Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Web Application Vulnerabilities

This page lists 24342 vulnerabilities in 62 categories.

Critical: 1593 High: 13071 Medium: 8734 Low: 875 Information: 69
Vulnerability Name
CVE
CWE
Severity
Play Framework Out-of-bounds Write Vulnerability (CVE-2020-27196)
CVE-2020-27196
CWE-787
High
Play Framework Uncontrolled Recursion Vulnerability (CVE-2020-26882)
CVE-2020-26882
CWE-674
High
Play Framework Uncontrolled Recursion Vulnerability (CVE-2020-26883)
CVE-2020-26883
CWE-674
High
Play Framework Uncontrolled Resource Consumption Vulnerability (CVE-2022-31018)
CVE-2022-31018
CWE-400
High
Play framework weak secret key
-
CWE-693
Medium
PleskLin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784)
CVE-2023-43784
CWE-668
High
PleskLin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0132)
CVE-2013-0132
CWE-94
Medium
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-18793)
CVE-2019-18793
CWE-707
Medium
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11583)
CVE-2020-11583
CWE-707
Medium
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11584)
CVE-2020-11584
CWE-707
Medium
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35976)
CVE-2021-35976
CWE-707
Medium
PleskLin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1557)
CVE-2012-1557
CWE-138
High
PleskLin Other Vulnerability (CVE-2013-0133)
CVE-2013-0133
-
High
PleskLin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4878)
CVE-2013-4878
CWE-264
High
PleskLin URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-24044)
CVE-2023-24044
CWE-601
Medium
PleskWin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784)
CVE-2023-43784
CWE-668
High
PleskWin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0132)
CVE-2013-0132
CWE-94
Medium
PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-18793)
CVE-2019-18793
CWE-707
Medium
PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11583)
CVE-2020-11583
CWE-707
Medium
PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11584)
CVE-2020-11584
CWE-707
Medium
PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35976)
CVE-2021-35976
CWE-707
Medium
PleskWin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1557)
CVE-2012-1557
CWE-138
High
PleskWin Other Vulnerability (CVE-2013-0133)
CVE-2013-0133
-
High
PleskWin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4878)
CVE-2013-4878
CWE-264
High
PleskWin URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-24044)
CVE-2023-24044
CWE-601
Medium
Plone arbitrary code execution
CVE-2011-3587
CWE-78
High
Plone CMS Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2012-5507)
CVE-2012-5507
CWE-362
Medium
Plone CMS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-5500)
CVE-2012-5500
CWE-352
Medium
Plone CMS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-7293)
CVE-2015-7293
CWE-352
High
Plone CMS Cryptographic Issues Vulnerability (CVE-2012-6661)
CVE-2012-6661
-
Medium
Plone CMS CVE-2011-0720 Vulnerability (CVE-2011-0720)
CVE-2011-0720
-
High
Plone CMS CVE-2011-2528 Vulnerability (CVE-2011-2528)
CVE-2011-2528
-
High
Plone CMS CVE-2011-3587 Vulnerability (CVE-2011-3587)
CVE-2011-3587
-
Critical
Plone CMS CVE-2012-5503 Vulnerability (CVE-2012-5503)
CVE-2012-5503
-
Medium
Plone CMS CVE-2013-4189 Vulnerability (CVE-2013-4189)
CVE-2013-4189
-
Medium
Plone CMS CVE-2017-1000483 Vulnerability (CVE-2017-1000483)
CVE-2017-1000483
-
Medium
Plone CMS CVE-2024-23756 Vulnerability (CVE-2024-23756)
CVE-2024-23756
-
High
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5491)
CVE-2012-5491
CWE-200
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5492)
CVE-2012-5492
CWE-200
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5497)
CVE-2012-5497
CWE-200
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5505)
CVE-2012-5505
CWE-200
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5508)
CVE-2012-5508
CWE-200
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4194)
CVE-2013-4194
CWE-200
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-7060)
CVE-2013-7060
CWE-200
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-4042)
CVE-2016-4042
CWE-200
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-21336)
CVE-2021-21336
CWE-200
Medium
Plone CMS Improper Access Control Vulnerability (CVE-2015-7315)
CVE-2015-7315
CWE-284
Medium
Plone CMS Improper Authentication Vulnerability (CVE-2009-0662)
CVE-2009-0662
CWE-287
Medium
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5741)
CVE-2007-5741
CWE-94
High
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5485)
CVE-2012-5485
CWE-94
Medium
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5488)
CVE-2012-5488
CWE-94
Medium
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5493)
CVE-2012-5493
CWE-94
High
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5495)
CVE-2012-5495
CWE-94
Medium
Plone CMS Improper Input Validation Vulnerability (CVE-2011-4462)
CVE-2011-4462
CWE-20
Medium
Plone CMS Improper Input Validation Vulnerability (CVE-2013-4192)
CVE-2013-4192
CWE-20
Medium
Plone CMS Improper Input Validation Vulnerability (CVE-2013-4195)
CVE-2013-4195
CWE-20
Medium
Plone CMS Improper Input Validation Vulnerability (CVE-2013-4197)
CVE-2013-4197
CWE-20
Medium
Plone CMS Improper Input Validation Vulnerability (CVE-2013-4199)
CVE-2013-4199
CWE-20
Low
Plone CMS Improper Input Validation Vulnerability (CVE-2015-7318)
CVE-2015-7318
CWE-20
High
Plone CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-7135)
CVE-2016-7135
CWE-22
Medium
Plone CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-32633)
CVE-2021-32633
CWE-22
High
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4571)
CVE-2008-4571
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2422)
CVE-2010-2422
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-1340)
CVE-2011-1340
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-1948)
CVE-2011-1948
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-1949)
CVE-2011-1949
CWE-707
Low
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5490)
CVE-2012-5490
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5494)
CVE-2012-5494
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5502)
CVE-2012-5502
CWE-707
Low
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5504)
CVE-2012-5504
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4190)
CVE-2013-4190
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-7062)
CVE-2013-7062
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-7316)
CVE-2015-7316
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7136)
CVE-2016-7136
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7138)
CVE-2016-7138
CWE-707
Medium