Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

High Severity Vulnerabilities

Found 5580 vulnerabilities at High severity.

Reference
Title
Technology
CVE-2020-9757
Craft CMS Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
Craft CMS
CVE-2021-41824
Craft CMS Improper Neutralization of Formula Elements in a CSV File Vulnerability
Craft CMS
CVE-2022-29933
Craft CMS Weak Password Recovery Mechanism for Forgotten Password Vulnerability
Craft CMS
CVE-2022-37783
Craft CMS Missing Encryption of Sensitive Data Vulnerability
Craft CMS
CVE-2023-30130
Craft CMS Improper Control of Generation of Code (Code Injection) Vulnerability
Craft CMS
CVE-2023-32679
Craft CMS Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
Craft CMS
CVE-2023-30179
Craft CMS Improper Control of Generation of Code (Code Injection) Vulnerability
Craft CMS
CVE-2023-40035
Craft CMS Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
Craft CMS
CVE-2024-21622
Craft CMS Vulnerability
Craft CMS
CVE-2023-36260
Craft CMS Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
Craft CMS
CVE-2024-41800
Craft CMS Improper Authentication Vulnerability
Craft CMS
CVE-2024-52291
Craft CMS Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Craft CMS
CVE-2024-52293
Craft CMS Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Craft CMS
CVE-2025-23209
Craft CMS Improper Control of Generation of Code (Code Injection) Vulnerability
Craft CMS
CVE-2025-57811
Craft CMS Improper Neutralization of Special Elements Used in a Template Engine Vulnerability
Craft CMS
CVE-2025-54417
Craft CMS Improper Control of Generation of Code (Code Injection) Vulnerability
Craft CMS
CVE-2025-46731
Craft CMS Improper Neutralization of Special Elements Used in a Template Engine Vulnerability
Craft CMS
CVE-2025-68455
Craft CMS Use of Externally-Controlled Input to Select Classes or Code (Unsafe Reflection) Vulnerability
Craft CMS
CVE-2025-68454
Craft CMS Improper Neutralization of Special Elements Used in a Template Engine Vulnerability
Craft CMS
CVE-2026-25498
Craft CMS Use of Externally-Controlled Input to Select Classes or Code (Unsafe Reflection) Vulnerability
Craft CMS
CVE-2026-25497
Craft CMS Authorization Bypass Through User-Controlled Key Vulnerability
Craft CMS
CVE-2026-25495
Craft CMS Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Craft CMS
CVE-2026-28784
Craft CMS Improper Neutralization of Special Elements Used in a Template Engine Vulnerability
Craft CMS
CVE-2026-28696
Craft CMS Authorization Bypass Through User-Controlled Key Vulnerability
Craft CMS
CVE-2026-28695
Craft CMS Improper Neutralization of Special Elements Used in a Template Engine Vulnerability
Craft CMS
CVE-2026-32264
Craft CMS Use of Externally-Controlled Input to Select Classes or Code (Unsafe Reflection) Vulnerability
Craft CMS
CVE-2026-32263
Craft CMS Use of Externally-Controlled Input to Select Classes or Code (Unsafe Reflection) Vulnerability
Craft CMS
CVE-2026-31858
Craft CMS Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Craft CMS
CVE-2026-31857
Craft CMS Improper Control of Generation of Code (Code Injection) Vulnerability
Craft CMS
CVE-2026-33157
Craft CMS Use of Externally-Controlled Input to Select Classes or Code (Unsafe Reflection) Vulnerability
Craft CMS