Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

Critical Severity Vulnerabilities

Found 2894 vulnerabilities at Critical severity.

Reference
Title
Technology
No CVE number
WordPress Plugin Qualified Electronic Signatures by eID Easy Supply Chain Attack Polyfill.io
WP Plugin Eid Easy Qualified Electonic Signature
CVE-2024-6205
WordPress Plugin PayPlus Payment Gateway SQL Injection
WP Plugin Payplus Payment Gateway
CVE-2024-6297
WordPress Plugin Britetechs Companion Malicious Code
WP Plugin Britetechs Companion
CVE-2024-6297
WordPress Plugin WPCOM Member Malicious Code
WP Plugin Wpcom Member
CVE-2024-37424
WordPress Plugin Newspack Blocks Arbitrary File Upload
WP Plugin Newspack Blocks
CVE-2024-37420
WordPress Plugin Zita Elementor Site Library Arbitrary File Upload
WP Plugin Zita Site Library
CVE-2024-6164
WordPress Plugin Filter Grids Local File Inclusion
WP Plugin Ymc Smart Filter
CVE-2024-31292
WordPress Plugin Import XML and RSS Feeds Arbitrary File Upload
WP Plugin Import Xml Feed
CVE-2023-4521
WordPress Plugin Import XML and RSS Feeds Remote Code Execution
WP Plugin Import Xml Feed
CVE-2024-21650
XWiki Improper Control of Generation of Code (Code Injection) Vulnerability
XWikiplatform
CVE-2023-46731
XWiki Improper Control of Generation of Code (Code Injection) Vulnerability
XWikiplatform
CVE-2023-27479
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
XWikiplatform
CVE-2023-26477
XWiki Improper Control of Generation of Code (Code Injection) Vulnerability
XWikiplatform
CVE-2023-45136
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2023-45134
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2022-29161
XWiki Inadequate Encryption Strength Vulnerability
XWikiplatform
CVE-2023-37277
XWiki Cross-Site Request Forgery (CSRF) Vulnerability
XWikiplatform
CVE-2023-31126
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2023-32071
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2023-29207
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2023-29202
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2023-29201
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2022-36094
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2022-36098
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2022-36096
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2024-31996
XWikiplatform Improper Control of Generation of Code (Code Injection) Vulnerability
XWikiplatform
CVE-2024-55663
XWikiplatform Improper Encoding or Escaping of Output Vulnerability
XWikiplatform
CVE-2024-31982
XWikiplatform Improper Control of Generation of Code (Code Injection) Vulnerability
XWikiplatform
CVE-2025-32969
XWikiplatform Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
XWikiplatform
CVE-2025-24893
XWikiplatform Improper Control of Generation of Code (Code Injection) Vulnerability
XWikiplatform