Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Server

Payara

Payara Server is an open-source application server from GlassFish Server Open Source Edition. Developed in 2014 and released in October 2014 by C2B2 Consulting Payara Server was created as a fork and drop-in replacement for GlassFish when Oracle announced the discontinuation of commercial support.

Official Site:

https://github.com/payara/Payara

Severity Summary:

High: 3 Medium: 3
Reference
Title
Severity
CVE-2022-45129
Payara Files or Directories Accessible to External Parties Vulnerability
High
CVE-2022-37422
Payara Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
High
CVE-2024-8215
Payara Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
High
CVE-2023-41699
Payara URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2024-7312
Payara URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2025-1534
Payara Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium