Information Leakage Email Address Disclosure-561539 info 9.0 info open 1605639965 Vulnerability Scan Out-of-date Version (PHP)-394271 info 9.0 info open 1605639965 Information Leakage Version Disclosure (PHP)-983336 low 9.0 low open 1605639965 Vulnerability Scan Out-of-date Version (Nginx)-942570 info 9.0 info open 1605639965 Information Leakage Version Disclosure (Nginx)-599551 low 9.0 low open 1605639965 Information Leakage Nginx Web Server Identified-863349 info 9.0 info open 1605639965 Clickjacking Missing X-Frame-Options Header-459322 low 9.0 low open 1605639965 Other Application Attacks Missing X-XSS-Protection Header-454579 info 9.0 info open 1605639965 Other Application Attacks Content Security Policy (CSP) Not Implemented-213226 info 10.0 info open 1605639965 Other Application Attacks Referrer-Policy Not Implemented-254557 info 9.0 info open 1605639965 Directory Indexing Directory Listing (Nginx)-914633 info 9.0 info open 1605639965 Information Leakage Open Policy Crossdomain.xml Detected-894990 medium 10.0 medium open 1605639965 Other Application Attacks [Possible] Phishing by Navigating Browser Tabs-981379 low 10.0 low open 1605639965 Cross-site Request Forgery [Possible] Cross-site Request Forgery-268153 low 9.0 low open 1605639965 Abuse of Functionality Forbidden Resource-414912 info 10.0 info open 1605639965 Autocomplete not disabled on login form Autocomplete Enabled (Password Field)-158227 info 10.0 info open 1605639965 Logins sent over unencrypted Password Transmitted over HTTP-187548 high 10.0 high open 1605639965 Cross-site Request Forgery [Possible] Cross-site Request Forgery in Login Form-755098 low 9.0 low open 1605639965 Set-Cookie does not use HTTPOnly keyword Cookie Not Marked as HttpOnly-291172 low 10.0 low open 1605639965 Other Application Attacks SameSite Cookie Not Implemented-234168 info 10.0 info open 1605639965 Other Application Attacks Unexpected Redirect Response Body (Too Large)-784355 info 7.0 info open 1605639965 Information Leakage [Possible] SQL File Detected-910385 info 4.0 info open 1605639965 Other Application Attacks Frame Injection-174125 medium 10.0 medium open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-359627 high 10.0 high open 1605639965 SQL-Injection [Probable] SQL Injection-182240 critical 7.0 critical open 1605639965 Information Leakage Database Error Message Disclosure-374522 low 6.0 low open 1605639965 Information Leakage Database Detected (MySQL)-886686 info 10.0 info open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-422699 high 10.0 high open 1605639965 Vulnerability Scan Out-of-date Version (MySQL)-556589 high 10.0 high open 1605639965 Other Application Attacks Frame Injection-175768 medium 10.0 medium open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-773433 high 10.0 high open 1605639965 Other Application Attacks Frame Injection-824989 medium 10.0 medium open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-770232 high 10.0 high open 1605639965 Other Application Attacks Frame Injection-997645 medium 10.0 medium open 1605639965 Cross Site Scripting (XSS) [Possible] Cross-site Scripting-170679 medium 7.0 medium open 1605639965 Information Leakage [Possible] Internal Path Disclosure (*nix)-254085 info 6.0 info open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting via Remote File Inclusion-679765 high 7.0 high open 1605639965 Information Leakage [Possible] Source Code Disclosure (PHP)-238708 medium 7.0 medium open 1605639965 Other Application Attacks Frame Injection-519259 medium 7.0 medium open 1605639965 Path Traversal Local File Inclusion-167159 high 10.0 high open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-880835 high 10.0 high open 1605639965 SQL-Injection [Probable] SQL Injection-979935 critical 7.0 critical open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-650329 high 10.0 high open 1605639965 Other Application Attacks Frame Injection-842350 medium 10.0 medium open 1605639965 Information Leakage Information Disclosure (phpinfo())-502429 low 10.0 low open 1605639965 Information Leakage [Possible] Internal IP Address Disclosure-366853 low 5.0 low open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-481447 high 10.0 high open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-730801 high 10.0 high open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-460720 high 10.0 high open 1605639965 SQL-Injection [Probable] SQL Injection-726232 critical 7.0 critical open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-412875 high 10.0 high open 1605639965 Other Application Attacks Frame Injection-323144 medium 10.0 medium open 1605639965 Other Application Attacks Frame Injection-465501 medium 10.0 medium open 1605639965 Other Application Attacks Frame Injection-952649 medium 10.0 medium open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-981808 high 10.0 high open 1605639965 Other Application Attacks Frame Injection-651152 medium 10.0 medium open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-320145 high 10.0 high open 1605639965 Other Application Attacks Frame Injection-723709 medium 10.0 medium open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-860330 high 10.0 high open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-325029 high 10.0 high open 1605639965 Other Application Attacks Frame Injection-976661 medium 10.0 medium open 1605639965 Other Application Attacks [Possible] Insecure Reflected Content-136623 low 5.0 low open 1605639965 Other Application Attacks Frame Injection-897989 medium 10.0 medium open 1605639965 Other Application Attacks Frame Injection-137457 medium 10.0 medium open 1605639965 Other Application Attacks Frame Injection-481123 medium 10.0 medium open 1605639965 Cross Site Scripting (XSS) Cross-site Scripting-189644 high 10.0 high open 1605639965 SQL-Injection Boolean Based SQL Injection-224758 critical 10.0 critical open 1605639965 SQL-Injection SQL Injection-983732 critical 10.0 critical open 1605639965 SQL-Injection Boolean Based SQL Injection-197474 critical 10.0 critical open 1605639965 SQL-Injection Boolean Based SQL Injection-260827 critical 10.0 critical open 1605639965 SQL-Injection SQL Injection-478460 critical 10.0 critical open 1605639965 SQL-Injection Boolean Based SQL Injection-948838 critical 10.0 critical open 1605639965 SQL-Injection SQL Injection-335839 critical 10.0 critical open 1605639965