OWASP 2013-A5 Web Vulnerability & Security Checks | Invicti

Home / Vulnerabilities / OWASP 2013-A5 / Page 38

Select Category

Search Vulnerability

Vulnerability Name

Classifications

Severity

WordPress Theme Twenty Twenty-One Version Disclosure

CAPEC-170, CWE-205, HIPAA-164.306(a), 164.308(a), ISO27001-A.18.1.3, WASC-13, OWASP 2013-A5, OWASP 2017-A6

Low

WordPress Theme Twenty Twenty-Two Version Disclosure

CAPEC-170, CWE-205, HIPAA-164.306(a), 164.308(a), ISO27001-A.18.1.3, WASC-13, OWASP 2013-A5, OWASP 2017-A6

Low

WordPress Theme YITH Wonder Version Disclosure

CAPEC-170, CWE-205, HIPAA-164.306(a), 164.308(a), ISO27001-A.18.1.3, WASC-13, OWASP 2013-A5, OWASP 2017-A6

Low

.htaccess File Detected

CWE-285, OWASP 2013-A5, OWASP 2017-A6, CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Information

ASP.NET Debugging Enabled

CWE-16, ISO27001-A.9.4.1, WASC-14, OWASP 2013-A5, OWASP 2017-A6

Information

Autocomplete Enabled (Password Field)

CWE-16, ISO27001-A.14.1.2, WASC-15, OWASP 2013-A5, OWASP 2017-A6, CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Information

Content Security Policy (CSP) Keywords Not Used Within Single Quotes

CWE-16, ISO27001-A.14.2.5, WASC-15, OWASP 2013-A5, OWASP 2017-A6

Information

Content Security Policy (CSP) Nonce Value Not Used Within Single Quotes

CWE-16, ISO27001-A.14.2.5, WASC-15, OWASP 2013-A5, OWASP 2017-A6

Information

Content Security Policy (CSP) Nonce Without Matching Script Block

CWE-16, ISO27001-A.14.2.5, WASC-15, OWASP 2013-A5, OWASP 2017-A6

Information

Content-Security-Policy-Report-Only Cannot Be Declared Between META Tags

CWE-16, ISO27001-A.14.2.5, WASC-15, OWASP 2013-A5, OWASP 2017-A6

Information

Content-Security-Policy-Report-Only Cannot Be Declared Without report-uri Directive

CWE-16, ISO27001-A.14.2.5, WASC-15, OWASP 2013-A5, OWASP 2017-A6

Information

Database Connection String Detected

CWE-16, HIPAA-164.306(a), ISO27001-A.18.1.3, WASC-15, OWASP 2013-A5, OWASP 2017-A3, CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Information

Build your resistance to threats. And save hundreds of hours each month.

Get a demo See how it works