Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Web Application Vulnerabilities

This page lists 24254 vulnerabilities in 62 categories.

Critical: 1581 High: 13032 Medium: 8704 Low: 868 Information: 69
Vulnerability Name
CVE
CWE
Severity
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-6514)
CVE-2007-6514
CWE-200
Medium
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-0434)
CVE-2010-0434
CWE-200
Medium
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2068)
CVE-2010-2068
CWE-200
Medium
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2791)
CVE-2010-2791
CWE-200
Medium
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-3502)
CVE-2012-3502
CWE-200
Medium
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-30556)
CVE-2022-30556
CWE-200
High
Apache HTTP Server Improper Access Control Vulnerability (CVE-2016-4979)
CVE-2016-4979
CWE-284
High
Apache HTTP Server Improper Access Control Vulnerability (CVE-2025-23048)
CVE-2025-23048
CWE-284
Critical
Apache HTTP Server Improper Authentication Vulnerability (CVE-2017-3167)
CVE-2017-3167
CWE-287
Critical
Apache HTTP Server Improper Authentication Vulnerability (CVE-2018-1312)
CVE-2018-1312
CWE-287
Critical
Apache HTTP Server Improper Authentication Vulnerability (CVE-2025-49812)
CVE-2025-49812
CWE-287
High
Apache HTTP Server Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-3303)
CVE-2007-3303
CWE-94
Medium
Apache HTTP Server Improper Encoding or Escaping of Output Vulnerability (CVE-2024-38473)
CVE-2024-38473
CWE-116
High
Apache HTTP Server Improper Encoding or Escaping of Output Vulnerability (CVE-2024-38474)
CVE-2024-38474
CWE-116
Critical
Apache HTTP Server Improper Encoding or Escaping of Output Vulnerability (CVE-2024-38475)
CVE-2024-38475
CWE-116
Critical
Apache HTTP Server Improper Handling of Case Sensitivity Vulnerability (CVE-2001-0766)
CVE-2001-0766
CWE-178
Critical
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2011-3368)
CVE-2011-3368
CWE-20
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2011-3639)
CVE-2011-3639
CWE-20
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2011-4317)
CVE-2011-4317
CWE-20
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2011-4415)
CVE-2011-4415
CWE-20
Low
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2012-0021)
CVE-2012-0021
CWE-20
Low
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2014-0117)
CVE-2014-0117
CWE-20
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2015-0228)
CVE-2015-0228
CWE-20
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2016-2161)
CVE-2016-2161
CWE-20
High
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2016-8612)
CVE-2016-8612
CWE-20
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2017-12171)
CVE-2017-12171
CWE-20
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2017-15715)
CVE-2017-15715
CWE-20
High
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2017-9788)
CVE-2017-9788
CWE-20
Critical
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2024-39573)
CVE-2024-39573
CWE-20
High
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2024-42516)
CVE-2024-42516
CWE-20
High
Apache HTTP Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2001-0925)
CVE-2001-0925
CWE-22
Medium
Apache HTTP Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-41773)
CVE-2021-41773
CWE-22
High
Apache HTTP Server Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2001-0131)
CVE-2001-0131
CWE-59
Low
Apache HTTP Server Improper Locking Vulnerability (CVE-2002-1850)
CVE-2002-1850
CWE-667
High
Apache HTTP Server Improper Locking Vulnerability (CVE-2004-0174)
CVE-2004-0174
CWE-667
High
Apache HTTP Server Improper Locking Vulnerability (CVE-2009-2699)
CVE-2009-2699
CWE-667
High
Apache HTTP Server Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2016-4975)
CVE-2016-4975
CWE-707
Medium
Apache HTTP Server Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') Vulnerability (CVE-2024-24795)
CVE-2024-24795
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Escape, Meta, or Control Sequences Vulnerability (CVE-2024-47252)
CVE-2024-47252
CWE-150
High
Apache HTTP Server Improper Neutralization of Escape, Meta, or Control Sequences Vulnerability (CVE-2025-65082)
CVE-2025-65082
CWE-150
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2000-1205)
CVE-2000-1205
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2003-1581)
CVE-2003-1581
CWE-707
Low
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2005-3352)
CVE-2005-3352
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2006-3918)
CVE-2006-3918
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-4465)
CVE-2007-4465
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5000)
CVE-2007-5000
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6203)
CVE-2007-6203
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6388)
CVE-2007-6388
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6421)
CVE-2007-6421
CWE-707
Low
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0005)
CVE-2008-0005
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0455)
CVE-2008-0455
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-2168)
CVE-2008-2168
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-2939)
CVE-2008-2939
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2687)
CVE-2012-2687
CWE-707
Low
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3499)
CVE-2012-3499
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4558)
CVE-2012-4558
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10092)
CVE-2019-10092
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2008-0456)
CVE-2008-0456
CWE-138
Low
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2002-2272)
CVE-2002-2272
CWE-119
High
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2003-0542)
CVE-2003-0542
CWE-119
High
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-0023)
CVE-2009-0023
CWE-119
Medium
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-3560)
CVE-2009-3560
CWE-119
Medium
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2010-1623)
CVE-2010-1623
CWE-119
Medium
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-1181)
CVE-2012-1181
CWE-119
Medium
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-3583)
CVE-2014-3583
CWE-119
Medium
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-7679)
CVE-2017-7679
CWE-119
Critical
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2018-1301)
CVE-2018-1301
CWE-119
Medium
Apache HTTP Server Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion') Vulnerability (CVE-2009-1955)
CVE-2009-1955
CWE-776
High
Apache HTTP Server Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-38709)
CVE-2023-38709
CWE-1284
High
Apache HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-0197)
CVE-2019-0197
CWE-444
Medium
Apache HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-17567)
CVE-2019-17567
CWE-444
Medium
Apache HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-11993)
CVE-2020-11993
CWE-444
High
Apache HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-9490)
CVE-2020-9490
CWE-444
High
Apache HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2022-26377)
CVE-2022-26377
CWE-444
High
Apache HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2005-2088)
CVE-2005-2088
-
Medium