Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Web Application Vulnerabilities

This page lists 24637 vulnerabilities in 62 categories.

Critical: 1632 High: 13196 Medium: 8851 Low: 887 Information: 71
Vulnerability Name
CVE
CWE
Severity
Http redirect security bypass
-
CWE-20
High
HTTP response splitting with cloud storage
-
CWE-113
Medium
HTTP Strict Transport Security (HSTS) Errors and Warnings
-
CWE-319
Information
HTTP Strict Transport Security (HSTS) Policy Not Enabled
-
CWE-1428
Medium
HTTP verb tampering via POST
-
CWE-285
High
HTTP.sys remote code execution vulnerability
CVE-2015-1635
CWE-119
High
HTTP/2 pseudo-header server side request forgery
-
CWE-918
High
Httpoxy vulnerability
-
CWE-918
Medium
HTTPS connection uses outdated TLS version
-
CWE-327
Medium
HTTPS connection with weak key length
-
CWE-326
Medium
IBM Aspera Faspex RCE (CVE-2022-47986)
CVE-2022-47986
CWE-502
Critical
IBM Lotus Domino web server Cross-Site Scripting vulnerabilities
CVE-2012-3302
CWE-79
High
IBM ODM JNDI injection (CVE-2024-22319)
CVE-2024-22319
CWE-943
Critical
IBM RTC Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-29786)
CVE-2021-29786
CWE-312
Medium
IBM RTC Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-0748)
CVE-2012-0748
CWE-352
Medium
IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4691)
CVE-2020-4691
-
Medium
IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4697)
CVE-2020-4697
-
Medium
IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4733)
CVE-2020-4733
-
Medium
IBM RTC CVE-2015-1971 Vulnerability (CVE-2015-1971)
CVE-2015-1971
-
Medium
IBM RTC CVE-2017-1191 Vulnerability (CVE-2017-1191)
CVE-2017-1191
-
Medium
IBM RTC CVE-2018-1694 Vulnerability (CVE-2018-1694)
CVE-2018-1694
-
Medium
IBM RTC CVE-2019-4084 Vulnerability (CVE-2019-4084)
CVE-2019-4084
-
Medium
IBM RTC CVE-2020-4964 Vulnerability (CVE-2020-4964)
CVE-2020-4964
-
Medium
IBM RTC Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-4989)
CVE-2020-4989
CWE-668
Medium
IBM RTC Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-29701)
CVE-2021-29701
CWE-668
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3050)
CVE-2014-3050
CWE-200
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3092)
CVE-2014-3092
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6131)
CVE-2014-6131
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-0113)
CVE-2015-0113
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-4962)
CVE-2015-4962
CWE-200
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-7449)
CVE-2015-7449
CWE-200
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0372)
CVE-2016-0372
CWE-200
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2865)
CVE-2016-2865
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2947)
CVE-2016-2947
CWE-200
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2987)
CVE-2016-2987
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6024)
CVE-2016-6024
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9700)
CVE-2016-9700
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9735)
CVE-2016-9735
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1099)
CVE-2017-1099
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1240)
CVE-2017-1240
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1251)
CVE-2017-1251
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1488)
CVE-2017-1488
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1507)
CVE-2017-1507
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1509)
CVE-2017-1509
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1524)
CVE-2017-1524
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1559)
CVE-2017-1559
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1570)
CVE-2017-1570
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1725)
CVE-2017-1725
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1734)
CVE-2017-1734
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1423)
CVE-2018-1423
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1606)
CVE-2018-1606
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1734)
CVE-2018-1734
CWE-200
Medium
IBM RTC Files or Directories Accessible to External Parties Vulnerability (CVE-2017-1602)
CVE-2017-1602
CWE-552
Medium
IBM RTC Generation of Error Message Containing Sensitive Information (CVE-2020-4487)
CVE-2020-4487
CWE-209
Medium
IBM RTC Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2020-4544)
CVE-2020-4544
CWE-209
Medium
IBM RTC Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-1753)
CVE-2017-1753
CWE-94
Medium
IBM RTC Improper Input Validation Vulnerability (CVE-2015-1928)
CVE-2015-1928
CWE-20
Medium
IBM RTC Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-4252)
CVE-2019-4252
CWE-22
High
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-1029)
CVE-2011-1029
CWE-707
Low
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2606)
CVE-2011-2606
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2607)
CVE-2011-2607
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5404)
CVE-2013-5404
CWE-707
Low
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-0122)
CVE-2015-0122
CWE-707
Low
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-0123)
CVE-2015-0123
CWE-707
Low
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-0130)
CVE-2015-0130
CWE-707
Low
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-7453)
CVE-2015-7453
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-7471)
CVE-2015-7471
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-0273)
CVE-2016-0273
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-0285)
CVE-2016-0285
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-0331)
CVE-2016-0331
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2864)
CVE-2016-2864
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2926)
CVE-2016-2926
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2986)
CVE-2016-2986
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-3014)
CVE-2016-3014
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6035)
CVE-2016-6035
CWE-707
Medium