Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Application Vulnerabilities

This page lists 23441 vulnerabilities in 68 categories.

Critical: 1499 High: 12791 Medium: 8230 Low: 857 Information: 64
Vulnerability Name
CVE
CWE
Severity
WordPress Plugin Answer My Question Multiple Cross-Site Scripting Vulnerabilities (1.1)
-
CWE-79
High
WordPress Plugin Answer My Question SQL Injection (1.3)
-
CWE-89
High
WordPress Plugin Anthologize Cross-Site Scripting (0.7.7)
-
CWE-79
High
WordPress Plugin Anti Plagiarism Cross-Site Scripting (3.60)
CVE-2016-1000128
CWE-79
High
WordPress Plugin Anti Spam Protection without CAPTCHA powered by Keypic Security Bypass (2.1.2)
-
CWE-264
High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (1.2.05.20)
-
CWE-79
High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.22)
-
CWE-79
High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.42)
-
CWE-79
High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.49)
-
CWE-79
High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.17.29)
-
CWE-79
High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Local File Inclusion (4.18.63)
-
CWE-22
High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Multiple Cross-Site Scripting Vulnerabilities (4.15.17)
-
CWE-79
High
WordPress Plugin Anti-Splog Cross-Site Scripting (2.1.7)
-
CWE-79
High
WordPress Plugin AnyComment Cross-Site Scripting (0.0.32)
CVE-2018-21001
CWE-79
High
WordPress Plugin AnyFont Cross-Site Scripting (2.2.3)
CVE-2014-4515
CWE-79
High
WordPress Plugin AnyMind Widget Cross-Site Request Forgery (1.1)
CVE-2022-2435
CWE-352
High
WordPress Plugin AnyVar Cross-Site Scripting (0.1.1)
CVE-2017-6103
CWE-79
High
WordPress Plugin Aoi Tori Cross-Site Scripting (1.1)
CVE-2021-24435
CWE-79
High
WordPress Plugin aoringo CAT setter Cross-Site Scripting (0.1.1)
-
CWE-79
High
WordPress Plugin aoringo LOG maker Cross-Site Scripting (0.1.3)
-
CWE-79
High
WordPress Plugin aoringo TAG upper Cross-Site Scripting (0.1.6)
-
CWE-79
High
WordPress Plugin AP Companion includes Backdoor [Only if downloaded via the vendor website] (1.0.6)
CVE-2021-24867
CWE-912
High
WordPress Plugin API Bearer Auth Cross-Site Scripting (20181229)
CVE-2019-16332
CWE-79
High
WordPress Plugin Apocalypse Meow Security Bypass (21.2.7)
-
CWE-287
High
WordPress Plugin ApplyOnline-Application Form Builder and Manager Arbitrary File Disclosure (1.9.92)
-
CWE-538
High
WordPress Plugin ApplyOnline-Application Form Builder and Manager Cross-Site Scripting (1.9.94)
-
CWE-79
High
WordPress Plugin Appointment Booking Calendar and Online Scheduling-BookingPress Arbitrary File Creation (1.1.5)
CVE-2024-6467
CWE-73
High
WordPress Plugin Appointment Booking Calendar and Online Scheduling-BookingPress Insecure Direct Object Reference (1.0.30)
CVE-2022-4340
CWE-639
High
WordPress Plugin Appointment Booking Calendar and Online Scheduling-BookingPress Security Bypass (1.1.5)
CVE-2024-6660
CWE-863
High
WordPress Plugin Appointment Booking Calendar and Online Scheduling-BookingPress SQL Injection (1.0.10)
CVE-2022-0739
CWE-89
High
WordPress Plugin Appointment Booking Calendar Cross-Site Scripting (1.3.18)
CVE-2019-14791
CWE-79
High
WordPress Plugin Appointment Booking Calendar Cross-Site Scripting (1.3.34)
CVE-2020-9371
CWE-79
High
WordPress Plugin Appointment Booking Calendar CSV Injection (1.3.34)
CVE-2020-9372
CWE-20
High
WordPress Plugin Appointment Booking Calendar Multiple Vulnerabilities (1.1.24)
-
CWE-264
High
WordPress Plugin Appointment Booking Calendar Multiple Vulnerabilities (1.1.7)
CVE-2015-7320
CWE-89
High
WordPress Plugin Appointment Booking Calendar SQL Injection (1.1.23)
-
CWE-89
High
WordPress Plugin Appointment Booking Calendar-BirchPress Scheduler Unspecified Vulnerability (1.13.0)
-
-
High
WordPress Plugin Appointment Calendar Multiple Cross-Site Scripting Vulnerabilities (2.7.4)
-
CWE-79
High
WordPress Plugin Appointment Hour Booking-WordPress Booking Cross-Site Scripting (1.1.44)
CVE-2019-13505
CWE-79
High
WordPress Plugin Appointment Hour Booking-WordPress Booking Cross-Site Scripting (1.3.15)
CVE-2021-24673
CWE-79
High
WordPress Plugin Appointment Hour Booking-WordPress Booking Cross-Site Scripting (1.3.16)
CVE-2021-24712
CWE-79
High
WordPress Plugin Appointment Scheduling for Zoom GoogleMeet and more-Wappointment Cross-Site Scripting (2.2.4)
-
CWE-79
High
WordPress Plugin Appointments Cross-Site Scripting (2.2.2.2)
-
CWE-79
High
WordPress Plugin Appointments PHP Object Injection (2.2.1)
-
CWE-915
High
WordPress Plugin Appointments Scheduler Cross-Site Scripting (1.5)
CVE-2014-4579
CWE-79
High
WordPress Plugin Appointments Unspecified Vulnerability (2.2.2.1)
-
-
High
WordPress Plugin AppPresser-Mobile App Framework Cross-Site Scripting (1.1.4)
-
CWE-79
High
WordPress Plugin AppPresser-Mobile App Framework Security Bypass (4.3.0)
CVE-2024-32776
CWE-862
High
WordPress Plugin AppPresser-Mobile App Framework Security Bypass (4.3.2)
CVE-2024-4611
CWE-287
High
WordPress Plugin Apptivo Business Site CRM Multiple Cross-Site Scripting Vulnerabilities (1.2.9)
-
CWE-79
High
WordPress Plugin Apptivo eCommerce Multiple Cross-Site Scripting Vulnerabilities (1.1.5)
-
CWE-79
High
WordPress Plugin April's Super Functions Pack Cross-Site Scripting (1.4.7)
CVE-2014-100026
CWE-79
High
WordPress Plugin Arabic Font Multiple Vulnerabilities (1.2)
-
CWE-352
High
WordPress Plugin ArcadePress 'upload.php' Arbitrary File Upload (0.65)
-
CWE-434
High
WordPress Plugin Archive Posts Sort Customize Cross-Site Scripting (1.5)
-
CWE-79
High
WordPress Plugin Archivist-Custom Archive Templates Multiple Vulnerabilities (1.7.4)
CVE-2023-25490
CWE-352
High
WordPress Plugin arcResBookingWidget Multiple Vulnerabilities (1.0)
-
CWE-352
High
WordPress Plugin Are You a Human-The Fun Spam Blocker Cross-Site Scripting (1.4.32)
-
CWE-79
High
WordPress Plugin ARForms:Wordpress Form Builder Arbitrary File Deletion (3.5.1)
-
CWE-73
High
WordPress Plugin ARForms:Wordpress Form Builder Arbitrary File Deletion (3.7.1)
CVE-2019-16902
CWE-73
High
WordPress Plugin ARI Adminer-WordPress Database Manager Cross-Site Request Forgery (1.1.13)
-
CWE-352
High
WordPress Plugin Arigato Autoresponder and Newsletter Cross-Site Scripting (2.3.1)
-
CWE-79
High
WordPress Plugin Arigato Autoresponder and Newsletter Cross-Site Scripting (2.7.1.1)
CVE-2023-0543
CWE-79
High
WordPress Plugin Arigato Autoresponder and Newsletter Multiple Unspecified Vulnerabilities (2.4.2)
-
-
High
WordPress Plugin Arigato Autoresponder and Newsletter Multiple Vulnerabilities (2.5.1.6)
CVE-2018-1002009
CWE-89
High
WordPress Plugin Arigato Autoresponder and Newsletter Remote Code Execution (2.5.1.9)
CVE-2018-18461
CWE-94
High
WordPress Plugin Arlo training and event management system Cross-Site Scripting (2.1.7.1)
-
CWE-79
High
WordPress Plugin ARMember-Content Restriction & Membership Security Bypass (1.4)
-
CWE-264
High
WordPress Plugin ARPrice-Responsive Pricing Table Cross-Site Request Forgery (2.3)
CVE-2019-14679
CWE-352
High
WordPress Plugin ARPrice-Responsive Pricing Table Cross-Site Scripting (2.2)
-
CWE-79
High
WordPress Plugin ARS Reg Secure Cross-Site Scripting (1.1)
-
CWE-79
High
WordPress Plugin Art-Picture-Gallery Arbitrary File Upload (1.2.9)
CVE-2018-9206
CWE-434
High
WordPress Plugin Article Directory Cross-Site Scripting (1.3)
-
CWE-79
High
WordPress Plugin Article Directory Redux Cross-Site Scripting (1.0.2)
-
CWE-79
High
WordPress Plugin article2pdf Multiple Vulnerabilities (0.27)
CVE-2019-1010257
CWE-538
High