Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

Critical Severity Vulnerabilities

Found 2862 vulnerabilities at Critical severity.

Reference
Title
Technology
CVE-2017-10682
Piwigo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Piwigo
CVE-2016-10105
Piwigo Improper Access Control Vulnerability
Piwigo
CVE-2014-4648
Piwigo Vulnerability
Piwigo
CVE-2021-32615
Piwigo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Piwigo
CVE-2020-19213
Piwigo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Piwigo
CVE-2023-33361
Piwigo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Piwigo
CVE-2023-33362
Piwigo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Piwigo
CVE-2026-27634
Piwigo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Piwigo
CVE-2020-24881
osTicket Server-Side Request Forgery (SSRF) Vulnerability
osTicket
CVE-2017-15580
osTicket Unrestricted Upload of File with Dangerous Type Vulnerability
osTicket
CVE-2017-14396
osTicket Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
osTicket
CVE-2021-42235
osTicket Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
osTicket
CVE-2020-12641
Roundcube Improper Neutralization of Argument Delimiters in a Command (Argument Injection) Vulnerability
Roundcube
CVE-2020-12640
Roundcube Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Roundcube
CVE-2021-44026
Roundcube Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Roundcube
CVE-2024-42009
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Roundcube
CVE-2024-42008
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Roundcube
CVE-2024-37385
Roundcube Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability
Roundcube
CVE-2019-25019
LimeSurvey Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
LimeSurvey
CVE-2019-16184
LimeSurvey Improper Neutralization of Formula Elements in a CSV File Vulnerability
LimeSurvey
CVE-2019-9960
LimeSurvey Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
LimeSurvey
CVE-2018-17057
LimeSurvey Deserialization of Untrusted Data Vulnerability
LimeSurvey
CVE-2018-7556
LimeSurvey Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
LimeSurvey
CVE-2008-2570
LimeSurvey Vulnerability
LimeSurvey
CVE-2022-48008
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability
LimeSurvey
CVE-2025-41375
LimeSurvey Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
LimeSurvey
CVE-2025-56422
LimeSurvey Deserialization of Untrusted Data Vulnerability
LimeSurvey
CVE-2020-15160
PrestaShop Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
PrestaShop
CVE-2020-4074
PrestaShop Improper Authentication Vulnerability
PrestaShop
CVE-2018-19355
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability
PrestaShop