🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Web Application Vulnerabilities
This page lists
24342 vulnerabilities
in
62 categories
.
Critical: 1593
High: 13071
Medium: 8734
Low: 875
Information: 69
Vulnerability Name
CVE
CWE
Severity
WordPress Plugin Social Network Tabs Information Disclosure (1.7.1)
CVE-2018-20555
CWE-200
High
WordPress Plugin Social Networking & E-commerce Arbitrary File Upload (0.0.32)
-
CWE-434
High
WordPress Plugin Social Photo Gallery Remote Code Execution (1.0)
CVE-2019-14467
CWE-94
High
WordPress Plugin Social Review includes Backdoor [Only if downloaded via the vendor website] (1.0.8)
CVE-2021-24867
CWE-912
High
WordPress Plugin Social Rocket-Social Sharing Cross-Site Request Forgery (1.2.9)
CVE-2020-5611
CWE-352
High
WordPress Plugin Social Share Button Cross-Site Scripting (2.1)
-
CWE-79
High
WordPress Plugin Social Share Buttons-Social Pug Cross-Site Scripting (1.2.5)
CVE-2016-10736
CWE-79
High
WordPress Plugin Social Share Buttons-Social Pug Multiple Unspecified Vulnerabilities (1.3.1)
-
-
High
WordPress Plugin Social Share Icons & Social Share Buttons Cross-Site Scripting (3.0.5)
-
CWE-79
High
WordPress Plugin Social Share Icons & Social Share Buttons Security Bypass (2.4.5)
-
CWE-264
High
WordPress Plugin Social Share Icons & Social Share Buttons Security Bypass (3.0.2)
-
CWE-264
High
WordPress Plugin Social Share Icons & Social Share Buttons Unspecified Vulnerability (1.4)
-
-
High
WordPress Plugin Social Sharing Toolkit Cross-Site Scripting (2.1.1)
CVE-2013-6280
CWE-79
High
WordPress Plugin Social Sharing Toolkit Cross-Site Scripting (2.6)
CVE-2022-4835
CWE-79
High
WordPress Plugin Social Sharing-Kiwi Security Bypass (2.0.10)
-
CWE-264
High
WordPress Plugin Social Sharing-Kiwi Security Bypass (2.1.0)
-
CWE-264
High
WordPress Plugin Social Sharing-Sassy Social Share Cross-Site Scripting (3.3.25)
-
CWE-79
High
WordPress Plugin Social Sharing-Sassy Social Share Cross-Site Scripting (3.3.3)
-
CWE-79
High
WordPress Plugin Social Sharing-Sassy Social Share Cross-Site Scripting (3.3.39)
CVE-2021-24746
CWE-79
High
WordPress Plugin Social Sharing-Sassy Social Share Cross-Site Scripting (3.3.44)
CVE-2022-4451
CWE-79
High
WordPress Plugin Social Sharing-Sassy Social Share PHP Object Injection (3.3.23)
CVE-2021-39321
CWE-915
High
WordPress Plugin Social Sharing-Social Warfare Cross-Site Scripting (3.5.3)
-
CWE-79
High
WordPress Plugin Social Sharing-Social Warfare Malicious Code (4.4.7.1)
CVE-2024-6297
CWE-506
High
WordPress Plugin Social Sharing-Social Warfare Multiple Vulnerabilities (3.5.2)
CVE-2019-9978
CWE-94
High
WordPress Plugin Social Slider 'rA[]' Parameter SQL Injection (5.6.5)
CVE-2011-5286
CWE-89
High
WordPress Plugin Social Slider Widget Cross-Site Scripting (1.8.4)
CVE-2021-24196
CWE-79
High
WordPress Plugin Social Sticky Animated Backdoor (1.0)
-
CWE-95
High
WordPress Plugin Social Tape Cross-Site Request Forgery (1.0)
CVE-2021-24411
CWE-352
High
WordPress Plugin SocialFit 'msg' Parameter Cross-Site Scripting (1.2.2)
-
CWE-79
High
WordPress Plugin SocialGrid 'default_services' Parameter Cross-Site Scripting (2.3)
-
CWE-79
High
WordPress Plugin SodaHead Polls Multiple Cross-Site Scripting Vulnerabilities (2.0.2)
CVE-2011-5304
CWE-79
High
WordPress Plugin Software License Manager Cross-Site Request Forgery (4.4.5)
CVE-2021-20782
CWE-352
High
WordPress Plugin Software License Manager Cross-Site Request Forgery (4.5.0)
CVE-2021-24711
CWE-352
High
WordPress Plugin Software License Manager Cross-Site Scripting (4.4.7)
CVE-2021-24560
CWE-79
High
WordPress Plugin Software License Manager Cross-Site Scripting (4.4.9)
-
CWE-79
High
WordPress Plugin Solidres-Hotel booking for WordPress Multiple Cross-Site Scripting Vulnerabilities (0.9.4)
CVE-2023-1377
CWE-79
High
WordPress Plugin Solve Media CAPTCHA Cross-Site Request Forgery (1.1.0)
-
CWE-352
High
WordPress Plugin Sooqr Search Restricted File Upload (1.1.4)
-
CWE-79
High
WordPress Plugin SoundCloud Is Gold 'width' Parameter Cross-Site Scripting (2.1)
CVE-2012-6624
CWE-79
High
WordPress Plugin SoundCloud Is Gold Cross-Site Scripting (2.3.1)
-
CWE-79
High
WordPress Plugin SoundPress Cross-Site Scripting (2.2.6)
-
CWE-79
High
WordPress Plugin Soundy Audio Playlist Cross-Site Scripting (4.6)
CVE-2018-6001
CWE-79
High
WordPress Plugin Soundy Background Music Cross-Site Scripting (3.1)
-
CWE-79
High
WordPress Plugin Soundy Background Music Cross-Site Scripting (3.9)
CVE-2018-6002
CWE-79
High
WordPress Plugin sourceAFRICA Cross-Site Scripting (0.1.3)
CVE-2015-6920
CWE-79
High
WordPress Plugin SP Project & Document Manager Arbitrary File Upload (4.21)
CVE-2021-24347
CWE-434
High
WordPress Plugin SP Project & Document Manager Arbitrary File Upload (4.22)
-
CWE-434
High
WordPress Plugin SP Project & Document Manager Cross-Site Scripting (4.25)
CVE-2021-38315
CWE-79
High
WordPress Plugin SP Project & Document Manager Multiple SQL Injection Vulnerabilities (2.4.3)
CVE-2014-9178
CWE-89
High
WordPress Plugin SP Project & Document Manager Multiple Vulnerabilities (2.5.9.7)
-
CWE-434
High
WordPress Plugin SP Project & Document Manager SQL Injection (2.5.3)
-
CWE-89
High
WordPress Plugin SP Project & Document Manager Unspecified Vulnerability (2.5.7.3)
-
-
High
WordPress Plugin SP Project & Document Manager Unspecified Vulnerability (2.5.8.0)
-
-
High
WordPress Plugin SP Project & Document Manager Unspecified Vulnerability (2.6.2.5)
-
-
High
WordPress Plugin SP Rental Manager SQL Injection (1.5.3)
CVE-2021-38324
CWE-89
High
WordPress Plugin Spam Free WordPress Security Bypass (1.9.2)
-
CWE-264
High
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.113)
-
CWE-79
High
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.127.3)
CVE-2019-17515
CWE-79
High
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.136.3)
-
CWE-79
High
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.154)
-
CWE-79
High
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.21)
-
CWE-79
High
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Multiple Cross-Site Scripting Vulnerabilities (5.173)
CVE-2022-28222
CWE-79
High
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk SQL Injection (5.148)
CVE-2021-24131
CWE-89
High
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk SQL Injection (5.153.3)
CVE-2021-24295
CWE-89
High
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk SQL Injection (5.185)
CVE-2022-3302
CWE-89
High
WordPress Plugin spam-byebye Cross-Site Scripting (2.2.1)
CVE-2018-16206
CWE-79
High
WordPress Plugin SpamBam Key Calculation Security Bypass (2.1)
-
CWE-264
High
WordPress Plugin SpamTask Arbitrary File Upload (1.3.6)
-
CWE-434
High
WordPress Plugin SpeakOut! Email Petitions Cross-Site Scripting (2.13.2)
-
CWE-79
High
WordPress Plugin Special Text Boxes Arbitrary File Upload (5.1.90)
-
CWE-434
High
WordPress Plugin Special Text Boxes Unspecified Vulnerability (5.5.102)
-
-
High
WordPress Plugin Spectra-WordPress Gutenberg Blocks Cross-Site Scripting (1.14.11)
CVE-2020-36656
CWE-79
High
WordPress Plugin Spectra-WordPress Gutenberg Blocks Cross-Site Scripting (1.25.5)
-
CWE-79
High
WordPress Plugin Spectra-WordPress Gutenberg Blocks Multiple Security Bypass Vulnerabilities (2.3.0)
CVE-2023-23834
CWE-284
High
WordPress Plugin Spectra-WordPress Gutenberg Blocks Security Bypass (1.14.7)
-
CWE-264
High
«
1
...
285
286
287
...
325
»
