Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Web Application Vulnerabilities

This page lists 24342 vulnerabilities in 62 categories.

Critical: 1593 High: 13071 Medium: 8734 Low: 875 Information: 69
Vulnerability Name
CVE
CWE
Severity
WordPress Plugin WP Open Graph Cross-Site Request Forgery (1.6.1)
CVE-2019-5960
CWE-352
High
WordPress Plugin WP Open Social Cross-Site Scripting (5.0)
CVE-2023-25792
CWE-79
High
WordPress Plugin WP Page Builder Cross-Site Scripting (1.2.6)
CVE-2022-40963
CWE-79
High
WordPress Plugin WP Page Builder Cross-Site Scripting (1.2.8)
CVE-2022-3830
CWE-79
High
WordPress Plugin WP Page Builder Multiple Vulnerabilities (1.2.3)
CVE-2021-24208
CWE-264
High
WordPress Plugin WP Page Widget Cross-Site Scripting (2.7)
-
CWE-79
High
WordPress Plugin WP Payeezy Pay Local File Inclusion (2.97)
CVE-2018-20985
CWE-22
High
WordPress Plugin WP People 'wp-people-popup.php' SQL Injection (2.0)
-
CWE-89
High
WordPress Plugin WP Performance Score Booster-Optimize Speed, Enable Cache & Page Preload Cross-Site Request Forgery (2.0)
CVE-2021-24776
CWE-352
High
WordPress Plugin WP Photo Album 'id' Parameter Cross-Site Scripting (1.5.1)
-
CWE-79
High
WordPress Plugin WP Photo Album 'photo' Parameter SQL Injection (1.0)
CVE-2008-0939
CWE-89
High
WordPress Plugin WP Photo Album Plus 'wppa-album' Parameter SQL Injection (4.1.1)
-
CWE-89
High
WordPress Plugin WP Photo Album Plus Cross-Site Request Forgery (4.8.11)
-
CWE-352
High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (4.9.2)
-
CWE-79
High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.0.10)
-
CWE-79
High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.0.2)
CVE-2013-3254
CWE-79
High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.4.17)
CVE-2014-8814
CWE-79
High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.4.7)
-
CWE-79
High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (6.1.2)
CVE-2015-3647
CWE-79
High
WordPress Plugin WP Photo Album Plus Multiple Cross-Site Scripting Vulnerabilities (5.4.4)
-
CWE-79
High
WordPress Plugin WP Photo Album Plus Unspecified Vulnerability (6.5.00)
-
-
High
WordPress Plugin WP Photo Album Plus Unspecified Vulnerability (7.2.04)
-
-
High
WordPress Plugin WP PHP widget Information Disclosure (1.0.2)
CVE-2013-0721
CWE-200
High
WordPress Plugin WP Pipes Unspecified Vulnerability (1.28)
-
-
High
WordPress Plugin WP Planet Cross-Site Scripting (0.1)
CVE-2014-4592
CWE-79
High
WordPress Plugin WP Plugin Info Card Unspecified Vulnerability (2.3.6)
-
-
High
WordPress Plugin WP Plugin Manager (WPPM) Cross-Site Scripting (1.6.4.b)
CVE-2014-4593
CWE-79
High
WordPress Plugin WP Poll Maker-Best WordPress Poll for Voting Contest Arbitrary File Upload (3.4)
CVE-2024-32514
CWE-434
High
WordPress Plugin WP Popup Banners includes Backdoor [Only if downloaded via the vendor website] (1.2.3)
CVE-2021-24867
CWE-912
High
WordPress Plugin WP Popup Builder-Popup Forms, Marketing PoPuP & Newsletter Multiple Vulnerabilities (1.2.8)
CVE-2022-2405
CWE-862
High
WordPress Plugin WP Popup Lite-Responsive popup for WordPress includes Backdoor [Only if downloaded via the vendor website] (1.0.8)
CVE-2021-24867
CWE-912
High
WordPress Plugin WP Popups-WordPress Popup builder Cross-Site Scripting (2.1.4.6)
CVE-2022-4716
CWE-79
High
WordPress Plugin WP Portfolio Gallery Cross-Site Scripting (1.0.0)
-
CWE-79
High
WordPress Plugin WP Post Page Clone SQL Injection (1.0)
-
CWE-89
High
WordPress Plugin WP Post Popup Directory Traversal (2.0)
-
CWE-22
High
WordPress Plugin WP Post Popup Directory Traversal (2.1.1)
-
CWE-22
High
WordPress Plugin WP Post Rating Security Bypass (2.4.6)
CVE-2023-25785
CWE-862
High
WordPress Plugin WP Post to PDF Cross-Site Scripting (2.3.1)
-
CWE-79
High
WordPress Plugin WP Post to PDF Enhanced Cross-Site Scripting (1.0.5)
-
CWE-79
High
WordPress Plugin WP Posts Carousel Cross-Site Scripting (1.3.6)
-
CWE-79
High
WordPress Plugin WP Prayer Cross-Site Request Forgery (1.5.4)
-
CWE-352
High
WordPress Plugin WP Prayer Cross-Site Scripting (1.6.1)
CVE-2021-24313
CWE-79
High
WordPress Plugin WP Prayer Cross-Site Scripting (1.9.6)
CVE-2023-25705
CWE-79
High
WordPress Plugin WP Prayer Multiple Cross-Site Request Forgery Vulnerabilities (1.6.5)
-
CWE-352
High
WordPress Plugin WP Print Friendly Cross-Site Scripting (0.6)
-
CWE-79
High
WordPress Plugin WP Print Friendly Security Bypass (0.5.2)
-
CWE-264
High
WordPress Plugin WP Private Content Plus Cross-Site Request Forgery (3.1)
-
CWE-352
High
WordPress Plugin WP Private Content Plus Security Bypass (1.31)
CVE-2019-15816
CWE-264
High
WordPress Plugin WP Private Message Insecure Direct Object Reference (1.0.5)
CVE-2023-0453
CWE-639
High
WordPress Plugin WP Private Messages SQL Injection (1.0.1)
-
CWE-89
High
WordPress Plugin WP PRO Advertising System-All In One Ad Manager SQL Injection (4.6.18)
-
CWE-89
High
WordPress Plugin WP Product Review Lite Cross-Site Scripting (3.7.5)
-
CWE-79
High
WordPress Plugin WP Product Review Lite Unspecified Vulnerability (3.7.6)
-
-
High
WordPress Plugin WP Project Manager-Task, team, and project management featuring kanban board and gantt charts Cross-Site Request Forgery (2.4.0)
CVE-2020-36745
CWE-352
High
WordPress Plugin WP Project Manager-Task, team, and project management featuring kanban board and gantt charts Cross-Site Request Forgery (2.4.9)
-
CWE-352
High
WordPress Plugin WP Project Manager-Task, team, and project management featuring kanban board and gantt charts Cross-Site Scripting (2.4.13)
CVE-2021-36826
CWE-79
High
WordPress Plugin WP Project Manager-Task, team, and project management featuring kanban board and gantt charts Privilege Escalation (2.6.4)
CVE-2023-3636
CWE-269
High
WordPress Plugin WP Publication Archive 'file' Parameter Directory Traversal (2.3)
-
CWE-22
High
WordPress Plugin WP Quick Booking Manager Cross-Site Scripting (1.1)
-
CWE-79
High
WordPress Plugin WP Quick FrontEnd Editor Multiple Vulnerabilities (5.5)
-
CWE-264
High
WordPress Plugin WP Reactions Lite Cross-Site Scripting (1.3.5)
CVE-2021-24723
CWE-79
High
WordPress Plugin WP Real Estate Unspecified Vulnerability (2.0)
-
-
High
WordPress Plugin WP Realtime Sitemap Multiple Unspecified Vulnerabilities (1.5.5)
-
-
High
WordPress Plugin WP Reroute Email Cross-Site Request Forgery (1.4.6)
CVE-2023-27606
CWE-352
High
WordPress Plugin WP Reroute Email Cross-Site Scripting (1.4.9)
CVE-2023-3168
CWE-79
High
WordPress Plugin WP Reroute Email SQL Injection (1.4.6)
CVE-2023-27605
CWE-89
High
WordPress Plugin WP Reset-Most Advanced WordPress Reset Tool Cross-Site Scripting (1.86)
CVE-2021-24424
CWE-79
High
WordPress Plugin WP Responsive Tabs horizontal vertical and accordion Tabs Unspecified Vulnerability (1.1.1)
-
-
High
WordPress Plugin WP Responsive Testimonials Slider And Widget Cross-Site Scripting (1.5)
CVE-2022-4750
CWE-79
High
WordPress Plugin WP REST API (WP API) Cross-Site Request Forgery (1.1)
-
CWE-352
High
WordPress Plugin WP REST API (WP API) Cross-Site Scripting (1.2.2)
-
CWE-79
High
WordPress Plugin WP REST API (WP API) Information Disclosure (1.2)
-
CWE-200
High
WordPress Plugin WP REST API (WP API) Security Bypass (1.2.1)
-
CWE-264
High
WordPress Plugin WP Retina 2x Cross-Site Scripting (5.2.0)
CVE-2018-0511
CWE-79
High
WordPress Plugin WP Review Multiple Unspecified Vulnerabilities (2.0)
-
-
High