect | Medium |  | The User Submitted Posts plugin for WordPress is vulnerable to Open Redirect in all versions up to and including 2025112... |
| UserPro <= 5.1.1 - Authentication Bypass | Critical | CVE-2023-2437 | The UserPro plugin for WordPress through 5.1.1 allows authentication bypass via the userpro_fbconnect AJAX action. |
| Usermin 2.100 - Username Enumeration | Medium | CVE-2024-44762 | Usermin version 2.100 and below is susceptible to username enumeration via the password change functionality. An attacke... |
| Usermin Panel - Detect | Info |  | Usermin panel was discovered. |
| V2924 Admin Login Panel - Detect | Info |  | V2924 admin login panel was detected. |
| VICIdial - SQL Injection | Critical | CVE-2024-8503 | An unauthenticated attacker can leverage a time-based SQL injection vulnerability in VICIdial to enumerate database reco... |
| VMware - Local File Inclusion | Critical | CVE-2022-31656 | VMware Workspace ONE Access, Identity Manager, and Realize Automation are vulnerable to local file inclusion because the... |
| VMware Aria Operations Login - Detect | Info |  | Detects VMware Aria Operations Panel. |
| VMware Carbon Black EDR Panel - Detect | Info |  | VMware Carbon Black EDR panel was detected. |
| VMware Cloud Director Availability Login Panel - Detect | Info |  | VMware Cloud Director Availability login panel was detected. |
| VMware Cloud Director Login Panel - Detect | Info |  | VMware Cloud Director login panel was detected. |
| VMware FTP Server Login Panel - Detect | Info |  | VMware FTP Server login panel was detected. |
| VMware HCX Login Panel - Detect | Info |  | VMware HCX login panel was detected. |
| VMware NSX Login Panel - Detect | Info |  | VMware NSX login panel was detected. |
| VMware NSX SD-WAN Edge - Command Injection | Critical | CVE-2018-6961 | VMware NSX SD-WAN Edge (formerly VeloCloud Edge) before 3.1.2 contains an unauthenticated command injection in the local... |
| VMware Workspace ONE Access - Server-Side Template Injection | Critical | CVE-2022-22954 | VMware Workspace ONE Access is susceptible to a remote code execution vulnerability due to a server-side template inject... |
| VMware Workspace ONE UEM Airwatch Login Panel - Detect | Info |  | VMware Workspace ONE UEM Airwatch login panel was detected. |
| VMware Workspace ONE UEM Airwatch Self-Service Portal - Detect | Info |  | VMware Workspace ONE UEM Airwatch Self-Service Portal (SSP) login panel was detected. |
| VMware vCenter Converter Panel - Detect | Info |  | VMware vCenter Converter panel was detected. |
| VMware vCenter Server - Out-of-Bounds Write | Critical | CVE-2023-34048 | vCenter Server contains an out-of-bounds write caused by a vulnerability in the DCERPC protocol implementation. A malici... |
| VMware vCloud Director Panel - Detect | Info |  | VMware vCloud Director panel was detected. |
| VMware vRealize Log Insight - Improper Access Control to RCE | Critical | CVE-2022-31704 | The vRealize Log Insight contains a broken access control vulnerability. An unauthenticated malicious actor can remotely... |
| VMware vRealize Log Insight - Path Traversal | Critical | CVE-2022-31706 | he vRealize Log Insight contains a Directory Traversal Vulnerability. An unauthenticated, malicious actor can inject fil... |
| VMware vRealize Log Insight < v8.10.2 - Information Disclosure | Medium | CVE-2022-31711 | VMware vRealize Log Insight contains an Information Disclosure Vulnerability. A malicious actor can remotely collect sen... |
| VSFTPD 2.3.4 - Backdoor Command Execution | Critical | CVE-2011-2523 | VSFTPD v2.3.4 had a serious backdoor vulnerability allowing attackers to execute arbitrary commands on the server with r... |
| Vanna - SQL injection | Critical | CVE-2024-5827 | Vanna v0.3.4 is vulnerable to SQL injection in its DuckDB integration exposed to its Flask Web APIs. Attackers can injec... |
| Vault Login Panel - Detect | Info |  | Vault login panel was detected. |
| Vaultwarden Login Panel - Detect | Info |  | Vaultwarden products was detected. |
| VectorAdmin Panel - Detect | Info |  | VectorAdmin panel was discovered. |
| Veeam Backup & Replication - Unauthenticated | Critical | CVE-2024-40711 | A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code exec... |
| Veeam Backup Enterprise Manager Login - Detect | Info |  | Veeam Backup Enterprise Manager Login |
| Veeam Backup for Google Cloud Platform Panel - Detect | Info |  | Veeam Backup for Google Cloud Platform panel was detected. |
| Veeam Backup for Microsoft Azure Panel - Detect | Info |  | Veeam Backup for Microsoft Azure panel was detected. |
| Veeam Login Panel - Detect | Info |  | Veeam login panel was detected. |
| Vendure Core - SQL Injection | Critical | CVE-2026-40887 | Vendure, an open-source headless commerce platform built on Node.js/TypeScript, contains a critical SQL injection vulner... |
| Veracore Login - Detect | Info |  | A veracore login panel was detected. |
| Veritas NetBackup OpsCenter Analytics Login - Detect | Info |  | A Veritas NetBackup OpsCenter Analytics page was detected. |
| Veriz0wn OSINT - Detect | Info |  |  |
| Verizon Router Panel - Detect | Info |  | Verizon router panel was detected. |
| Versa Concerto API Path Based - Authentication Bypass | Critical | CVE-2025-34027 | Authentication bypass in the Versa Concerto API, caused by URL decoding inconsistencies. It allowed unauthorized access ... |
| Versa Concerto Actuator Endpoint - Authentication Bypass | Critical | CVE-2025-34026 | An authentication bypass vulnerability affected the Spring Boot Actuator endpoints in Versa Concerto due to improper han... |
| Versa Director Login Panel - Detect | Info |  | Versa Director login panel was detected. |
| Versa FlexVNF - Default Login | High |  | Versa FlexVNF contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitiv... |
| Versa FlexVNF Panel - Detect | Info |  | Versa FlexVNF panel was detected. |
| VertaAI ModelDB - Path Traversal | High | CVE-2023-6023 | The endpoint "/api/v1/artifact/getArtifact?artifact_path=" is vulnerable to path traversal. The main cause of this vulne... |
| Vertex Tax Installer Panel - Detect | Info |  | Vertex Tax Installer panel was detected. |
| VictoriaMetrics Panel - Detect | Info |  | A VictoriaMetrics panel was discovered. |
| Vidyo Admin Login Panel - Detect | Info |  | Vidyo admin login panel was detected. |
| Viessmann Vitogate 300 - Hardcoded Password | Critical | CVE-2023-5222 | A critical vulnerability in Viessmann Vitogate 300 up to 2.1.3.0 allows attackers to authenticate using hardcoded creden... |
| Viessmann Vitogate 300 - Remote Code Execution | Critical | CVE-2023-45852 | In Vitogate 300 2.1.3.0, /cgi-bin/vitogate.cgi allows an unauthenticated attacker to bypass authentication and execute a... |
| Vinchin Backup & Recovery Panel - Detect | Info |  | Vinchin Backup & Recovery login panel was detected. |
| Virtua Software Cobranca <12R - Blind SQL Injection | High | CVE-2021-37589 | Virtua Cobranca before 12R allows blind SQL injection on the login page. |
| Virtua Software Panel - Detect | Info |  | Virtua Software panel was detected. |
| Vite - Arbitrary File Read | Medium | CVE-2025-30208 | Vite, a provider of frontend development tooling, has a vulnerability in versions prior to 6.2.3, 6.1.2, 6.0.12, 5.4.15,... |
| Vite - Information Disclosure | Medium | CVE-2025-62522 | Vite is a frontend tooling framework for JavaScript.In versions from 2.9.18 to before 3.0.0, 3.2.9 to before 4.0.0, 4.5.... |
| Vite Dev Server - Path Traversal | Low | CVE-2025-58751 | Vite is a frontend tooling framework for JavaScript. Prior to versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20, files starting w... |
| Vite Development Server - Path Traversal | Medium | CVE-2025-31125 | Path traversal vulnerability in Vite development server's @fs endpoint allows attackers to access files outside the inte... |
| Vite server.fs.deny Bypass - Local File Inclusion | Medium | CVE-2025-31486 | Vite is a frontend tooling framework for javascript. The contents of arbitrary files can be returned to the browser. By ... |
| VoIPmonitor Login Panel - Detect | Info |  | VoIPmonitor login panel was detected. |
| Vodafone Vox UI Login Panel - Detect | Info |  | Vodafone Vox UI login panel was detected. |
| Void Aural Rec Monitor 9.0.0.1 - SQL Injection | High | CVE-2021-25899 | Void Aural Rec Monitor 9.0.0.1 contains a SQL injection vulnerability in svc-login.php. An attacker can send a crafted H... |
| VoipMonitor - Pre-Auth SQL Injection | Critical | CVE-2022-24260 | A SQL injection vulnerability in Voipmonitor GUI before v24.96 allows attackers to escalate privileges to the Administra... |
| VoipMonitor <24.61 - Remote Code Execution | Critical | CVE-2021-30461 | VoipMonitor prior to 24.61 is susceptible to remote code execution vulnerabilities because of its use of user supplied d... |
| Vtiger CRM - Default Login | High |  | Detected a Vtiger CRM instance that enabled default admin credentials. |
| Vtiger CRM v7.2.0 - Directory Listing | Medium | CVE-2020-19363 | Vtiger CRM v7.2.0 contains a directory traversal vulnerability caused by improper access controls in /libraries and /lay... |
| Vue PACS - Panel | Info |  | Vue PACS was detected. |
| Vue Vben Admin - Default Credentials | Critical | CVE-2025-25570 | Vue Vben Admin 2.10.1 contains a broken authentication caused by hardcoded credentials in the backend, letting attackers... |
| WAGO - Remote Command Execution | Critical | CVE-2023-1698 | In multiple products of WAGO, a vulnerability allows an unauthenticated, remote attacker to create new users and change ... |
| WAGO Web based Management - Default Login | High |  | Identified WAGO Web-Based Management interfaces that were accessible using default credentials (admin:wago).These interf... |
| WAPPLES Web Application Firewall <=6.0 - Hardcoded Credentials | Critical | CVE-2022-35413 | WAPPLES Web Application Firewall through 6.0 contains a hardcoded credentials vulnerability. It contains a hardcoded sys... |
| WAVLINK - Access Control | High | CVE-2020-10973 | Wavlink WN530HG4, WN531G3, WN533A8, and WN551K are susceptible to improper access control via /cgi-bin/ExportAllSettings... |
| WAVLINK AC1200 - Information Disclosure | High | CVE-2021-44260 | A vulnerability is in the 'live_mfg.html' page of the WAVLINK AC1200, version WAVLINK-A42W-1.27.6-20180418, which can al... |
| WAVLINK Quantum D4G (WL-WN531G3) - Information Disclosure | High | CVE-2022-44356 | WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access contr... |
| WAVLINK WN530H4 M30H4.V5030.190403 - Information Disclosure | High | CVE-2020-12127 | WAVLINK WN530H4 M30H4.V5030.190403 contains an information disclosure vulnerability in the /cgi-bin/ExportAllSettings.sh... |
| WAVLINK WN530H4 live_api.cgi - Command Injection | Critical | CVE-2020-12124 | A remote command-line injection vulnerability in the /cgi-bin/live_api.cgi endpoint of the WAVLINK WN530H4 M30H4.V5030.1... |
| WAVLINK WN530HG4 - Improper Access Control | Medium | CVE-2022-34049 | Wavlink WN530HG4 M30HG4.V5030.191116 is susceptible to improper access control. An attacker can download log files and c... |
| WAVLINK WN530HG4 - Improper Access Control | High | CVE-2022-34047 | WAVLINK WN530HG4 M30HG4.V5030.191116 is susceptible to improper access control. An attacker can obtain usernames and pas... |
| WAVLINK WN530HG4 - Improper Access Control | Critical | CVE-2022-34045 | WAVLINK WN530HG4 M30HG4.V5030.191116 is susceptible to improper access control. It contains a hardcoded encryption/decry... |
| WAVLINK WN533A8 - Improper Access Control | High | CVE-2022-34046 | WAVLINK WN533A8 M33A8.V5030.190716 is susceptible to improper access control. An attacker can obtain usernames and passw... |
| WAVLINK WN535 G3 - Improper Access Control | High | CVE-2022-34576 | WAVLINK WN535 G3 M35G3R.V5030.180927 is susceptible to improper access control. A vulnerability in /cgi-bin/ExportAllSet... |
| WAVLINK WN535 G3 - Information Disclosure | High | CVE-2022-31845 | WAVLINK WN535 G3 M35G3R.V5030.180927 is susceptible to information disclosure in live_check.shtml. An attacker can obtai... |
| WAVLINK WN535 G3 - Information Disclosure | High | CVE-2022-31846 | WAVLINK WN535 G3 M35G3R.V5030.180927 is susceptible to information disclosure in the live_mfg.shtml page. An attacker ca... |
| WAVLINK WN579 X3 M79X3.V5030.180719 - Information Disclosure | High | CVE-2022-31847 | WAVLINK WN579 X3 M79X3.V5030.180719 is susceptible to information disclosure in /cgi-bin/ExportAllSettings.sh. An attack... |
| WCFM Membership <= 2.10.0 - Broken Access Control | High | CVE-2022-4940 | The WCFM Membership plugin for WordPress is vulnerable to unauthorized modification and access of data in versions up to... |
| WCFM WooCommerce Multivendor Marketplace < 3.4.12 - SQL Injection | Critical | CVE-2021-24849 | The wcfm_ajax_controller AJAX action of the WCFM Marketplace WordPress plugin before 3.4.12, available to unauthenticate... |
| WD My Cloud Panel - Detect | Info |  |  |
| WP Directory Kit < 1.5.0 - Unauthenticated Email Exposure | Medium | CVE-2025-13920 | WP Directory Kit plugin for WordPress <= 1.4.9 contains a sensitive information exposure caused by improper access contr... |
| WP Directory Kit <= 1.4.3 - Unauthenticated SQL Injection | High | CVE-2025-13138 | The WP Directory Kit plugin for WordPress is vulnerable to SQL Injection via the 'columns_search' parameter of the selec... |
| WP Directory Kit <= 1.4.4 - Authentication Bypass | Critical | CVE-2025-13390 | The WP Directory Kit plugin for WordPress version 1.4.4 and below contains an authentication bypass vulnerability in its... |
| WP Fastest Cache 1.2.2 - SQL Injection | High | CVE-2023-6063 | The WP Fastest Cache WordPress plugin before 1.2.2 does not properly sanitise and escape a parameter before using it in ... |
| WP Google Maps < 9.0.48 - Cross-Site Scripting | High | CVE-2025-11307 | WP Google Maps WordPress plugin < 9.0.48 contains a stored XSS vulnerability caused by unsanitized user input in AJAX ac... |
| WP Hotel Booking < 1.10.4 - PHP Object Injection | Critical | CVE-2020-29047 | The wp-hotel-booking plugin through 1.10.2 for WordPress allows remote attackers to execute arbitrary code because of an... |
| WP Hotel Booking <= 2.0.7 - SQL Injection | Critical | CVE-2023-5652 | WP Hotel Booking WordPress plugin before 2.0.8 contains a SQL injection caused by lack of authorization, CSRF checks, an... |
| WP Hotel Booking <= 2.1.0 - SQL Injection | Critical | CVE-2024-3605 | The WP Hotel Booking plugin for WordPress is vulnerable to SQL Injection via the 'room_type' parameter of the /wphb/v1/r... |
| WP Popup Builder Popup Forms and Marketing Lead Generation <= 1.3.5 - Arbitrary Shortcode Execution | High | CVE-2024-9061 | The The WP Popup Builder Popup Forms and Marketing Lead Generation plugin for WordPress is vulnerable to arbitrary short... |
| WP Query Console <= 1.0 - Remote Code Execution | Critical | CVE-2024-50498 | Improper Control of Generation of Code ('Code Injection') vulnerability in LUBUS WP Query Console allows Code Injection.... |
| WP Responsive Images <= 1.0 - Arbitrary File Read | High | CVE-2026-1557 | WP Responsive Images plugin for WordPress <= 1.0 contains a path traversal caused by improper sanitization of the 'src' ... |
| WP Travel Engine <= 5.7.9 - SQL Injection | Critical | CVE-2024-30502 | WP Travel Engine 5.7.9 and earlier contains a SQL injection caused by improper neutralization of special elements used i... |
| WP Umbrella Update Backup Restore & Monitoring <= 2.17.0 - Local File Inclusion | Critical | CVE-2024-12209 | The WP Umbrella: Update Backup Restore & Monitoring plugin for WordPress is vulnerable to Local File Inclusion in all ve... |
| WP User <= 7.0 - Unauthenticated SQLi | Critical | CVE-2022-4049 | The WP User WordPress plugin through 7.0 does not properly sanitize and escape a parameter before using it in a SQL stat... |
| WP Visitor Statistics (Real Time Traffic) < 6.9 - SQL Injection | Critical | CVE-2023-0600 | The plugin does not escape user input which is concatenated to an SQL query, allowing unauthenticated visitors to conduc... |
| WP-Optimize WordPress plugin < 3.2.13 - Cross-Site Scripting | Medium | CVE-2023-1119 | The WP-Optimize WordPress plugin before 3.2.13 and SrbTransLatin WordPress plugin before 2.4.1 are vulnerable to cross-s... |
| WP-Recall – Plugin <= 16.26.10 - Unauthenticated SQL Injection | High | CVE-2025-1323 | The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to SQL Injection via the 'da... |
| WPEngine WPGraphQL 0.2.3 - Unauthenticated Comment Posting | Medium | CVE-2019-9881 | The createComment mutation in the WPGraphQL 0.2.3 plugin for WordPress allows unauthenticated users to post comments on ... |
| WPEngine WPGraphQL 0.2.3 - Unauthenticated User Information Disclosure | Critical | CVE-2019-9880 | An issue was discovered in the WPGraphQL 0.2.3 plugin for WordPress. By querying the 'users' RootQuery, it is possible, ... |
| WPMobile.App <= 11.56 - Open Redirect | High | CVE-2024-13888 | The WPMobile.App plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 11.56. This i... |
| WPS Hide Login <= 1.5.2.2  - Login Page Bypass | High | CVE-2019-15823 | WPS-Hide-Login plugin before 1.5.3 for WordPress contains an action=confirmaction protection bypass, letting attackers b... |
| WPS Hide Login <= 1.9.15.2 - Login Page Disclosure | Medium | CVE-2024-2473 | The WPS Hide Login plugin for WordPress is vulnerable to Login Page Disclosure in all versions up to, and including, 1.9... |
| WS-FTP Ad Hoc Transfer Panel - Detect | Info |  | WS_FTP Ad Hoc panel was detected. |
| WSO2 Carbon Management Console <=5.10 - Cross-Site Scripting | Medium | CVE-2020-17453 | WSO2 Management Console through 5.10 is susceptible to reflected cross-site scripting which can be exploited by tamperin... |
| WSO2 Management Console - Authentication Bypass | Medium | CVE-2025-5605 | An authentication bypass vulnerability exists in the Management Console of multiple WSO2 products. A malicious actor wit... |
| WSO2 Management Console Default Login | High |  | WSO2 Management Console default admin credentials were discovered. |
| WSO2 Management Console Login Panel - Detect | Info |  | WSO2 Management Console login panel was detected. |
| WS_FTP Server - Insecure Deserialization | Critical | CVE-2023-40044 | In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a pre-authenticated attacker could leverage a .NET deserialization v... |
| WS_FTP Server Web Transfer - Panel Detect | Info |  | WS_FTP Server Web Transfer panel was detected. |
| WWBN AVideo 11.6 - Cross-Site Scripting | Medium | CVE-2023-48728 | A reflected XSS vulnerability exists in the functiongetOpenGraph videoName functionality of WWBN AVideo 11.6 and dev mas... |
| Wagtail Login - Detect | Info |  | The Wagtail panel has been detected. |
| Wallix Access Manager Panel - Detect | Info |  | Wallix Access Manager panel was detected. |
| WampServer Panel - Detect | Info |  | WampServer panel was detected. |
| Watcher Panel - Detect | Info |  |  |
| Watershed Login Panel - Detect | Info |  | Watershed login panel was detected. |
| Wavlink - Improper Access Control | High | CVE-2022-48165 | Wavlink WL-WN530H4 M30H4.V5030.210121 is susceptible to improper access control in the component /cgi-bin/ExportLogs.sh.... |
| Wavlink WL-WN530HG4 M30HG4.V5030.201217 - Information Disclosure | High | CVE-2022-48166 | An access control issue in Wavlink WL-WN530HG4 M30HG4.V5030.201217 allows unauthenticated attackers to download configur... |
| Wavlink WL-WN533A8 M33A8.V5030.190716 - Information Disclosure | High | CVE-2022-48164 | An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN533A8 M33A8.V5030.190716 allows unauthen... |
| Wavlink WN535K2/WN535K3 - OS Command Injection | Critical | CVE-2022-2487 | Wavlink WN535K2 and WN535K3 routers are susceptible to OS command injection which affects unknown code in /cgi-bin/night... |
| Wazuh - Default Login | High |  | Wazuh contains default credentials. An attacker can obtain access to user accounts and access sensitive information, mod... |
| Wazuh Login Panel | Info |  | Wazuh - The Open Source Security Platform |
| WeChat agentinfo - Information Exposure | High |  | There is an information leakage vulnerability in the agentinfo interface of Tencent Enterprise WeChat. An attacker can o... |
| WeGIA - Directory Traversal | Critical | CVE-2025-55169 | WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Prior to versio... |
| Web File Manager Login Panel - Detect | Info |  | Web File Manager login panel was detected. |
| Web Transfer Client Login Panel - Detect | Info |  | Progress Web Transfer Client login panel was detected. |
| Web Viewer for Samsung DVR - Detect | Info |  |  |
| WebIQ 2.15.9 - Directory Traversal | High | CVE-2024-8752 | The Windows version of WebIQ 2.15.9 is affected by a directory traversal vulnerability that allows remote attackers to r... |
| WebMethod Integration Server Default Login | High |  |  |
| WebPageTest Login Panel - Detect | Info |  | WebPageTest login panel was detected. |
| WebShell4 Login Panel - Detect | Info |  | WebShell4 login panel was detected. |
| WebTitan Cloud Panel - Detect | Info |  | WebTitan Cloud is a cloud-based web filtering solution that monitors, controls, and protects users and businesses online... |
| WebcomCo - Panel | Info |  |  |
| Weblate Public Project - Exposure | Info |  | Weblate instance is publicly accessible. Public exposure of Weblate may lead to unauthorized access to translation proje... |
| Webmin - Default Login | High |  | Webmin default login credentials were discovered. |
| Webmin < 1.290 / Usermin < 1.220 - Arbitrary File Disclosure | Medium | CVE-2006-3392 | Webmin before 1.290 and Usermin before 1.220 contain a path traversal caused by calling the simplify_path function befor... |
| Webmin < 1.920 - Authenticated Remote Code Execution | High | CVE-2019-15642 | rpc.cgi in Webmin through 1.920 allows authenticated Remote Code Execution via a crafted object name because unserialise... |
| Webmin <= 1.920 - Unauthenticated Remote Command Execution | Critical | CVE-2019-15107 | Webmin <=1.920. is vulnerable to an unauthenticated remote command execution via the parameter 'old' in password_change.... |
| Webmin Admin Login Panel - Detect | Info |  | Webmin admin login panel was detected. |
| Webmodule Login Panel - Detect | Info |  | Webmodule login panel was detected. |
| Webnus Inc. Modern Events Calendar - Broken Access Control | Medium | CVE-2026-32583 | Webnus Inc. Modern Events Calendar <= 7.29.0 contains a broken access control vulnerability caused by incorrectly config... |
| Webroot Login Panel - Detect | Info |  | Webroot login panel was detected. |
| Webuzo Admin Login Panel - Detect | Info |  | Webuzo admin login panel was detected. |
| WeiPHP 5.0 - SQL Injection | Critical | CVE-2020-20300 | WeiPHP 5.0 contains a SQL injection vulnerability via the wp_where function. An attacker can possibly obtain sensitive i... |
| Weiphp Panel - Detect | Info |  | Weiphp panel was detected. |
| Wekan Sign Up Page - Exposure | Medium |  | Detected exposed Wekan sign-up functionality, indicating that unauthenticated users could access the registration page a... |
| Western Digital MyCloud NAS - Authentication Bypass | Critical | CVE-2018-17153 | It was discovered that the Western Digital My Cloud device before 2.30.196 is affected by an authentication bypass vulne... |
| Whatsup Gold Login Panel - Detect | Info |  | Whatsup Gold login panel was detected. |
| White Star Software ProTop - Directory Traversal | High | CVE-2025-44177 | A directory traversal vulnerability was discovered in White Star Software Protop version 4.4.2-2024-11-27, specifically ... |
| WhoDB < 0.45.0 - Path Traversal | High | CVE-2025-24786 | WhoDB contains a path traversal caused by lack of validation when opening database files, letting unauthenticated attack... |
| Wifisky Default Login | High |  | Wifisky default admin credentials were discovered. |
| Wildfly - Default Admin Login | High |  | Wildfly default admin login credentials were successful. |
| Wildix Collaboration Panel - Detect | Info |  | Wildix Collaboration login panel was detected. |
| Windows Admin Center Panel - Detection | Info |  | Detect Windows Admin Center Panel web interface. |
| Wing FTP Server <= 7.4.3 - Path Disclosure via Overlong UID Cookie | Medium | CVE-2025-47813 | Wing FTP Server versions prior to 7.4.4 are vulnerable to an authenticated information disclosure vulnerability (CVE-202... |
| Wing FTP Server <= 7.4.3 - Remote Code Execution | Critical | CVE-2025-47812 | Wing FTP Server versions prior to 7.4.4 are vulnerable to an unauthenticated remote code execution (RCE) flaw (CVE-2025-... |
| Wiren Board WebUI Panel - Detect | Medium |  | Wiren Board WebUI panel was detected. |
| WooCommerce Ultimate Gift Card ≤ 2.6.0 - Arbitrary File Upload | Critical | CVE-2024-8425 | The WooCommerce Ultimate Gift Card plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file... |
| Woodpecker CI Panel - Detect | Info |  | Woodpecker CI panel was detected. Woodpecker is a community fork of Drone CI, providing a simple yet powerful continuous... |
| Woodwing Studio Server Panel - Detect | Info |  |  |
| WordPress 12 Step Meeting List Plugin <= 3.14.33 - Cross-Site Scripting | Medium | CVE-2024-35693 | Code for Recovery 12 Step Meeting List versions up to 3.14.33 contain a reflected cross-site scripting caused by imprope... |
| WordPress <= 5.2.4 - Unauthenticated View Private/Draft Posts | Medium | CVE-2019-17671 | WordPress before 5.2.4 contains an information disclosure caused by mishandling of the static query property, letting un... |
| WordPress AI ChatBot (WPBot) <= 4.8.9 - SQL Injection | Critical | CVE-2023-5204 | ChatBot plugin for WordPress up to 4.8.9 contains a sql_injection caused by insufficient escaping and lack of preparatio... |
| WordPress AI Engine Plugin - Token Exposure | Critical | CVE-2025-11749 | Unauthenticated sensitive information exposure in AI Engine WordPress plugin <= 3.1.3 exposes bearer tokens via REST API... |
| WordPress AMP - Full Path Disclosure | Low |  | The WordPress AMP - Accelerated Mobile Pages plugin was detected to be vulnerable to Full Path Disclosure, allowing unau... |
| WordPress AddToAny Share Buttons Plugin - Full Path Disclosure | Low |  | The AddToAny Share Buttons plugin for WordPress was detected to be vulnerable to Full Path Disclosure, allowing unauthen... |
| WordPress Astra - Full Path Disclosure | Low |  | WordPress Astra Theme files are publicly accessible without ABSPATH protection, exposing sensitive server path informati... |
| WordPress Astra Sites - Full Path Disclosure | Low |  | WordPress Starter Templates plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress BackWPup < 4.0.4 - Backup File Disclosure | High | CVE-2023-7164 | BackWPup WordPress plugin < 4.0.4 contains a directory listing vulnerability caused by lack of access restrictions in it... |
| WordPress Backup Migration <= 1.3.6 - Path Traversal | High | CVE-2023-6266 | WordPress Backup Migration plugin versions up to 1.3.6 contain a path traversal and file validation issue in handle_down... |
| WordPress CMB2 - Full Path Disclosure | Low |  | WordPress CMB2 plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress Collapsing Categories <= 3.0.8 - SQL Injection | High | CVE-2024-12025 | Collapsing Categories plugin for WordPress <= 3.0.8 contains a sql_injection caused by insufficient escaping of 'taxonom... |
| WordPress Coming Soon Page - Full Path Disclosure | Low |  | WordPress Coming Soon Page & Maintenance Mode plugin files are publicly accessible without ABSPATH protection, exposing ... |
| WordPress Core - Post Author Email Disclosure | Medium | CVE-2023-5561 | WordPress Core is vulnerable to Sensitive Information Exposure in versions between 4.7.0 and 6.3.1 via the User REST end... |
| WordPress Download Manager - File Password Exposure | Medium | CVE-2023-6421 | The WordPress Download Manager plugin contains a vulnerability that allows attackers to obtain passwords for password-pr... |
| WordPress Download Manager < 3.3.07 - Unauthenticated Data Exposure | Medium | CVE-2024-13126 | The WordPress Download Manager plugin before version 3.3.07 does not prevent directory listing on web servers that don't... |
| WordPress Download Manager <= 3.2.59 - Reflected XSS | High | CVE-2022-45836 | W3 Eden, Inc. Download Manager plugin <= 3.2.59 contains a reflected cross-site scripting caused by insufficient input s... |
| WordPress Duplicator 1.3.24 & 1.3.26 - Local File Inclusion | High | CVE-2020-11738 | WordPress Duplicator 1.3.24 & 1.3.26 are vulnerable to local file inclusion vulnerabilities that could allow attackers t... |
| WordPress End-of-Life - Detect | Info |  | Detected WordPress versions that have reached End-of-Life (EOL) and no longer receive security updates. |
| WordPress Eventin (Themewinter) ≤ 4.0.26 - Arbitrary File Download | High | CVE-2025-47445 | Themewinter Eventin contains a path traversal caused by relative path manipulation, letting attackers access arbitrary f... |
| WordPress Events Calendar 6.8.2.1 - Information Disclosure | Medium | CVE-2024-5333 | The Events Calendar WordPress plugin 6.8.2.1 contains missing access checks in the REST API, letting unauthenticated use... |
| WordPress Events Manager - Full Path Disclosure | Low |  | WordPress WP Super Cache plugin files are publicly accessible without ABSPATH protection, exposing sensitive server path... |
| WordPress File Upload <= 4.24.11 - Arbitrary File Read | Critical | CVE-2024-9047 | The WordPress File Upload plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 4.2... |
| WordPress GamiPress <= 2.5.7 - SQL Injection | Critical | CVE-2023-24000 | The GamiPress plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 2.5.7 due to insuffi... |
| WordPress Gift Voucher <4.1.8 - Blind SQL Injection | Critical | CVE-2018-16159 | WordPress Gift Vouchers plugin before 4.1.8 contains a blind SQL injection vulnerability via the template_id parameter i... |
| WordPress Grow by Tradedoubler Plugin < 2.0.22 - Unauthenticated Local File Inclusion | Critical | CVE-2024-6460 | The Grow by Tradedoubler WordPress plugin through version 2.0.21 is vulnerable to Local File Inclusion via the component... |
| WordPress HTML5 Video Player - SQL Injection | Critical | CVE-2024-1061 | WordPress HTML5 Video Player plugin is vulnerable to SQL injection. An unauthenticated attacker can exploit this vulnera... |
| WordPress Header Footer Elementor - Full Path Disclosure | Low |  | WordPress Header Footer Elementor plugin (also known as Ultimate Addons for Elementor - Lite) contains PHP files that la... |
| WordPress Hummingbird <= 3.18.0 - Sensitive Information Exposure via Log File | High | CVE-2025-14437 | Hummingbird Performance WordPress plugin <= 3.18.0 contains a sensitive information exposure caused by improper handling... |
| WordPress JS Archive List <= 6.1.5 - SQL Injection | High | CVE-2025-54726 | Miguel Useche JS Archive List contains an sql injection caused by improper neutralization of special elements in SQL com... |
| WordPress Job Portal < 2.0.6 - SQL Injection | High | CVE-2023-4490 | The WP Job Portal WordPress plugin before 2.0.6 does not sanitise and escape the city parameter before using it in a SQL... |
| WordPress Kali Forms <= 2.4.9 - Remote Code Execution | Critical | CVE-2026-3584 | Kali Forms WordPress plugin <= 2.4.9 contains a remote code execution caused by unsafe user input handling in 'form_proc... |
| WordPress List Site Contributors < 1.1.8 - Reflected XSS | Medium |  | WordPress List Site Contributors plugin < 1.1.8 contains a reflected XSS caused by insufficient sanitization and escapin... |
| WordPress MStore API <= 4.0.1 - Unauthenticated SQL Injection | Critical |  | MStore API plugin for WordPress up to version 4.0.1 contains an unauthenticated blind SQL injection caused by insufficie... |
| WordPress ManageWP Worker - Full Path Disclosure | Low |  | WordPress ManageWP Worker plugin files are publicly accessible without ABSPATH protection, exposing sensitive server pat... |
| WordPress Members / Membership & User Role Editor Plugin - Error Log Disclosure | Low |  | WordPress Members plugin is vulnerable to error log disclosure via direct access to plugin files. |
| WordPress Members Plugin - Debug/Error Log Disclosure | Low |  | The WordPress Members plugin exposes error/debug log files that may contain sensitive information. |
| WordPress My Calendar <3.4.22 - SQL Injection | Critical | CVE-2023-6360 | WordPress My Calendar plugin versions before 3.4.22 are vulnerable to an unauthenticated SQL injection within the 'from'... |
| WordPress Newsletter - Log File Exposure | Medium |  | The Newsletters plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and includin... |
| WordPress NextGEN Gallery Pro - Error Log Disclosure | Medium |  | The NextGEN Gallery Pro plugin for WordPress may expose debug/error log files that contain sensitive information includi... |
| WordPress OceanWP - Full Path Disclosure | Low |  | WordPress OceanWP theme is vulnerable to full path disclosure via direct access to theme files. |
| WordPress PHPMailer < 5.2.18 - Remote Code Execution | Critical | CVE-2016-10033 | WordPress PHPMailer before 5.2.18 might allow remote attackers to pass extra parameters to the mail command and conseque... |
| WordPress POST SMTP Mailer <= 2.8.7 - Authorization Bypass | Critical | CVE-2023-6875 | The POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress plugin for WordPress... |
| WordPress Paid Memberships Pro <2.6.7 - Blind SQL Injection | Critical | CVE-2021-25114 | WordPress Paid Memberships Pro plugin before 2.6.7 is susceptible to blind SQL injection. The plugin does not escape the... |
| WordPress Paid Memberships Pro <2.9.8 - Blind SQL Injection | Critical | CVE-2023-23488 | WordPress Paid Memberships Pro plugin before 2.9.8 contains a blind SQL injection vulnerability in the 'code' parameter ... |
| WordPress Perfect Images (WP Retina 2x) < 6.4.6 - Sensitive Information Exposure | Medium | CVE-2023-44982 | Jordy Meow Perfect Images (Manage Image Sizes, Thumbnails, Replace, Retina) versions up to 6.4.5 contain a vulnerability... |
| WordPress Plugin GDPR Cookie Consent - Full Path Disclosure | Low |  | WordPress GDPR Cookie Consent (cookie-law-info) plugin is vulnerable to full path disclosure via direct access to plugin... |
| WordPress Plugin Google Tag Manager - Full Path Disclosure | Low |  | WordPress Plugin Google Tag Manager files are publicly accessible without ABSPATH protection, exposing sensitive server ... |
| WordPress Plugin Imsanity - Full Path Disclosure | Low |  | WordPress Imsanity plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress Plugin InfiniteWP Client - Full Path Disclosure | Low |  | WordPress InfiniteWP Client plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress Plugin Max Mega Menu (megamenu) - Full Path Disclosure | Low |  | WordPress Plugin Max Mega Menu plugin files are publicly accessible without ABSPATH protection, exposing sensitive serve... |
| WordPress Plugin Newsletter - Full Path Disclosure | Low |  | WordPress Plugin Newsletter plugin files are publicly accessible without ABSPATH protection, exposing sensitive server p... |
| WordPress Plugin SG Optimizer - Full Path Disclosure | Low |  | WordPress Plugin SG Optimizer Plugin files are publicly accessible without ABSPATH protection, exposing sensitive server... |
| WordPress Plugin SSL Insecure Content Fixer - Full Path Disclosure | Low |  | WordPress SSL Insecure Content Fixer plugin files are publicly accessible without ABSPATH protection, exposing sensitive... |
| WordPress Plugin Safe SVG - Full Path Disclosure | Low |  | WordPress Safe SVG plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress Plugin Table of Contents Plus - Full Path Disclosure | Low |  | The Table of Contents Plus WordPress plugin is vulnerable to Full Path Disclosure. This vulnerability allows attackers t... |
| WordPress Plugin WP Statistics <= 13.1.5 - SQL Injection | Critical | CVE-2022-25148 | The WP Statistics WordPress plugin is vulnerable to SQL Injection due to insufficient escaping and parameterization of t... |
| WordPress Plugin WP Statistics <= 13.1.5 - SQL Injection | High | CVE-2022-0651 | The WP Statistics WordPress plugin is vulnerable to SQL Injection due to insufficient escaping and parameterization of t... |
| WordPress Plugin WP Statistics <= 13.1.5 - SQL Injection | High | CVE-2022-25149 | The WP Statistics WordPress plugin is vulnerable to SQL Injection due to insufficient escaping and parameterization of t... |
| WordPress Plugin WooCommerce Admin (woocommerce-admin) Full Path Disclosure | Low |  | WordPress Plugin WooCommerce Admin plugin files are publicly accessible without ABSPATH protection, exposing sensitive s... |
| WordPress Plugin iThemes Security - Full Path Disclosure | Low |  | WordPress Plugin iThemes Security files are publicly accessible without ABSPATH protection, exposing sensitive server pa... |
| WordPress Plugin reCaptcha by BestWebSoft (google-captcha) - Full Path Disclosure | Low |  | WordPress ManageWP Worker plugin files are publicly accessible without ABSPATH protection, exposing sensitive server pat... |
| WordPress Pretty Links - Full Path Disclosure | Low |  | WordPress Pretty Links plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress Realtyna Organic IDX Plugin <= 4.14.4 - Unauthenticated SQL Injection | Critical | CVE-2024-32128 | The Realtyna Organic IDX plugin plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 4.... |
| WordPress SEO Plugin Rank Math - Full Path Disclosure | Low |  | WordPress Rank Math SEO plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress SVG Support - Full Path Disclosure | Low |  | The WordPress SVG Support plugin was detected to have publicly accessible PHP files without ABSPATH protection, which ex... |
| WordPress Simple Job Board - Unauthorized Data Access | Medium | CVE-2024-0593 | The Simple Job Board plugin for WordPress is vulnerable to unauthorized data access due to insufficient authorization ch... |
| WordPress Statistics <13.0.8 - Blind SQL Injection | High | CVE-2021-24340 | WordPress Statistic plugin versions prior to version 13.0.8 are affected by an unauthenticated time-based blind SQL inje... |
| WordPress Storefront Theme - Full Path Disclosure | Low |  | The Storefront theme for WordPress was detected to be vulnerable to Full Path Disclosure, allowing unauthenticated attac... |
| WordPress TI WooCommerce Wishlist Plugin <= 2.8.2 - SQL Injection | Critical | CVE-2024-43917 | In the latest version (2.8.2 as of writing the article) and below, the plugin is vulnerable to a SQL injection vulnerabi... |
| WordPress Table of Contents Plus - Full Path Disclosure | Low |  | WordPress Table of Contents Plus plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress The Events Calendar - Full Path Disclosure | Low |  | WordPress The Events Calendar plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress Tourfic Plugin <= 2.11.7 - Cross-Site Scripting | High | CVE-2024-29137 | The Tourfic plugin for WordPress is vulnerable to Reflected Cross-Site Scripting (XSS) in versions up to and including 2... |
| WordPress Ultimate Member 2.1.3 - 2.8.2 – SQL Injection | Critical | CVE-2024-1071 | The Ultimate Member - User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugi... |
| WordPress UpdraftPlus - Full Path Disclosure | Low |  | WordPress Plugin UpdraftPlus files are publicly accessible without ABSPATH protection, exposing sensitive server path in... |
| WordPress User Registration & Membership Plugin Detection | Info |  | Detected WordPress User Registration & Membership plugin and its version information. |
| WordPress Visitor Statistics <=5.7 - SQL Injection | Critical | CVE-2022-33965 | WordPress Visitor Statistics plugin through 5.7 contains multiple unauthenticated SQL injection vulnerabilities. An atta... |
| WordPress W3 Total Cache - Cache Files Exposure | High |  | Detects publicly accessible W3 Total Cache database cache files in the wp-content/w3tc/dbcache/ directory. When database... |
| WordPress WP Clone <= 2.4.2 - Database Backup Exposure | Critical | CVE-2023-6750 | Clone WordPress plugin < 2.4.3 contains a buffer overflow caused by storing in-progress backup information in publicly a... |
| WordPress WP Mail SMTP - Full Path Disclosure | Low |  | WordPress WP Mail SMTP plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress WP Maintenance Mode - Full Path Disclosure | Low |  | WordPress WP Maintenance Mode plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress WP Migrate DB - Full Path Disclosure | Low |  | The WP Migrate DB (WP Migrate Lite - WordPress Migration Made Easy) plugin for WordPress was detected to be vulnerable t... |
| WordPress WP-Advanced-Search <= 3.3.9 - SQL Injection | Critical | CVE-2024-9796 | The WordPress WP-Advanced-Search plugin for WordPress is vulnerable to SQL Injection in all versions up to, and includin... |
| WordPress WP-PageNavi - Full Path Disclosure | Low |  | WordPress WP-PageNavi plugin files are publicly accessible without ABSPATH protection, exposing sensitive server path in... |
| WordPress WPForms - Full Path Disclosure | Low |  | WordPress Plugin WPForms files are publicly accessible without ABSPATH protection, exposing sensitive server path inform... |
| WordPress WPML Multilingual CMS < 4.6.1 - Cross-Site Scripting | High |  | The WPML Multilingual CMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting (XSS) in versions prior t... |
| WordPress Wordfence - Configuration File Disclosure | Medium |  | The Wordfence Security plugin for WordPress stores configuration files in the /wp-content/wflogs/ directory. These files... |
| WordPress Wordfence - Rules File Disclosure | Medium |  | The Wordfence Security plugin for WordPress stores configuration files in the /wp-content/wflogs/ directory. These files... |
| WordPress Wordfence - WAF Logs and Data Disclosure | Low |  | The Wordfence Security plugin creates various log and data files in the wflogs directory. If directory listing is enable... |
| WordPress YITH WooCommerce Wishlist - Full Path Disclosure | Low |  | WordPress YITH WooCommerce Wishlist plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress Yoast SEO - Full Path Disclosure | Low |  | WordPress Yoast SEO plugin is vulnerable to full path disclosure via direct access to plugin files. |
| WordPress wp-links-opml.php - Version Disclosure | Info |  | WordPress wp-links-opml.php file was publicly accessible and expossed the WordPress version in the generator tag. |
| Wordpress Gift Cards <= 4.3.1 - SQL Injection | Critical | CVE-2023-28662 | The Gift Cards (Gift Vouchers and Packages) WordPress Plugin, version <= 4.3.1, is affected by an unauthenticated SQL in... |
| Wordpress Polls Widget < 1.5.3 - SQL Injection | Critical | CVE-2021-24442 | The Poll, Survey, Questionnaire and Voting system WordPress plugin before 1.5.3 did not sanitise, escape or validate the... |
| Wordpress WPMobile.App >= 11.42 - Cross-Site Scripting | High | CVE-2024-35694 | WPMobile.App versions up to 11.41 contain a reflected cross-site scripting (XSS) caused by improper input neutralization... |
| Worpress Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution | Critical | CVE-2023-6553 | The Backup Migration plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1... |
| Wowza Streaming Engine Manager 4.7.4.01 - Directory Traversal | Critical | CVE-2018-19365 | Wowza Streaming Engine 4.7.4.01 allows traversal of the directory structure and retrieval of a file via a remote, specif... |
| Wowza Streaming Engine Manager Panel - Detect | Info |  | Wowza Streaming Engine Manager panel was detected. |
| WpStickyBar <= 2.1.0 - SQL Injection | High | CVE-2024-5765 | The plugin does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action avail... |
| X-UI - Default Login | High |  | X-UI contains default credentials. An attacker can obtain access to user accounts and access sensitive information, modi... |
| XAMPP PHP info Page - Detect | Low |  | XAMPPHPinfo page was detected. The output of the phpinfo() command can reveal sensitive and detailed PHP environment inf... |
| XDS-AMR Status Login Panel - Detect | Info |  | XDS-AMR Status login panel was detected. |
| XNAT - Default Login | High |  | XNAT contains an admin default login vulnerability. An attacker can obtain access to user accounts and access sensitive ... |
| XNAT Login Panel - Detect | Info |  | XNAT login panel was detected. |
| XSpeeder Login - Detect | Info |  | Detects the presence of XSpeeder router login panels. |
| XVR Login Panel - Detect | Info |  | XVR login panel was detected. |
| XWiki - Cross-Site Scripting | Medium | CVE-2023-35158 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able ... |
| XWiki - Cross-Site Scripting | Medium | CVE-2023-35155 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able ... |
| XWiki - HQL Injection | High | CVE-2025-52472 | XWiki is vulnerable to Hibernate Query Language (HQL) injection in the wiki and space search REST API starting in versio... |
| XWiki - Information Disclosure | High | CVE-2025-55749 | XWiki 16.7.0 to 16.10.11, 17.4.4, and 17.7.0 using XJetty contains an information disclosure vulnerability caused by exp... |
| XWiki < 12.10.11, 13.4.4 & 13.9-rc-1 - Information Disclosure | Medium | CVE-2022-24819 | An unauthenticated user can retrieve a list of users and their full names through a publicly accessible URL in XWiki. Th... |
| XWiki < 14.10.14 - Cross-Site Scripting | Medium | CVE-2023-46732 | XWiki is vulnerable to reflected cross-site scripting (RXSS) via the rev parameter that is used in the content of the co... |
| XWiki < 14.10.14 - Cross-Site Scripting | Medium | CVE-2023-45136 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. When document n... |
| XWiki < 14.10.5 - Cross-Site Scripting | Medium | CVE-2023-35162 | XWiki Platform is vulnerable to reflected XSS via the previewactions template. An attacker can inject JavaScript through... |
| XWiki < 4.10.15 - Email Disclosure | Medium | CVE-2023-50720 | The Solr-based search in XWiki discloses the email addresses of users even when obfuscation of email addresses is enable... |
| XWiki < 4.10.15 - Information Disclosure | High | CVE-2023-48241 | The Solr-based search suggestion provider that also duplicates as generic JavaScript API for search results in XWiki exp... |
| XWiki < 4.10.15 - Sensitive Information Disclosure | High | CVE-2023-50719 | XWiki Platform is a generic wiki platform. Starting in 7.2-milestone-2 and prior to versions 14.10.15, 15.5.2, and 15.7-... |
| XWiki < 4.10.20 - Remote code execution | Critical | CVE-2024-31982 | XWiki Platform is a generic wiki platform. Starting in version 2.4-milestone-1 and prior to versions 4.10.20, 15.5.4, an... |
| XWiki >= 13.10.8 - Cross-Site Scripting | Medium | CVE-2023-29506 | Reflected XSS vulnerability in XWiki authenticate endpoints allows execution of arbitrary JavaScript. |
| XWiki >= 2.5-milestone-2 - Cross-Site Scripting | Medium | CVE-2023-35160 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able ... |
| XWiki >= 3.4-milestone-1 - Cross-Site Scripting | Medium | CVE-2023-35159 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able ... |
| XWiki >= 6.0-rc-1 - Cross-Site Scripting | Medium | CVE-2023-35156 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able ... |
| XWiki >= 6.2-milestone-1 - Cross-Site Scripting | Medium | CVE-2023-35161 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able ... |
| XWiki DeleteApplication - Cross-Site Scripting | Medium | CVE-2025-66472 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Versions 6.2-mi... |
| XWiki Platform - Cross-Site Scripting | Medium | CVE-2025-32430 | XWiki Platform versions >= 4.2-milestone-3 and < 16.4.8, >= 16.5.0-rc-1 and < 16.10.6, and >= 17.0.0-rc-1 and < 17.3.0-r... |
| XWiki Platform - Information Disclosure | High | CVE-2025-55747 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In versions 6.1... |
| XWiki Platform - Path Traversal | High | CVE-2025-55748 | XWiki Platform 4.2-milestone-2 through 16.10.6 contains a path traversal caused by improper access control in jsx and sx... |
| XWiki Platform - Remote Code Execution | High | CVE-2023-37462 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Improper escapi... |
| XWiki Platform - Remote Code Execution | Critical | CVE-2025-24893 | Any guest can perform arbitrary remote code execution through a request to SolrSearch. This impacts the confidentiality,... |
| XWiki Platform - SQL Injection | Critical | CVE-2025-32429 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In versions 9.4... |
| XWiki Platform - Unauthorized Document History Access | Medium | CVE-2024-45591 | A vulnerability in XWiki Platform's REST API allows unauthorized users to access document history information. The REST ... |
| XWiki Platform Distribution Flavor Main - Cross-Site Scripting | Medium | CVE-2026-24128 | XWiki Platform Distribution Flavor Main versions prior to 17.6.0 are vulnerable to reflected cross-site scripting (XSS) ... |
| XWiki REST API - Attachments Disclosure | High | CVE-2025-46554 | A vulnerability in XWiki's REST API allows unauthenticated users to access attachments list and metadata through the att... |
| XWiki REST API - Private Pages Disclosure | High | CVE-2025-29925 | A vulnerability in XWiki's REST API allows unauthenticated users to access information about private pages through the p... |
| XWiki REST API Query - SQL Injection | Critical | CVE-2025-32969 | A SQL injection vulnerability exists in XWiki's REST API query endpoint. An unauthenticated attacker can execute arbitra... |
| XWiki XML View - Sensitive Information Exposure | High |  | A vulnerability in XWiki's XML view functionality exposes sensitive information such as passwords and email addresses th... |
| XXL-JOB Default Login | High |  | XXL-JOB default admin credentials were discovered. |
| XXLJOB Admin Login Panel - Detect | Info |  | XXLJOB admin login panel was detected. |
| Xeams Admin Console Login Panel - Detect | Info |  | Xeams Admin Console login panel was detected. |
| Xerox Fuji/VersaLink Login - Panel | Info |  | Xerox Fuji / VersaLink Login Panel was discovered |
| Xfinity Panel - Detect | Info |  | Xfinity panel was detected. |
| Xiaomi Wireless Router Admin Panel - Detect | Info |  | Xiaomi Wireless router admin panel was detected. |
| Xibo CMS Login Panel - Detect | Info |  | Xibo CMS login panel was detected. |
| XploitSPY - Default Login | High |  | Default login and password to access administrator panel |
| Xymon - Exposure | Low |  | Detected the exposure of the Xymon monitoring system interface. |
| YARPP <= 5.30.10 - Missing Authorization | Critical | CVE-2024-43919 | The YARPP Yet Another Related Posts Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing ca... |
| YPAREO Panel - Detect | Info |  | YPAREO was detected — an Enterprise Resource Planning system. |
| Yacht - Default Login | High |  | Yacht is a web interface for managing Docker containers. This template detects instances with default admin credentials ... |
| YeaLink DM 3.6.0.20 - Remote Command Injection | Critical | CVE-2021-27561 | Yealink Device Management (DM) 3.6.0.20 allows command injection as root via the /sm/api/v1/firewall/zone/services URI, ... |
| Yellow Pencil Visual Theme Customizer < 7.2.1 - Privilege Escalation | High | CVE-2019-11886 | The WaspThemes Visual CSS Style Editor (aka yellow-pencil-visual-theme-customizer) plugin before 7.2.1 for WordPress all... |
| Yellowfin Information Collaboration - Detect | Info |  |  |
| YesWiki < 4.5.4 - Cross-Site Scripting | Medium | CVE-2025-46550 | YesWiki < 4.5.4 contains a reflected cross-site scripting caused by unsanitized `idformulaire` parameter in `/?BazaR` en... |
| YesWiki <2022-07-07 - SQL Injection | Critical |  | YesWiki before 2022-07-07 contains a SQL injection vulnerability via the id parameter in the AccueiL URL. An attacker ca... |
| YesWiki Reflected XSS via File Upload | High | CVE-2025-46349 | YesWiki is a wiki system written in PHP. Prior to version 4.5.4, YesWiki is vulnerable to reflected XSS in the file uplo... |
| Yeswiki < 4.5.2 - Unauthenticated Path Traversal | High | CVE-2025-31131 | YesWiki is a wiki system written in PHP. The squelette parameter is vulnerable to path traversal attacks, enabling read ... |
| Yonyou UFIDA ERP-NC V5.0 - Cross-Site Scripting | Medium | CVE-2025-2712 | Yonyou UFIDA ERP-NC V5.0 is vulnerable to reflected cross-site scripting (XSS) via the langcode parameter in /help/systo... |
| Yonyou YonBIP - Path Traversal | High | CVE-2025-66744 | Yonyou YonBIP v3 and before contains a path traversal caused by improper validation in the LoginWithV8 interface of the ... |
| Yopass Panel - Detect | Info |  | Yopass panel was detected. |
| YouPHPTube Encoder 2.3 - Command Injection | Critical | CVE-2019-5129 | Exploitable unauthenticated command injections exist in YouPHPTube Encoder 2.3 a plugin for providing encoder functional... |
| Youzify < 1.2.0 - Unauthenticated SQLi | Critical | CVE-2022-1950 | The Youzify WordPress plugin before 1.2.0 does not sanitise and escape a parameter before using it in a SQL statement vi... |
| YunoHost Admin Panel - Detect | Info |  | YunoHost Admin panel was discovered. |
| YzmCMS Login Panel - Detect | Info |  | YzmCMS login panel was detected. |
| Z-BlogPHP Admin Login Panel - Detect | Info |  | Z-BlogPHP admin login panel was detected. |
| Z-BlogPHP Panel - Detect | Info |  | Z-BlogPHP panel was detected. |
| ZEROF Web Server 2.0 - SQL Injection | Critical | CVE-2022-25322 | ZEROF Web Server 2.0 allows SQL Injection via the /HandleEvent endpoint. Attackers can exploit this vulnerability by man... |
| ZKTeco BioTime <= 9.0.1 - Privilege Escalation | High | CVE-2023-38952 | BioTime default employee credentials (password 123456) allow login. Sessions are not role-validated, enabling privilege ... |
| ZKTeco BioTime v8.5.5 - Path Traversal | High | CVE-2023-38950 | A path traversal vulnerability in the iclock API of ZKTeco BioTime v8.5.5 allows unauthenticated attackers to read arbit... |
| ZOHO ManageEngine ADAudit/ADManager Panel - Detect | Info |  | ZOHO ManageEngine ADAudit/ADManager panel was detected. |
| ZOHO ManageEngine ADSelfService Plus - Detect | Info |  | ZOHO ManageEngine ADSelfService panel was detected. |
| ZOHO ManageEngine APEX IT Help-Desk Panel - Detect | Info |  | ZOHO MangageEngine APEX panel was detected. |
| ZOHO ManageEngine Analytics Plus Panel - Detect | Info |  | ZOHO ManageEngine analytics plus panel was detected. |
| ZOHO ManageEngine AssetExplorer Panel - Detect | Info |  | ZOHO ManageEngine AssetExplorer panel was detected. |
| ZOHO ManageEngine Desktop Panel - Detect | Info |  | ZOHO ManageEngine desktop panel was detected. |
| ZOHO ManageEngine Exchange Reporter Plus Panel - Detect | Info |  | ZOHO ManageEngine Exchange Reporter Plus panel was detected. |
| ZOHO ManageEngine OpManager Panel - Detect | Info |  | ZOHO ManageEngine OpManager panel was detected. |
| ZOHO ManageEngine ServiceDesk Panel - Detect | Info |  | ZOHO ManageEngine ServiceDesk panel was detected. |
| ZOHO ManageEngine SupportCenter Panel - Detect | Info |  | ZOHO ManageEngine SupportCenter panel was detected. |
| ZTE Panel - Detect | Info |  | ZTE panel was detected. ZTE Corporation is a global leader in telecommunications and information technology. Founded in ... |
| ZTE Router Panel - Detect | Critical |  | Multiple ZTE router panels were detected. These routers have a telnet-hardcoded backdoor account that spawns root shell. |
| ZTE ZXHN-F660T/F660A - Default Credentials | High | CVE-2025-53558 | ZXHN-F660T and ZXHN-F660A provided by ZTE Japan K.K. use a common credential for all installations. With the knowledge o... |
| Zabbix - SAML SSO Authentication Bypass | Critical | CVE-2022-23131 | When SAML SSO authentication is enabled (non-default), session data can be modified by a malicious actor because a user ... |
| Zabbix - SQL Injection | Critical | CVE-2016-10134 | Zabbix before 2.2.14 and 3.0 before 3.0.4 allows remote attackers to execute arbitrary SQL commands via the toggle_ids a... |
| Zabbix <=4.4 - Authentication Bypass | Critical | CVE-2019-17382 | Zabbix through 4.4 is susceptible to an authentication bypass vulnerability via zabbix.php?action=dashboard.view&dashboa... |
| Zabbix Default Login | High |  | Zabbix default admin credentials were discovered. |
| Zabbix Login Panel - Detect | Info |  | Zabbix login panel was detected. |
| Zabbix Setup Configuration Authentication Bypass | Medium | CVE-2022-23134 | After the initial setup process, some steps of setup.php file are reachable not only by super-administrators but also by... |
| Zammad Helpdesk Panel - Detect | Info |  | Zammad is an open source helpdesk and customer support system that provides ticket management, live chat, and knowledge ... |
| Zebra - Default Login | High |  | Zebra default login credentials was discovered. |
| ZenML Dashboard Panel - Detect | Info |  |  |
| ZenML ZenML Server - Improper Authentication | Critical | CVE-2024-25723 | ZenML Server in the ZenML machine learning package before 0.46.7 for Python allows remote privilege escalation because t... |
| ZeroShell <= 1.0beta11 Remote Code Execution | Critical | CVE-2009-0545 | ZeroShell 1.0beta11 and earlier via cgi-bin/kerbynet allows remote attackers to execute arbitrary commands through shell... |
| ZeroShell Panel - Detect | Info |  | ZeroShell panel was detected. |
| Zeroshell 3.9.0 - Remote Command Execution | Critical | CVE-2019-12725 | Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue occurs because the web ap... |
| Zeroshell 3.9.3 - Command Injection | Critical | CVE-2020-29390 | Zeroshell 3.9.3 contains a command injection vulnerability in the /cgi-bin/kerbynet StartSessionSubmit parameter that co... |
| ZimaOS - Authentication Bypass | Critical | CVE-2026-21891 | ZimaOS <= 1.5.0 contains a broken authentication caused by improper password validation for known system service account... |
| Zimbra - Cross-Site Scripting via ICS Files | Medium | CVE-2025-27915 | Detects Zimbra Collaboration Suite versions vulnerable to CVE-2025-27915, a stored XSS vulnerability in the Classic Web ... |
| Zimbra Collaboration (ZCS) - Cross Site Scripting | Medium | CVE-2022-27926 | A reflected cross-site scripting (XSS) vulnerability in the /public/launchNewWindow.jsp component of Zimbra Collaboratio... |
| Zimbra Collaboration - Cross-Site Scripting (XSS) | Medium | CVE-2024-27443 | An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. A Cross-Site Scripting (XSS) vulnerability exists in... |
| Zimbra Collaboration - Local File Inclusion | High | CVE-2025-68645 | Zimbra Collaboration (ZCS) 10.0 and 10.1 contain a local file inclusion caused by improper handling of user-supplied par... |
| Zimbra Collaboration - Unrestricted File Upload | Critical | CVE-2022-41352 | An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through ama... |
| Zimbra Collaboration Server 7.2.2/8.0.2 Local File Inclusion | Medium | CVE-2013-7091 | A directory traversal vulnerability in /res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz in Z... |
| Zimbra Collaboration Suite - Memcached Command Injection | High | CVE-2022-27924 | Zimbra Collaboration Suite versions 8.8.15 and 9.0 contain a memcached command injection vulnerability that allows an un... |
| Zimbra Collaboration Suite - SSRF | High | CVE-2019-9621 | Zimbra Collaboration Suite before 8.6 patch 13, 8.7.x before 8.7.11 patch 10, and 8.8.x before 8.8.10 patch 7 or 8.8.x b... |
| Zimbra Collaboration Suite 8.8.15/9.0 - Remote Code Execution | Critical | CVE-2022-37042 | Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP archive and extracts fi... |
| Zimbra Collaboration Suite < 8.8.15 - Improper Encoding | Medium | CVE-2022-24682 | An issue was discovered in the Calendar feature in Zimbra Collaboration Suite 8.8.x before 8.8.15 patch 30 (update 1), a... |
| Zimbra Collaboration Suite Login Panel - Detect | Info |  | Zimbra Collaboration Suite panel was detected. Zimbra Collaboration Suite simplifies the communication environment, conn... |
| Zimbra Panel - Detect | Info |  | Zimbra panel was detected. Zimbra provides open source server and client software for messaging and collaboration. |
| Zipkin Login Panel - Detect | Info |  | Zipkin login panel was detected. |
| Zitadel - User Registration Bypass | High | CVE-2024-49757 | The open-source identity infrastructure software Zitadel allows administrators to disable the user self-registration. Du... |
| Zoho ManageEngine - Access Control Bypass | Critical | CVE-2022-29081 | Zoho ManageEngine Access Manager Plus before 4302, Password Manager Pro before 12007, and PAM360 before 5401 are vulnera... |
| Zoho ManageEngine - Internal Hostname Disclosure | Medium | CVE-2022-23779 | Zoho ManageEngine Desktop Central before 10.1.2137.8 exposes the installed server name to anyone. The internal hostname ... |
| Zoho ManageEngine - Remote Code Execution | Critical | CVE-2022-35405 | Zoho ManageEngine Password Manager Pro, PAM 360, and Access Manager Plus are susceptible to unauthenticated remote code ... |
| Zoho ManageEngine Desktop Central - Remote Code Execution | Critical | CVE-2021-44515 | Zoho ManageEngine Desktop Central contains an authentication bypass vulnerability that could allow an attacker to execut... |
| Zoho ManageEngine Network Configuration Manager Panel - Detect | Info |  | ZOHO ManageEngine Network Configuration Manager was detected. |
| Zoho ManageEngine OpManager - SQL Injection | High | CVE-2018-17283 | Zoho ManageEngine OpManager before 12.3 Build 123196 does not require authentication for /oputilsServlet requests, as de... |
| Zoho ManageEngine OpManager < 12.5.329 - Remote Code Execution | Critical | CVE-2021-3287 | Zoho ManageEngine OpManager before 12.5.329 contains a remote code execution caused by a general bypass in the deseriali... |
| Zoho ManageEngine ServiceDesk Plus - Authentication Bypass | Critical | CVE-2021-37415 | Zoho ManageEngine ServiceDesk Plus before 11302 is vulnerable to authentication bypass that allows a few REST-API URLs w... |
| Zoho ManageEngine ServiceDesk Plus - Remote Code Execution | Critical | CVE-2021-44077 | Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 ... |
| ZoneMinder - SQL Injection | Critical | CVE-2024-43360 | ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder is affected by a time-based... |
| ZoneMinder Login Panel - Detect | Info |  | ZoneMinder panel was detected. |
| Zoraxy Login Panel - Detect | Info |  | Zoraxy products was detected. |
| Zuul Panel - Detect | Info |  | ZUUL panel was detected. |
| ZyXel Router Login Panel - Detect | Info |  | ZyXel Router login panel was detected. |
| ZyXel USG - Hardcoded Credentials | Critical | CVE-2020-29583 | A hardcoded credential vulnerability was identified in the 'zyfwp' user account in some Zyxel firewalls and AP controlle... |
| Zyxel - Authentication Bypass | Critical | CVE-2022-0342 | An authentication bypass vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.20 through 4.70... |
| Zyxel Firewall Panel - Detect | Info |  | Zyxel Firewall panel was detected. |
| Zyxel NAS Firmware 5.21- Remote Code Execution | Critical | CVE-2020-9054 | Multiple Zyxel network-attached storage (NAS) devices running firmware version 5.21 contain a pre-authentication command... |
| Zyxel VMG1312-B10D - Login Detection | Info |  |  |
| Zyxel VSG1432-B101 - Login Detection | Info |  |  |
| Zyxel ZyWall UAG/USG - Account Creation Access | Critical | CVE-2019-12583 | Zyxel UAG, USG, and ZyWall devices allows a remote attacker to generate guest accounts by directly accessing the account... |
| airCube Dashboard Login Panel - Detect | Info |  | airCube Dashboard login panel was detected. |
| airCube Login - Detect | Info |  | airCube login panel was detected. |
| bloofoxCMS - Default Login | High |  | bloofoxCMS contains default credentials. An attacker can obtain access to user accounts and access sensitive information... |
| cPanel API Codes Panel - Detect | Info |  | cPanel API Codes panel was detected. |
| cgit < 1.2.1 - Directory Traversal | High | CVE-2018-14912 | cGit < 1.2.1 via cgit_clone_objects has a directory traversal vulnerability when `enable-http-clone=1` is not turned off... |
| coreBOS Panel - Detect | Info |  | coreBOS panel was detected. |
| dbt Docs Panel - Detect | Info |  | dbt Docs panel was detected. |
| dotAdmin Login Panel- Detect | Info |  | dotAdmin login panel was detected. |
| draw.io Flowchart Maker Panel - Detect | Info |  | draw.io Flowchart Maker panel was detected. |
| eArcu Panel - Detect | Info |  | eArcu was detected. |
| eMerge E3 1.00-06 - Local File Inclusion | High | CVE-2019-7254 | Linear eMerge E3-Series devices are vulnerable to local file inclusion. |
| eMerge E3 1.00-06 - Remote Code Execution | Critical | CVE-2019-7256 | Linear eMerge E3-Series devices are susceptible to remote code execution vulnerabilities. |
| eMessage Login Panel - Detect | Info |  | eMessage login panel was detected. |
| eZ Publish Login Panel - Detect | Info |  | eZ Publish login panel was detected. |
| eyoucms v.1.6.5 - Cross-Site Scripting | Medium | CVE-2024-22927 | Cross Site Scripting (XSS) vulnerability in the func parameter in eyoucms v.1.6.5 allows a remote attacker to run arbitr... |
| iClock Automatic Data Master Server Admin Panel - Detect | Info |  | An iClock Automatic Data Master Server Admin login panel was detected. |
| iSAMS Panel - Detect | Info |  | iSAMS was detected. |
| iSpy 7.2.2.0 - Authentication Bypass | Critical | CVE-2022-29775 | iSpy 7.2.2.0 contains an authentication bypass vulnerability. An attacker can craft a URL and possibly obtain sensitive ... |
| iTop - User Enumeration via REST Endpoint | Medium | CVE-2024-51739 | From the webservices/rest.php file, several operations are accessible from an unauthenticated user. One of them is `do_r... |
| iTop Hub Connector - Information Disclosure | Medium | CVE-2024-32870 | Combodo iTop is a simple, web based IT Service Management tool. Server, OS, DBMS, PHP, and iTop info (name, version and ... |
| iXBus Login Panel - Detect | Info |  | iXBus login panel was detected. |
| idcCMS V1.60 - Cross-Site Scripting | Medium | CVE-2024-11587 | idcCMS V1.60 is vulnerable to reflected cross-site scripting (XSS) via the idName parameter in read.php. Unsanitized use... |
| ipTIME A2004 - Unauthorized Access | Medium | CVE-2024-54763 | An access control issue in the component /login/hostinfo.cgi of ipTIME A2004 v12.17.0 allows attackers to obtain sensiti... |
| ipTIME A2004 - Unauthorized Access | Medium | CVE-2024-54764 | An access control issue exists in the component /login/hostinfo2.cgi of ipTIME A2004 v12.17.0 that allows attackers to o... |
| kkFileView Panel - Detect | Info |  | kkFileView panel was detected. |
| mTheme Unus < 2.3 - Directory Traversal | High | CVE-2015-9406 | The mTheme-Unus theme for WordPress, prior to version 2.3, contained a directory traversal flaw that let attackers acces... |
| macOS Server Panel - Detect | Info |  |  |
| mantisbt - Anonymous Login | Medium |  | mantisbt Anonymous login were discovered. |
| modoboa  2.0.4 - Admin TakeOver | Critical | CVE-2023-0777 | Authentication Bypass by Primary Weakness in GitHub repository modoboa/modoboa prior to 2.0.4. |
| myLittleAdmin Login Panel - Detect | Info |  | myLittleAdmin login panel was detected. |
| myLittleBackup Panel - Detect | Info |  | myLittleBackup panel was detected. |
| n8n Panel - Detect | Info |  | The worlds most popular workflow automation platform for technical teams |
| n8n Webhooks - Remote Code Execution | Critical | CVE-2026-21858 | n8n is an open source workflow automation platform. Versions starting with 1.65.0 and below 1.121.0 enable an attacker t... |
| ngSurvey Login Panel - Detect | Info |  | ngSurvey products was detected. |
| nginxWebUI ≤ 3.5.0 - Remote Command Execution | Critical |  | There is a command execution vulnerability in the nginxWebUI backend. After logging in to the backend, the attacker can ... |
| nginxWebUI ≤ 3.5.0 runCmd - Remote Command Execution | Critical |  | nginxWebUI’s runCmd feature and is caused by incomplete validation of user input. Attackers can exploit the vulnerabil... |
| noVNC Login Panel - Detect | Info |  | noVNC login panel was detected. |
| nostromo 1.9.6 - Remote Code Execution | Critical | CVE-2019-16278 | nostromo nhttpd through 1.9.6 allows an attacker to achieve remote code execution via  directory traversal in the functi... |
| ntopng - Default Login | High |  | Detected the ntopng network traffic monitoring tool was found to be using default credentials (admin:admin). An attacker... |
| openSIS Classic v9.1 - SQL Injection | Critical | CVE-2024-51211 | SQL injection vulnerability exists in OS4ED openSIS-Classic Version 9.1, specifically in the resetuserinfo.php file. The... |
| openSIS v9.0 - Path Traversal | High | CVE-2023-38879 | A path traversal vulnerability exists in openSIS Classic Community Edition v9.0 via the 'filename' parameter in Download... |
| osTicket Installer Panel - Detect | Critical |  | osTicket installer panel was detected. |
| osTicket Login Panel - Detect | Info |  | osTicket login panel was detected. |
| ownCloud Guests - User Enumeration | Medium | CVE-2025-59716 | ownCloud Guests before 0.12.5 contains an unauthenticated user enumeration vulnerability caused by insufficient validati... |
| pCOWeb - Default-Login | High |  |  |
| pCOWeb Panel - Detect | Info |  |  |
| pREST < 1.5.4 - SQL Injection Via Authentication Bypass | Critical |  | An authentication bypass vulnerability was introduced by changing the JWT whitelist configuration to use a regex pattern... |
| pfSense - Default Admin Credentials | High |  | Detected pfSense firewall was found using default administrator credentials (admin:pfsense). An attacker could have gain... |
| pfSense Login Panel - Detect | Info |  | pfSense login panel was detected. |
| pgAdmin < 6.17 - Unauthenticated Remote Code Execution | Critical | CVE-2022-4223 | pgAdmin prior to 6.17 contains an insecure HTTP API caused by improper access control, letting unauthenticated users exe... |
| phpCollab Login Panel - Detect | Info |  | phpCollab login panel was detected. |
| phpLDAPadmin <= 1.2.3 - Reflected XSS | Medium | CVE-2017-11107 | phpLDAPadmin <= 1.2.3 contains a reflected cross-site scripting caused by unsanitized input in htdocs/entry_chooser.php ... |
| phpMiniAdmin Login Panel - Detect | Info |  | phpMiniAdmin login panel was detected. |
| phpMyAdmin - Default Login | High |  | phpMyAdmin contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive i... |
| phpMyAdmin - Full Path Disclosure | Low |  | Detected potential Full Path Disclosure (FPD) via directly accessible phpMyAdmin files that may throw PHP errors reveali... |
| phpMyAdmin Panel - Detect | Info |  | phpMyAdmin panel was detected. |
| phpMyFAQ - Configuration Backup Disclosure | High | CVE-2025-69200 | phpMyFAQ <= 4.0.16 contains an information disclosure vulnerability caused by unauthenticated access to configuration ba... |
| phpPgAdmin Login Panel - Detect | Info |  | phpPgAdmin login ipanel was detected. |
| playSMS <1.4.3 - Remote Code Execution | Critical | CVE-2020-8644 | PlaySMS before version 1.4.3 is susceptible to remote code execution because it double processes a server-side template. |
| pyLoad Flask Config - Access Control | High | CVE-2024-21644 | pyLoad is the free and open-source Download Manager written in pure Python. Any unauthenticated user can browse to a spe... |
| qBittorrent Web UI Panel - Detect | Info |  |  |
| qdPM 9.2 - Directory Traversal | High | CVE-2023-45855 | qdPM 9.2 allows Directory Traversal to list files and directories by navigating to the /uploads URI. |
| qdPM Login Panel | Info |  |  |
| rConfig - Default Login | High |  | rConfig contains default credentials. An attacker can obtain access to user accounts and access sensitive information, m... |
| rConfig 3.9 - SQL Injection | Critical | CVE-2020-10220 | An issue was discovered in rConfig through 3.9.4. The web interface is prone to a SQL injection via the commands.inc.php... |
| rConfig 3.9.4 - SQL Injection | Critical | CVE-2020-10547 | rConfig 3.9.4 and previous versions has unauthenticated compliancepolicyelements.inc.php SQL injection. Because nodes' p... |
| rConfig 3.9.4 - SQL Injection | Critical | CVE-2020-10546 | rConfig 3.9.4 and previous versions have unauthenticated compliancepolicies.inc.php SQL injection. Because nodes' passwo... |
| rConfig 3.9.4 - SQL Injection | Critical | CVE-2020-10548 | rConfig 3.9.4 and previous versions have unauthenticated devices.inc.php SQL injection. Because nodes' passwords are sto... |
| rConfig <=3.9.4 - SQL Injection | Critical | CVE-2020-10549 | rConfig 3.9.4 and prior has unauthenticated snippets.inc.php SQL injection. Because nodes' passwords are stored in clear... |
| temBoard Panel - Detect | Info |  | temBoard was detected — a powerful management tool for PostgreSQL. |
| tshirtecommerce PrestaShop Module - SQL Injection | High | CVE-2023-27638 | The tshirtecommerce module for PrestaShop is vulnerable to unauthenticated SQL injection via the tshirtecommerce_design_... |
| txAdmin Panel - Detect | Info |  | txAdmin panel was discovered. |
| vBulletin 5.0.0-5.5.4 - Remote Command Execution | Critical | CVE-2019-16759 | vBulletin 5.0.0 through 5.5.4 is susceptible to a remote command execution vulnerability via the widgetConfig parameter ... |
| vBulletin 5.5.4 - 5.6.2- Remote Command Execution | Critical | CVE-2020-17496 | vBulletin versions 5.5.4 through 5.6.2 allow remote command execution via crafted subWidgets data in an ajax/render/widg... |
| vBulletin <= 4.2.3 - SQL Injection | Critical | CVE-2016-6195 | vBulletin versions 3.6.0 through 4.2.3 are vulnerable to an SQL injection vulnerability in the vBulletin core forumrunne... |
| vBulletin <= 5.6.9 - Pre-authentication Remote Code Execution | Critical | CVE-2023-25135 | vBulletin before 5.6.9 PL1 allows an unauthenticated remote attacker to execute arbitrary code via a crafted HTTP reques... |
| vBulletin SQL Injection | Critical | CVE-2020-12720 | vBulletin before 5.5.6pl1, 5.6.0 before 5.6.0pl1, and 5.6.1 before 5.6.1pl1 has incorrect access control that permits SQ... |
| vCenter Server - Improper Access Control | Medium | CVE-2021-22017 | Rhttproxy as used in vCenter Server contains a vulnerability due to improper implementation of URI normalization. A mali... |
| vRealize Hyperic Login Panel - Detect | Info |  | vRealize Hyperic login panel was detected |
| vRealize Log Insight - Panel Detect | Info |  | Detect vRealize Log Insight login panel was detected. |
| webp_server_go 0.4.0 - Path Traversal | High | CVE-2021-46104 | webp_server_go 0.4.0 contains a path traversal caused by insufficient sanitization in file handling, letting attackers r... |
| wpDiscuz <= 5.3.5 - SQL Injection | Critical | CVE-2020-13640 | A SQL injection issue in the gVectors wpDiscuz plugin 5.3.5 and earlier for WordPress allows remote attackers to execute... |
| x-amz-meta-s3cmd-attrs Header Username Disclosure | Low |  | Detected exposure of the x-amz-meta-s3cmd-attrs header in S3 objects, which can disclose sensitive information including... |
| zhttpd - Local File Inclusion | High |  | zhttpd is vulnerable to unauthenticated local inclusion including privileged files such as /etc/shadow. An attacker can ... |
| Р7-Office 12.5 - Cross-Site Scripting | Medium |  | A failure to implement proper measures to protect the structure of the web page in the P7-Office corporate server could ... |



In addition to [query-based](em-queries.md) vulnerability reporting, runZero natively detects exposures using an embedded version of the open-source [Nuclei](https://github.com/projectdiscovery/nuclei) vulnerability scanner and it's YAML-based vulnerability check templates. To maintain fast scan times and minimize network disruption, runZero dynamically selects appropriate templates based on the scan's configured categories and precise asset and service fingerprinting.