@zerothreatai/vulnerability-registry 4.0.0 → 6.0.0

package/src/categories/sensitive-paths.ts

@@ -13,7 +13,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     // CRITICAL - CREDENTIAL EXPOSURE
     // ========================================
     [VulnerabilityCode.SENS_CRIT_AWS_CREDENTIALS]: {
-        id: 88,
+        id: 500,
         code: VulnerabilityCode.SENS_CRIT_AWS_CREDENTIALS,
         title: 'AWS Credentials Exposed',
         description: 'AWS credentials file (.aws/credentials) is publicly accessible containing AWS Access Key ID and Secret Access Key, enabling complete access to AWS services including S3 buckets, EC2 instances, RDS databases, and all cloud resources associated with the compromised account.',
@@ -37,7 +37,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_CRIT_SSH_PRIVATE_KEY]: {
-        id: 89,
+        id: 501,
         code: VulnerabilityCode.SENS_CRIT_SSH_PRIVATE_KEY,
         title: 'SSH Private Key Exposed',
         description: 'SSH private key file (id_rsa, id_ed25519) is publicly accessible, allowing attackers to authenticate to any system where the corresponding public key is authorized, potentially including production servers, databases, and version control systems.',
@@ -60,7 +60,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_CRIT_SSL_PRIVATE_KEY]: {
-        id: 90,
+        id: 502,
         code: VulnerabilityCode.SENS_CRIT_SSL_PRIVATE_KEY,
         title: 'SSL/TLS Private Key Exposed',
         description: 'SSL/TLS private key file is publicly accessible, enabling attackers to decrypt all HTTPS traffic, perform man-in-the-middle attacks, and impersonate the server for phishing or credential theft operations against legitimate users.',
@@ -83,7 +83,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_CRIT_RAILS_MASTER_KEY]: {
-        id: 91,
+        id: 503,
         code: VulnerabilityCode.SENS_CRIT_RAILS_MASTER_KEY,
         title: 'Rails Master Key Exposed',
         description: 'Rails master.key file is publicly accessible, allowing decryption of all Rails encrypted credentials including database passwords, API keys, and session secrets, enabling complete application compromise and access to all encrypted secrets.',
@@ -106,7 +106,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_CRIT_TERRAFORM_STATE]: {
-        id: 92,
+        id: 504,
         code: VulnerabilityCode.SENS_CRIT_TERRAFORM_STATE,
         title: 'Terraform State File Exposed',
         description: 'Terraform state file (tfstate) is publicly accessible containing complete infrastructure configuration, resource IDs, IP addresses, and potentially sensitive outputs including database passwords and API keys stored in plain text.',
@@ -129,7 +129,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_CRIT_KUBE_CONFIG]: {
-        id: 93,
+        id: 505,
         code: VulnerabilityCode.SENS_CRIT_KUBE_CONFIG,
         title: 'Kubernetes Config Exposed',
         description: 'Kubernetes kubeconfig file is publicly accessible containing cluster credentials, certificates, and tokens that allow full administrative access to Kubernetes clusters including ability to deploy, modify, and delete all workloads.',
@@ -152,7 +152,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_CRIT_VAULT_SECRET]: {
-        id: 94,
+        id: 506,
         code: VulnerabilityCode.SENS_CRIT_VAULT_SECRET,
         title: 'HashiCorp Vault Secret Exposed',
         description: 'HashiCorp Vault secrets or root token exposed, providing access to the centralized secrets management system and all secrets stored within, potentially compromising hundreds of application credentials and encryption keys.',
@@ -178,7 +178,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     // HIGH - SOURCE CODE & CONFIG EXPOSURE
     // ========================================
     [VulnerabilityCode.SENS_HIGH_GIT_EXPOSED]: {
-        id: 95,
+        id: 507,
         code: VulnerabilityCode.SENS_HIGH_GIT_EXPOSED,
         title: 'Git Repository Exposed',
         description: 'Git repository metadata (.git/HEAD, .git/config) is publicly accessible, allowing attackers to download the complete repository including all source code, commit history, configuration files, and potentially credentials committed accidentally.',
@@ -201,7 +201,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_ENV_FILE]: {
-        id: 96,
+        id: 508,
         code: VulnerabilityCode.SENS_HIGH_ENV_FILE,
         title: 'Environment File Exposed',
         description: 'Environment configuration file (.env, .env.local, .env.production) is publicly accessible containing application secrets, database credentials, API keys, and other sensitive configuration that should never be exposed to end users.',
@@ -224,7 +224,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_WORDPRESS_CONFIG]: {
-        id: 97,
+        id: 509,
         code: VulnerabilityCode.SENS_HIGH_WORDPRESS_CONFIG,
         title: 'WordPress Configuration File Exposed',
         description: 'WordPress wp-config.php file is accessible and readable, exposing database credentials, authentication keys, salts, table prefix, and debug settings that allow complete compromise of the WordPress installation and underlying database.',
@@ -247,7 +247,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_SPRING_ACTUATOR]: {
-        id: 98,
+        id: 510,
         code: VulnerabilityCode.SENS_HIGH_SPRING_ACTUATOR,
         title: 'Spring Boot Actuator Endpoints Exposed',
         description: 'Spring Boot Actuator management endpoints are publicly accessible without authentication, exposing application internals including environment variables, configuration properties, health status, thread dumps, and potentially enabling remote code execution through certain endpoints.',
@@ -271,7 +271,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_SPRING_HEAPDUMP]: {
-        id: 99,
+        id: 511,
         code: VulnerabilityCode.SENS_HIGH_SPRING_HEAPDUMP,
         title: 'Spring Boot Heapdump Exposed',
         description: 'Spring Boot Actuator heapdump endpoint is accessible allowing download of JVM heap memory containing sensitive runtime data including session tokens, passwords, encryption keys, personal data, and other secrets temporarily held in application memory.',
@@ -294,7 +294,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_PHPINFO]: {
-        id: 100,
+        id: 512,
         code: VulnerabilityCode.SENS_HIGH_PHPINFO,
         title: 'PHP Info Page Exposed',
         description: 'PHP info page (phpinfo.php) is publicly accessible revealing complete server configuration including PHP version, loaded modules, environment variables, system paths, and potentially database connection strings that aid attackers in planning targeted attacks.',
@@ -317,7 +317,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_LARAVEL_DEBUG]: {
-        id: 101,
+        id: 513,
         code: VulnerabilityCode.SENS_HIGH_LARAVEL_DEBUG,
         title: 'Laravel Debug Mode Enabled',
         description: 'Laravel application is running with debug mode enabled in production, exposing detailed stack traces, database queries, environment variables, and potentially the APP_KEY which can be used to decrypt session data and forge authenticated sessions.',
@@ -340,7 +340,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_GRAPHQL_INTROSPECTION]: {
-        id: 102,
+        id: 514,
         code: VulnerabilityCode.SENS_HIGH_GRAPHQL_INTROSPECTION,
         title: 'GraphQL Introspection Enabled',
         description: 'GraphQL API has introspection enabled in production, allowing attackers to query the complete schema including all types, queries, mutations, and fields, which reveals the entire API structure and aids in discovering sensitive operations and data access points.',
@@ -363,7 +363,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_DATABASE_BACKUP]: {
-        id: 103,
+        id: 515,
         code: VulnerabilityCode.SENS_HIGH_DATABASE_BACKUP,
         title: 'Database Backup File Exposed',
         description: 'Database backup or dump file (.sql, .dump, .bak) is publicly accessible containing complete database contents including user credentials, personal information, business data, and all other stored information enabling massive data breach.',
@@ -389,7 +389,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     // MEDIUM - API & SERVICE EXPOSURE
     // ========================================
     [VulnerabilityCode.SENS_MED_SWAGGER_DOCS]: {
-        id: 104,
+        id: 516,
         code: VulnerabilityCode.SENS_MED_SWAGGER_DOCS,
         title: 'Swagger/OpenAPI Documentation Exposed',
         description: 'API documentation (swagger.json, openapi.yaml) is publicly accessible revealing complete API structure including all endpoints, parameters, authentication methods, and data models which aids attackers in understanding and exploiting the API systematically.',
@@ -412,7 +412,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_PROMETHEUS_METRICS]: {
-        id: 105,
+        id: 517,
         code: VulnerabilityCode.SENS_MED_PROMETHEUS_METRICS,
         title: 'Prometheus Metrics Endpoint Exposed',
         description: 'Prometheus metrics endpoint (/metrics) is publicly accessible exposing application performance data, error rates, request patterns, resource usage, and potentially business metrics that reveal internal operations and aid in planning attacks.',
@@ -435,7 +435,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_ADMIN_PANEL]: {
-        id: 106,
+        id: 518,
         code: VulnerabilityCode.SENS_MED_ADMIN_PANEL,
         title: 'Admin Panel Publicly Accessible',
         description: 'Administrative interface is accessible from the public internet without IP restrictions, enabling brute force attacks against admin credentials and exposing sensitive management functionality that should be restricted to internal networks only.',
@@ -458,7 +458,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_SOURCE_MAP]: {
-        id: 107,
+        id: 519,
         code: VulnerabilityCode.SENS_MED_SOURCE_MAP,
         title: 'JavaScript Source Maps Exposed',
         description: 'JavaScript source map files (.js.map) are publicly accessible allowing attackers to view original unminified source code including comments, variable names, internal logic, and potentially security-sensitive implementation details.',
@@ -483,7 +483,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     // EXTENDED SENSITIVE PATH EXPOSURES
     // ========================================
     [VulnerabilityCode.SENS_MED_UN_PROTECTED_CONFIG_JSON]: {
-        id: 203,
+        id: 520,
         code: VulnerabilityCode.SENS_MED_UN_PROTECTED_CONFIG_JSON,
         title: 'Un Protected Config JSON',
         description: 'The application exposes un protected config json in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -506,7 +506,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_WEB_SERVER_CONFIGURATION_FILE_DETECTED]: {
-        id: 109,
+        id: 521,
         code: VulnerabilityCode.SENS_HIGH_WEB_SERVER_CONFIGURATION_FILE_DETECTED,
         title: 'Web Server Configuration File Detected',
         description: 'The application exposes web server configuration file detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -529,7 +529,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_APPSETTINGS_JSON_EXPOSED]: {
-        id: 110,
+        id: 522,
         code: VulnerabilityCode.SENS_HIGH_APPSETTINGS_JSON_EXPOSED,
         title: 'Appsettings JSON Exposed',
         description: 'The application exposes appsettings json exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -552,7 +552,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_SPRING_CONFIG_EXPOSED]: {
-        id: 111,
+        id: 523,
         code: VulnerabilityCode.SENS_HIGH_SPRING_CONFIG_EXPOSED,
         title: 'Spring Config Exposed',
         description: 'The application exposes spring config exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -575,7 +575,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_NPMRC_EXPOSED]: {
-        id: 112,
+        id: 524,
         code: VulnerabilityCode.SENS_HIGH_NPMRC_EXPOSED,
         title: 'Npmrc Exposed',
         description: 'The application exposes npmrc exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -598,7 +598,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_TOML_PROJECT_FILE_EXPOSED]: {
-        id: 113,
+        id: 525,
         code: VulnerabilityCode.SENS_LOW_TOML_PROJECT_FILE_EXPOSED,
         title: 'TOML Project File Exposed',
         description: 'The application exposes toml project file exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -621,7 +621,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_RAILS_DATABASE_YML_EXPOSED]: {
-        id: 114,
+        id: 526,
         code: VulnerabilityCode.SENS_HIGH_RAILS_DATABASE_YML_EXPOSED,
         title: 'Rails Database YML Exposed',
         description: 'The application exposes rails database yml exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -644,7 +644,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_DRUPAL_SETTINGS_PHP_EXPOSED]: {
-        id: 115,
+        id: 527,
         code: VulnerabilityCode.SENS_HIGH_DRUPAL_SETTINGS_PHP_EXPOSED,
         title: 'Drupal Settings PHP Exposed',
         description: 'The application exposes drupal settings php exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -667,7 +667,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_MAGENTO_ENV_PHP_EXPOSED]: {
-        id: 116,
+        id: 528,
         code: VulnerabilityCode.SENS_HIGH_MAGENTO_ENV_PHP_EXPOSED,
         title: 'Magento Env PHP Exposed',
         description: 'The application exposes magento env php exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -690,7 +690,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_JOLOKIA_EXPOSED]: {
-        id: 117,
+        id: 529,
         code: VulnerabilityCode.SENS_HIGH_JOLOKIA_EXPOSED,
         title: 'Jolokia Exposed',
         description: 'The application exposes jolokia exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -713,7 +713,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_SVN_WORKING_COPY_DATABASE_EXPOSED]: {
-        id: 118,
+        id: 530,
         code: VulnerabilityCode.SENS_HIGH_SVN_WORKING_COPY_DATABASE_EXPOSED,
         title: 'SVN Working Copy Database Exposed',
         description: 'The application exposes svn working copy database exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -736,7 +736,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_SUBVERSION_REPOSITORY_DETECTED]: {
-        id: 119,
+        id: 531,
         code: VulnerabilityCode.SENS_HIGH_SUBVERSION_REPOSITORY_DETECTED,
         title: 'Subversion Repository Detected',
         description: 'The application exposes subversion repository detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -759,7 +759,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_MERCURIAL_REPOSITORY_FOUND]: {
-        id: 120,
+        id: 532,
         code: VulnerabilityCode.SENS_MED_MERCURIAL_REPOSITORY_FOUND,
         title: 'Mercurial Repository Found',
         description: 'The application exposes mercurial repository found in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -782,7 +782,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_MERCURIAL_HGRC_EXPOSED]: {
-        id: 121,
+        id: 533,
         code: VulnerabilityCode.SENS_MED_MERCURIAL_HGRC_EXPOSED,
         title: 'Mercurial Hgrc Exposed',
         description: 'The application exposes mercurial hgrc exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -805,7 +805,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_CVS_ROOT_EXPOSED]: {
-        id: 122,
+        id: 534,
         code: VulnerabilityCode.SENS_MED_CVS_ROOT_EXPOSED,
         title: 'CVS Root Exposed',
         description: 'The application exposes cvs root exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -828,7 +828,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_CVS_ENTRIES_EXPOSED]: {
-        id: 123,
+        id: 535,
         code: VulnerabilityCode.SENS_MED_CVS_ENTRIES_EXPOSED,
         title: 'CVS Entries Exposed',
         description: 'The application exposes cvs entries exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -851,7 +851,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_BAZAAR_REPO_EXPOSED]: {
-        id: 124,
+        id: 536,
         code: VulnerabilityCode.SENS_MED_BAZAAR_REPO_EXPOSED,
         title: 'Bazaar Repo Exposed',
         description: 'The application exposes bazaar repo exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -874,7 +874,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_SPRING_BOOT_THREAD_DUMP_EXPOSED]: {
-        id: 125,
+        id: 537,
         code: VulnerabilityCode.SENS_HIGH_SPRING_BOOT_THREAD_DUMP_EXPOSED,
         title: 'Spring Boot Thread Dump Exposed',
         description: 'The application exposes spring boot thread dump exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -897,7 +897,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_REDIS_RDB_DUMP_DETECTED]: {
-        id: 126,
+        id: 538,
         code: VulnerabilityCode.SENS_HIGH_REDIS_RDB_DUMP_DETECTED,
         title: 'Redis Rdb Dump Detected',
         description: 'The application exposes redis rdb dump detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -920,7 +920,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_ATLASSIAN_BITBUCKET_PIPELINES_CONFIGURATION_DETECTED]: {
-        id: 127,
+        id: 539,
         code: VulnerabilityCode.SENS_LOW_ATLASSIAN_BITBUCKET_PIPELINES_CONFIGURATION_DETECTED,
         title: 'Atlassian Bitbucket Pipelines Configuration Detected',
         description: 'The application exposes atlassian bitbucket pipelines configuration detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -943,7 +943,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_AZURE_PIPELINES_CONFIGURATION_DETECTED]: {
-        id: 128,
+        id: 540,
         code: VulnerabilityCode.SENS_LOW_AZURE_PIPELINES_CONFIGURATION_DETECTED,
         title: 'AZURE Pipelines Configuration Detected',
         description: 'The application exposes azure pipelines configuration detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -966,7 +966,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_AWS_CODE_BUILD_BUILDSPEC_DETECTED]: {
-        id: 129,
+        id: 541,
         code: VulnerabilityCode.SENS_LOW_AWS_CODE_BUILD_BUILDSPEC_DETECTED,
         title: 'AWS Code Build Buildspec Detected',
         description: 'The application exposes aws code build buildspec detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -989,7 +989,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_GITHUB_ACTIONS_WORKFLOW_DETECTED]: {
-        id: 130,
+        id: 542,
         code: VulnerabilityCode.SENS_LOW_GITHUB_ACTIONS_WORKFLOW_DETECTED,
         title: 'Github Actions Workflow Detected',
         description: 'The application exposes github actions workflow detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1012,7 +1012,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_DOCKER_COMPOSE_CONFIGURATION_DETECTED]: {
-        id: 131,
+        id: 543,
         code: VulnerabilityCode.SENS_MED_DOCKER_COMPOSE_CONFIGURATION_DETECTED,
         title: 'Docker Compose Configuration Detected',
         description: 'The application exposes docker compose configuration detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1035,7 +1035,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_TRACE_AXD]: {
-        id: 132,
+        id: 544,
         code: VulnerabilityCode.SENS_HIGH_TRACE_AXD,
         title: 'Trace Axd',
         description: 'The application exposes trace axd in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1058,7 +1058,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_ELMAH_AXD_EXPOSED]: {
-        id: 133,
+        id: 545,
         code: VulnerabilityCode.SENS_HIGH_ELMAH_AXD_EXPOSED,
         title: 'Elmah Axd Exposed',
         description: 'The application exposes elmah axd exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1081,7 +1081,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_LARAVEL_LOG_VIEWER_ENABLED]: {
-        id: 134,
+        id: 546,
         code: VulnerabilityCode.SENS_MED_LARAVEL_LOG_VIEWER_ENABLED,
         title: 'Laravel Log Viewer Enabled',
         description: 'The application exposes laravel log viewer enabled in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1104,7 +1104,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_APACHE_HTACCESS_FILE_DETECTED]: {
-        id: 135,
+        id: 547,
         code: VulnerabilityCode.SENS_MED_APACHE_HTACCESS_FILE_DETECTED,
         title: 'Apache Htaccess File Detected',
         description: 'The application exposes apache htaccess file detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1127,7 +1127,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_APACHE_SERVER_INFO_EXPOSED]: {
-        id: 136,
+        id: 548,
         code: VulnerabilityCode.SENS_MED_APACHE_SERVER_INFO_EXPOSED,
         title: 'Apache Server Info Exposed',
         description: 'The application exposes apache server info exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1150,7 +1150,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_SQLITE_DATABASE_DETECTED]: {
-        id: 137,
+        id: 549,
         code: VulnerabilityCode.SENS_HIGH_SQLITE_DATABASE_DETECTED,
         title: 'Sqlite Database Detected',
         description: 'The application exposes sqlite database detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1173,7 +1173,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_PACKAGE_DEPENDENCIES_DETECTED]: {
-        id: 138,
+        id: 550,
         code: VulnerabilityCode.SENS_MED_PACKAGE_DEPENDENCIES_DETECTED,
         title: 'Package Dependencies Detected',
         description: 'The application exposes package dependencies detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1196,7 +1196,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_PHP_COMPOSER_DEPENDENCIES_DETECTED]: {
-        id: 139,
+        id: 551,
         code: VulnerabilityCode.SENS_MED_PHP_COMPOSER_DEPENDENCIES_DETECTED,
         title: 'PHP Composer Dependencies Detected',
         description: 'The application exposes php composer dependencies detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1219,7 +1219,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_PYTHON_REQUIREMENTS_DETECTED]: {
-        id: 140,
+        id: 552,
         code: VulnerabilityCode.SENS_LOW_PYTHON_REQUIREMENTS_DETECTED,
         title: 'Python Requirements Detected',
         description: 'The application exposes python requirements detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1242,7 +1242,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_AWS_CONFIG_EXPOSED]: {
-        id: 141,
+        id: 553,
         code: VulnerabilityCode.SENS_HIGH_AWS_CONFIG_EXPOSED,
         title: 'AWS Config Exposed',
         description: 'The application exposes aws config exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1265,7 +1265,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_AZURE_CREDENTIALS_EXPOSED]: {
-        id: 142,
+        id: 554,
         code: VulnerabilityCode.SENS_HIGH_AZURE_CREDENTIALS_EXPOSED,
         title: 'AZURE Credentials Exposed',
         description: 'The application exposes azure credentials exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1288,7 +1288,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_HELM_VALUES_EXPOSED]: {
-        id: 143,
+        id: 555,
         code: VulnerabilityCode.SENS_HIGH_HELM_VALUES_EXPOSED,
         title: 'Helm Values Exposed',
         description: 'The application exposes helm values exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1311,7 +1311,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_SSH_PUBLIC_KEY_EXPOSED]: {
-        id: 144,
+        id: 556,
         code: VulnerabilityCode.SENS_MED_SSH_PUBLIC_KEY_EXPOSED,
         title: 'SSH Public Key Exposed',
         description: 'The application exposes ssh public key exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1334,7 +1334,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_SSL_CERTIFICATE_EXPOSED]: {
-        id: 145,
+        id: 557,
         code: VulnerabilityCode.SENS_MED_SSL_CERTIFICATE_EXPOSED,
         title: 'SSL Certificate Exposed',
         description: 'The application exposes ssl certificate exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1357,7 +1357,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_GRAPH_QL_ENDPOINT_EXPOSED]: {
-        id: 146,
+        id: 558,
         code: VulnerabilityCode.SENS_MED_GRAPH_QL_ENDPOINT_EXPOSED,
         title: 'Graph Ql Endpoint Exposed',
         description: 'The application exposes graph ql endpoint exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1380,7 +1380,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_GRAPHI_QL_EXPOSED]: {
-        id: 147,
+        id: 559,
         code: VulnerabilityCode.SENS_MED_GRAPHI_QL_EXPOSED,
         title: 'Graphi Ql Exposed',
         description: 'The application exposes graphi ql exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1403,7 +1403,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_TERRAFORM_LOCK_EXPOSED]: {
-        id: 148,
+        id: 560,
         code: VulnerabilityCode.SENS_MED_TERRAFORM_LOCK_EXPOSED,
         title: 'Terraform Lock Exposed',
         description: 'The application exposes terraform lock exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1426,7 +1426,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_TERRAFORM_VARS_EXPOSED]: {
-        id: 149,
+        id: 561,
         code: VulnerabilityCode.SENS_HIGH_TERRAFORM_VARS_EXPOSED,
         title: 'Terraform Vars Exposed',
         description: 'The application exposes terraform vars exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1449,7 +1449,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_ERROR_LOG_EXPOSED]: {
-        id: 150,
+        id: 562,
         code: VulnerabilityCode.SENS_MED_ERROR_LOG_EXPOSED,
         title: 'Error Log Exposed',
         description: 'The application exposes error log exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1472,7 +1472,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_ACCESS_LOG_EXPOSED]: {
-        id: 151,
+        id: 563,
         code: VulnerabilityCode.SENS_MED_ACCESS_LOG_EXPOSED,
         title: 'Access Log Exposed',
         description: 'The application exposes access log exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1495,7 +1495,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_DEBUG_LOG_EXPOSED]: {
-        id: 152,
+        id: 564,
         code: VulnerabilityCode.SENS_MED_DEBUG_LOG_EXPOSED,
         title: 'Debug Log Exposed',
         description: 'The application exposes debug log exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1518,7 +1518,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_APPLICATION_LOG_EXPOSED]: {
-        id: 153,
+        id: 565,
         code: VulnerabilityCode.SENS_MED_APPLICATION_LOG_EXPOSED,
         title: 'Application Log Exposed',
         description: 'The application exposes application log exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1541,7 +1541,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_LARAVEL_LOG_EXPOSED]: {
-        id: 154,
+        id: 566,
         code: VulnerabilityCode.SENS_HIGH_LARAVEL_LOG_EXPOSED,
         title: 'Laravel Log Exposed',
         description: 'The application exposes laravel log exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1564,7 +1564,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_WORD_PRESS_DEBUG_LOG_EXPOSED]: {
-        id: 155,
+        id: 567,
         code: VulnerabilityCode.SENS_HIGH_WORD_PRESS_DEBUG_LOG_EXPOSED,
         title: 'Word Press Debug Log Exposed',
         description: 'The application exposes word press debug log exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1587,7 +1587,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_ADMINER_EXPOSED]: {
-        id: 156,
+        id: 568,
         code: VulnerabilityCode.SENS_HIGH_ADMINER_EXPOSED,
         title: 'Adminer Exposed',
         description: 'The application exposes adminer exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1610,7 +1610,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_WSDL_EXPOSED]: {
-        id: 157,
+        id: 569,
         code: VulnerabilityCode.SENS_MED_WSDL_EXPOSED,
         title: 'WSDL Exposed',
         description: 'The application exposes wsdl exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1633,7 +1633,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_DEBUG_ENDPOINT_EXPOSED]: {
-        id: 158,
+        id: 570,
         code: VulnerabilityCode.SENS_HIGH_DEBUG_ENDPOINT_EXPOSED,
         title: 'Debug Endpoint Exposed',
         description: 'The application exposes debug endpoint exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1656,7 +1656,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_GO_DEBUG_VARS_EXPOSED]: {
-        id: 159,
+        id: 571,
         code: VulnerabilityCode.SENS_HIGH_GO_DEBUG_VARS_EXPOSED,
         title: 'Go Debug Vars Exposed',
         description: 'The application exposes go debug vars exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1679,7 +1679,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_GO_PPROF_EXPOSED]: {
-        id: 160,
+        id: 572,
         code: VulnerabilityCode.SENS_HIGH_GO_PPROF_EXPOSED,
         title: 'Go Pprof Exposed',
         description: 'The application exposes go pprof exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1702,7 +1702,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_MED_WORD_PRESS_XML_RPC_EXPOSED]: {
-        id: 161,
+        id: 573,
         code: VulnerabilityCode.SENS_MED_WORD_PRESS_XML_RPC_EXPOSED,
         title: 'Word Press XML Rpc Exposed',
         description: 'The application exposes word press xml rpc exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1725,7 +1725,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_TEST_ENDPOINT_EXPOSED]: {
-        id: 162,
+        id: 574,
         code: VulnerabilityCode.SENS_LOW_TEST_ENDPOINT_EXPOSED,
         title: 'Test Endpoint Exposed',
         description: 'The application exposes test endpoint exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1748,7 +1748,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_STAGING_ENDPOINT_EXPOSED]: {
-        id: 163,
+        id: 575,
         code: VulnerabilityCode.SENS_LOW_STAGING_ENDPOINT_EXPOSED,
         title: 'Staging Endpoint Exposed',
         description: 'The application exposes staging endpoint exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1771,7 +1771,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_EDITOR_BACKUP_FILE_DETECTED]: {
-        id: 164,
+        id: 576,
         code: VulnerabilityCode.SENS_LOW_EDITOR_BACKUP_FILE_DETECTED,
         title: 'Editor Backup File Detected',
         description: 'The application exposes editor backup file detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1794,7 +1794,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_VIM_SWAP_FILE_DETECTED]: {
-        id: 165,
+        id: 577,
         code: VulnerabilityCode.SENS_LOW_VIM_SWAP_FILE_DETECTED,
         title: 'VIM Swap File Detected',
         description: 'The application exposes vim swap file detected in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1817,7 +1817,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_DIRECTORY_LISTING_ENABLED]: {
-        id: 166,
+        id: 578,
         code: VulnerabilityCode.SENS_LOW_DIRECTORY_LISTING_ENABLED,
         title: 'Directory Listing Enabled',
         description: 'The application exposes directory listing enabled in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1840,7 +1840,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_AZURE_STORAGE_CONFIG_EXPOSED]: {
-        id: 167,
+        id: 579,
         code: VulnerabilityCode.SENS_HIGH_AZURE_STORAGE_CONFIG_EXPOSED,
         title: 'AZURE Storage Config Exposed',
         description: 'The application exposes azure storage config exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1863,7 +1863,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_HIGH_MONGO_RC_EXPOSED]: {
-        id: 168,
+        id: 580,
         code: VulnerabilityCode.SENS_HIGH_MONGO_RC_EXPOSED,
         title: 'Mongo Rc Exposed',
         description: 'The application exposes mongo rc exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1886,7 +1886,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_AWSSAM_TEMPLATE_EXPOSED]: {
-        id: 169,
+        id: 581,
         code: VulnerabilityCode.SENS_LOW_AWSSAM_TEMPLATE_EXPOSED,
         title: 'Awssam Template Exposed',
         description: 'The application exposes awssam template exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1909,7 +1909,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_SERVERLESS_CONFIG_EXPOSED]: {
-        id: 170,
+        id: 582,
         code: VulnerabilityCode.SENS_LOW_SERVERLESS_CONFIG_EXPOSED,
         title: 'Serverless Config Exposed',
         description: 'The application exposes serverless config exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',
@@ -1932,7 +1932,7 @@ export const SENSITIVE_PATH_VULNERABILITIES: Record<string, VulnerabilityDefinit
     },
 
     [VulnerabilityCode.SENS_LOW_CLOUD_FORMATION_TEMPLATE_EXPOSED]: {
-        id: 171,
+        id: 583,
         code: VulnerabilityCode.SENS_LOW_CLOUD_FORMATION_TEMPLATE_EXPOSED,
         title: 'Cloud Formation Template Exposed',
         description: 'The application exposes cloud formation template exposed in a web-accessible location, which can reveal sensitive configuration, credentials, or operational details and enable attackers to further compromise the system or pivot to other assets.',