Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Application Vulnerabilities

This page lists 23441 vulnerabilities in 68 categories.

Critical: 1499 High: 12791 Medium: 8230 Low: 857 Information: 64
Vulnerability Name
CVE
CWE
Severity
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2011-0698)
CVE-2011-0698
CWE-22
High
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-4315)
CVE-2013-4315
CWE-22
Medium
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-28658)
CVE-2021-28658
CWE-22
Medium
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-3281)
CVE-2021-3281
CWE-22
Medium
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-33203)
CVE-2021-33203
CWE-22
High
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-45452)
CVE-2021-45452
CWE-22
Medium
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-39330)
CVE-2024-39330
CWE-22
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-3082)
CVE-2010-3082
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-0697)
CVE-2011-0697
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3442)
CVE-2012-3442
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4249)
CVE-2013-4249
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6044)
CVE-2013-6044
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-0220)
CVE-2015-0220
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2241)
CVE-2015-2241
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2317)
CVE-2015-2317
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2512)
CVE-2016-2512
CWE-707
High
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6186)
CVE-2016-6186
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12794)
CVE-2017-12794
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-12308)
CVE-2019-12308
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13596)
CVE-2020-13596
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32052)
CVE-2021-32052
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-22818)
CVE-2022-22818
CWE-707
Medium
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-14234)
CVE-2019-14234
CWE-138
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-7471)
CVE-2020-7471
CWE-138
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-9402)
CVE-2020-9402
CWE-138
High
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-35042)
CVE-2021-35042
CWE-138
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-28346)
CVE-2022-28346
CWE-138
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-28347)
CVE-2022-28347
CWE-138
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-34265)
CVE-2022-34265
CWE-138
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-42005)
CVE-2024-42005
CWE-138
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-53908)
CVE-2024-53908
CWE-138
Critical
Django Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-3444)
CVE-2012-3444
CWE-119
Medium
Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-41164)
CVE-2023-41164
CWE-1284
High
Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-43665)
CVE-2023-43665
CWE-1284
High
Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2024-41991)
CVE-2024-41991
CWE-1284
High
Django Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2021-23336)
CVE-2021-23336
CWE-444
Medium
Django Incorrect Default Permissions Vulnerability (CVE-2019-19118)
CVE-2019-19118
CWE-276
Medium
Django Incorrect Default Permissions Vulnerability (CVE-2020-24583)
CVE-2020-24583
CWE-276
High
Django Incorrect Default Permissions Vulnerability (CVE-2020-24584)
CVE-2020-24584
CWE-276
High
Django Incorrect Regular Expression Vulnerability (CVE-2018-7536)
CVE-2018-7536
CWE-185
Medium
Django Incorrect Regular Expression Vulnerability (CVE-2018-7537)
CVE-2018-7537
CWE-185
Medium
Django Inefficient Regular Expression Complexity Vulnerability (CVE-2023-36053)
CVE-2023-36053
CWE-1333
High
Django Insufficiently Protected Credentials Vulnerability (CVE-2018-16984)
CVE-2018-16984
CWE-522
Medium
Django Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2022-23833)
CVE-2022-23833
CWE-835
High
Django Numeric Errors Vulnerability (CVE-2013-0306)
CVE-2013-0306
-
Medium
Django Observable Timing Discrepancy Vulnerability (CVE-2024-39329)
CVE-2024-39329
CWE-208
Medium
Django Other Vulnerability (CVE-2009-3695)
CVE-2009-3695
-
Medium
Django Other Vulnerability (CVE-2015-3982)
CVE-2015-3982
-
Medium
Django Other Vulnerability (CVE-2022-41323)
CVE-2022-41323
-
High
Django Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-4534)
CVE-2010-4534
CWE-264
Medium
Django Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0473)
CVE-2014-0473
CWE-264
Medium
Django Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0483)
CVE-2014-0483
CWE-264
Low
Django Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9014)
CVE-2016-9014
CWE-264
High
Django Resource Management Errors Vulnerability (CVE-2011-4137)
CVE-2011-4137
-
Medium
Django Resource Management Errors Vulnerability (CVE-2014-0474)
CVE-2014-0474
-
Critical
Django Resource Management Errors Vulnerability (CVE-2014-0481)
CVE-2014-0481
-
Medium
Django Resource Management Errors Vulnerability (CVE-2015-0221)
CVE-2015-0221
-
Medium
Django Resource Management Errors Vulnerability (CVE-2015-2316)
CVE-2015-2316
-
Medium
Django Resource Management Errors Vulnerability (CVE-2015-5143)
CVE-2015-5143
-
High
Django Resource Management Errors Vulnerability (CVE-2015-5145)
CVE-2015-5145
-
High
Django Resource Management Errors Vulnerability (CVE-2015-5963)
CVE-2015-5963
-
Medium
Django Resource Management Errors Vulnerability (CVE-2015-5964)
CVE-2015-5964
-
Medium
Django Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33571)
CVE-2021-33571
CWE-918
High
Django Uncontrolled Recursion Vulnerability (CVE-2019-14235)
CVE-2019-14235
CWE-674
High
Django Uncontrolled Resource Consumption Vulnerability (CVE-2019-14232)
CVE-2019-14232
CWE-400
High
Django Uncontrolled Resource Consumption Vulnerability (CVE-2019-14233)
CVE-2019-14233
CWE-400
High
Django Uncontrolled Resource Consumption Vulnerability (CVE-2021-45115)
CVE-2021-45115
CWE-400
High
Django Uncontrolled Resource Consumption Vulnerability (CVE-2023-24580)
CVE-2023-24580
CWE-400
High
Django Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-31542)
CVE-2021-31542
CWE-434
High
Django URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-7233)
CVE-2017-7233
CWE-601
Medium
Django URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-7234)
CVE-2017-7234
CWE-601
Medium
Django URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-14574)
CVE-2018-14574
CWE-601
Medium
Django Use of Hard-coded Credentials Vulnerability (CVE-2016-9013)
CVE-2016-9013
CWE-798
Critical
Django Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2019-19844)
CVE-2019-19844
CWE-640
Critical
Django weak secret key
-
CWE-693
Medium