Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

Critical Severity Vulnerabilities

Found 2862 vulnerabilities at Critical severity.

Reference
Title
Technology
CVE-2021-33816
Dolibarr Improper Control of Generation of Code (Code Injection) Vulnerability
Dolibarr
CVE-2022-0224
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Dolibarr
CVE-2022-40871
Dolibarr Incorrect Default Permissions Vulnerability
Dolibarr
CVE-2022-4093
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Dolibarr
CVE-2022-43138
Dolibarr Improper Privilege Management Vulnerability
Dolibarr
CVE-2023-38888
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dolibarr
CVE-2024-5314
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Dolibarr
CVE-2024-5315
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Dolibarr
CVE-2019-25710
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Dolibarr
CVE-2018-7666
ClipBucket Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
ClipBucket
CVE-2018-7665
ClipBucket Unrestricted Upload of File with Dangerous Type Vulnerability
ClipBucket
CVE-2018-7664
ClipBucket Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability
ClipBucket
CVE-2013-10040
ClipBucket Unrestricted Upload of File with Dangerous Type Vulnerability
ClipBucket
CVE-2019-11512
Contao Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Contao
CVE-2017-16558
Contao Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Contao
CVE-2019-10643
Contao Key Management Errors Vulnerability
Contao
CVE-2019-10641
Contao Weak Password Recovery Mechanism for Forgotten Password Vulnerability
Contao
CVE-2014-1860
Contao Deserialization of Untrusted Data Vulnerability
Contao
CVE-2020-11066
TYPO3 Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability
TYPO3
CVE-2019-12747
TYPO3 Deserialization of Untrusted Data Vulnerability
TYPO3
CVE-2011-3583
TYPO3 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
TYPO3
CVE-2011-4628
TYPO3 Improper Authentication Vulnerability
TYPO3
CVE-2009-0258
TYPO3 Improper Input Validation Vulnerability
TYPO3
CVE-2019-10744
Lodash Other Vulnerability
Lodash
CVE-2026-4800
Lodash Improper Control of Generation of Code (Code Injection) Vulnerability
Lodash
CVE-2024-57965
axios Origin Validation Error Vulnerability
axios
CVE-2025-62718
axios Unintended Proxy or Intermediary (Confused Deputy) Vulnerability
axios
CVE-2019-20800
Cherokee Out-of-bounds Write Vulnerability
Cherokee
CVE-2017-1001002
math.js Improper Control of Generation of Code (Code Injection) Vulnerability
math.js
CVE-2020-2884
WebLogic Vulnerability
WebLogic