113168 | 偵測到 Docker Compose 設定 | Web App Scanning | Data Exposure | 2024/7/5 | medium |
112697 | JSON Web Token 弱式密碼 | Web App Scanning | Web Applications | 2024/7/1 | high |
98112 | 跨網站要求偽造 | Web App Scanning | Cross Site Request Forgery | 2024/6/26 | medium |
112544 | 未啟用 HTTP 到 HTTPS 重新導向 | Web App Scanning | SSL/TLS | 2024/6/14 | medium |
98095 | .htaccess 檔案的 LIMIT 指示詞中的設定錯誤 | Web App Scanning | Web Servers | 2024/6/10 | medium |
113211 | HTTP 動詞竄改 | Web App Scanning | Web Applications | 2024/6/10 | medium |
98008 | Web Application Firewall Detected | Web App Scanning | General | 2024/6/5 | info |
113337 | NoSQL 插入驗證繞過 | Web App Scanning | Injection | 2024/6/5 | high |
113162 | MySQLjs SQL 插入驗證繞過 | Web App Scanning | Injection | 2024/6/5 | high |
114276 | 資料庫連線字串洩漏 | Web App Scanning | Data Exposure | 2024/5/31 | high |
113136 | Wordpress 管理面板登入表單遭到暴力密碼破解 | Web App Scanning | Authentication & Session | 2024/5/31 | high |
114281 | F5 BIG-IP Next Central Manager SQL 插入攻擊 | Web App Scanning | Component Vulnerability | 2024/5/27 | high |
114108 | Strapi < 4.8.0 私密欄位敏感資訊洩漏 | Web App Scanning | Component Vulnerability | 2024/5/27 | medium |
114041 | Strapi Cognito 提供者驗證繞過 | Web App Scanning | Component Vulnerability | 2024/5/27 | high |
112570 | OpenAPI 匯入失敗 | Web App Scanning | General | 2024/5/27 | info |
112569 | OpenAPI 匯入成功 | Web App Scanning | General | 2024/5/27 | info |
98068 | 不安全的跨網域原則 (allow-http-request-headers-from) | Web App Scanning | Web Applications | 2024/5/21 | low |
98067 | 不安全的跨網域原則 (allow-access-from) | Web App Scanning | Web Applications | 2024/5/21 | low |
113452 | 偵測到 WordPress 外掛程式 | Web App Scanning | Web Applications | 2024/5/21 | info |
113078 | AngularJS 不支援的版本 | Web App Scanning | Component Vulnerability | 2024/5/21 | high |
98119 | 盲目式 NoSQL 插入 (差異分析) | Web App Scanning | Injection | 2024/5/16 | high |
98117 | 盲目式 SQL 插入 (差異分析) | Web App Scanning | Injection | 2024/5/16 | high |
98107 | 路徑中的跨網站指令碼 (XSS) 弱點 | Web App Scanning | Cross Site Scripting | 2024/5/16 | medium |
114237 | 開放 Proxy | Web App Scanning | Web Applications | 2024/5/16 | high |
114006 | Web 快取毒害拒絕服務 | Web App Scanning | Web Applications | 2024/5/16 | high |
113165 | Apache mod_negotiation 替代檔案名稱洩漏 | Web App Scanning | Web Servers | 2024/5/16 | medium |
98136 | 目標資訊 | Web App Scanning | General | 2024/4/26 | info |
113310 | 盲目式 XPath 插入 (差異分析) | Web App Scanning | Injection | 2024/4/26 | high |
114273 | CrushFTP < 10.7.1/11.x < 11.1.0 VFS 沙箱逸出 | Web App Scanning | Component Vulnerability | 2024/4/24 | critical |
98715 | 偵測到寬鬆的 HTTP 嚴格傳輸安全性原則 | Web App Scanning | HTTP Security Header | 2024/4/22 | medium |
112554 | 偵測到寬鬆的內容安全性原則 | Web App Scanning | HTTP Security Header | 2024/4/22 | low |
112552 | 過時的內容安全性原則 | Web App Scanning | HTTP Security Header | 2024/4/22 | low |
98142 | Selenium 驗證失敗 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
98141 | Selenium 驗證成功 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
98140 | Cookie 驗證失敗 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
98139 | Cookie 驗證成功 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
98035 | 登入表單驗證成功 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
98034 | 登入表單驗證失敗 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
114247 | 在未經驗證的瀏覽器中發現驗證檢查模式 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
113013 | 持有人權杖驗證失敗 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
113012 | 持有人權杖驗證成功 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
113011 | API 金鑰驗證失敗 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
113010 | API 金鑰驗證成功 | Web App Scanning | Authentication & Session | 2024/4/9 | info |
114134 | HTML/CSS 插入 | Web App Scanning | Injection | 2024/4/3 | medium |
98642 | 偵測到 Magento 管理面板登入表單 | Web App Scanning | Web Applications | 2024/4/2 | low |
114043 | Adobe ColdFusion 不當存取控制 | Web App Scanning | Component Vulnerability | 2024/4/2 | high |
113117 | Magento 管理面板登入表單遭到暴力密碼破解 | Web App Scanning | Authentication & Session | 2024/4/2 | high |
98648 | 遺漏「Content-Type」標頭 | Web App Scanning | HTTP Security Header | 2024/3/25 | low |
98618 | HTTP 標頭資訊洩漏 | Web App Scanning | HTTP Security Header | 2024/3/25 | low |
98527 | 遺漏參照位址原則 | Web App Scanning | HTTP Security Header | 2024/3/25 | info |