Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

High Severity Vulnerabilities

Found 5565 vulnerabilities at High severity.

Reference
Title
Technology
CVE-2026-20947
SharePoint Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
SharePoint
CVE-2026-20943
SharePoint Untrusted Search Path Vulnerability
SharePoint
CVE-2026-21511
SharePoint Deserialization of Untrusted Data Vulnerability
SharePoint
CVE-2026-21260
SharePoint Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
SharePoint
CVE-2026-26114
SharePoint Deserialization of Untrusted Data Vulnerability
SharePoint
CVE-2026-26113
SharePoint Other Vulnerability
SharePoint
CVE-2026-26106
SharePoint Vulnerability
SharePoint
CVE-2015-10005
markdown-it Inefficient Regular Expression Complexity Vulnerability
markdown-it
CVE-2026-2327
markdown-it Inefficient Regular Expression Complexity Vulnerability
markdown-it
CVE-2022-48285
jszip Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
jszip
CVE-2022-25927
UAParser.js Inefficient Regular Expression Complexity Vulnerability
UAParser.js
CVE-2021-4229
UAParser.js Inclusion of Functionality from Untrusted Control Sphere Vulnerability
UAParser.js
CVE-2021-27292
UAParser.js Other Vulnerability
UAParser.js
CVE-2020-5258
Dojo Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution) Vulnerability
Dojo
CVE-2021-42183
Masa CMS Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Masa CMS
CVE-2024-32643
Masa CMS Incorrect Authorization Vulnerability
Masa CMS
CVE-2024-32642
Masa CMS Origin Validation Error Vulnerability
Masa CMS
CVE-2011-4960
silverstripeCMS Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
silverstripeCMS
CVE-2008-6753
silverstripeCMS Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
silverstripeCMS
CVE-2009-1433
silverstripeCMS Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
silverstripeCMS
CVE-2020-9280
silverstripeCMS Unrestricted Upload of File with Dangerous Type Vulnerability
silverstripeCMS
CVE-2020-6164
silverstripeCMS Vulnerability
silverstripeCMS
CVE-2019-12437
silverstripeCMS Cross-Site Request Forgery (CSRF) Vulnerability
silverstripeCMS
CVE-2024-0396
MOVEit Transfer Vulnerability
MOVEit Transfer
CVE-2023-6218
MOVEit Transfer Improper Privilege Management Vulnerability
MOVEit Transfer
CVE-2023-42660
MOVEit Transfer Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
MOVEit Transfer
CVE-2023-40043
MOVEit Transfer Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
MOVEit Transfer
CVE-2023-36933
MOVEit Transfer Improper Handling of Exceptional Conditions Vulnerability
MOVEit Transfer
CVE-2023-36932
MOVEit Transfer Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
MOVEit Transfer
CVE-2021-37614
MOVEit Transfer Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
MOVEit Transfer