Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Server

WebLogic

Oracle WebLogic Server is a Java EE application server currently developed by Oracle Corporation. Oracle acquired WebLogic Server when it purchased BEA Systems in 2008.

Official Site:

https://www.oracle.com/middleware/technologies/weblogic.html

Severity Summary:

Critical: 79 High: 92 Medium: 128 Low: 4
Reference
Title
Severity
CVE-2018-1313
WebLogic Vulnerability
Medium
CVE-2018-2933
WebLogic Vulnerability
Medium
CVE-2018-2998
WebLogic Vulnerability
Medium
CVE-2016-7103
WebLogic Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-23437
WebLogic Loop with Unreachable Exit Condition (Infinite Loop) Vulnerability
Medium
CVE-2023-22031
WebLogic Vulnerability
Medium
CVE-2023-21960
WebLogic Vulnerability
Medium
CVE-2023-22040
WebLogic Vulnerability
Medium
CVE-2023-21956
WebLogic Vulnerability
Medium
CVE-2018-3250
WebLogic Vulnerability
Medium
CVE-2021-41183
WebLogic Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-41182
WebLogic Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-41184
WebLogic Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-3249
WebLogic Vulnerability
Medium
CVE-2022-21386
WebLogic Vulnerability
Medium
CVE-2019-2395
WebLogic Vulnerability
Medium
CVE-2020-2544
WebLogic Vulnerability
Medium
CVE-2025-61764
WebLogic Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2025-30753
WebLogic Uncontrolled Resource Consumption Vulnerability
Medium
CVE-2025-50064
WebLogic Improper Privilege Management Vulnerability
Medium
CVE-2025-50072
WebLogic Improper Access Control Vulnerability
Medium
CVE-2025-50073
WebLogic Improper Authorization Vulnerability
Medium
CVE-2020-2869
WebLogic Vulnerability
Medium
CVE-2021-28170
WebLogic Improper Neutralization of Special Elements used in an Expression Language Statement (Expression La Vulnerability
Medium
CVE-2020-2829
WebLogic Vulnerability
Medium
CVE-2020-2811
WebLogic Vulnerability
Medium
CVE-2020-2766
WebLogic Vulnerability
Medium
CVE-2020-2552
WebLogic Vulnerability
Medium
CVE-2020-2550
WebLogic Vulnerability
Medium
CVE-2020-2548
WebLogic Vulnerability
Medium