Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

High Severity Vulnerabilities

Found 5580 vulnerabilities at High severity.

Reference
Title
Technology
CVE-2015-4724
concrete5 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
concrete5
CVE-2018-13790
concrete5 Server-Side Request Forgery (SSRF) Vulnerability
concrete5
CVE-2021-3980
Elgg Exposure of Private Personal Information to an Unauthorized Actor Vulnerability
Elgg
CVE-2019-11378
ProjectSend Unrestricted Upload of File with Dangerous Type Vulnerability
ProjectSend
CVE-2020-28874
ProjectSend Improper Privilege Management Vulnerability
ProjectSend
CVE-2021-40884
ProjectSend Incorrect Authorization Vulnerability
ProjectSend
CVE-2018-7201
ProjectSend Improper Neutralization of Formula Elements in a CSV File Vulnerability
ProjectSend
CVE-2019-11492
ProjectSend Insertion of Sensitive Information into Log File Vulnerability
ProjectSend
CVE-2024-7659
ProjectSend Use of Insufficiently Random Values Vulnerability
ProjectSend
CVE-2023-53930
ProjectSend Authorization Bypass Through User-Controlled Key Vulnerability
ProjectSend
CVE-2023-53905
ProjectSend Improper Neutralization of Formula Elements in a CSV File Vulnerability
ProjectSend
CVE-2020-7746
Chart.js Improper Input Validation Vulnerability
Chart.js
CVE-2020-28496
Three.js Uncontrolled Resource Consumption Vulnerability
Three.js
CVE-2019-11458
CakePHP Deserialization of Untrusted Data Vulnerability
CakePHP
CVE-2016-4793
CakePHP Improper Input Validation Vulnerability
CakePHP
CVE-2020-35239
CakePHP Cross-Site Request Forgery (CSRF) Vulnerability
CakePHP
CVE-2010-4335
CakePHP Improper Input Validation Vulnerability
CakePHP
CVE-2015-8379
CakePHP Cross-Site Request Forgery (CSRF) Vulnerability
CakePHP
CVE-2017-5480
b2evolution Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
b2evolution
CVE-2016-9479
b2evolution Credentials Management Errors Vulnerability
b2evolution
CVE-2007-2681
b2evolution Other Vulnerability
b2evolution
CVE-2007-2358
b2evolution Other Vulnerability
b2evolution
CVE-2006-6417
b2evolution Other Vulnerability
b2evolution
CVE-2021-28242
b2evolution Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability
b2evolution
CVE-2008-0252
CherryPy Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
CherryPy
CVE-2013-3638
Dolphin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Dolphin
CVE-2019-5440
ReviveAdserver Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability
ReviveAdserver
CVE-2016-9456
ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability
ReviveAdserver
CVE-2016-9455
ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability
ReviveAdserver
CVE-2016-9127
ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability
ReviveAdserver