Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Web Application Vulnerabilities

This page lists 24254 vulnerabilities in 62 categories.

Critical: 1581 High: 13032 Medium: 8704 Low: 868 Information: 69
Vulnerability Name
CVE
CWE
Severity
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2006-0857)
CVE-2006-0857
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6208)
CVE-2008-6208
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3444)
CVE-2009-3444
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4083)
CVE-2009-4083
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-0997)
CVE-2010-0997
CWE-707
Low
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-4757)
CVE-2010-4757
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-0457)
CVE-2011-0457
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4920)
CVE-2011-4920
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3843)
CVE-2012-3843
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-2750)
CVE-2013-2750
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1041)
CVE-2015-1041
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1057)
CVE-2015-1057
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-11734)
CVE-2018-11734
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-16381)
CVE-2018-16381
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-17423)
CVE-2018-17423
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-50905)
CVE-2022-50905
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-50906)
CVE-2022-50906
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-36121)
CVE-2023-36121
CWE-707
Medium
e107 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2011-1513)
CVE-2011-1513
CWE-138
High
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2006-2416)
CVE-2006-2416
CWE-138
Medium
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5320)
CVE-2008-5320
CWE-138
Medium
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-1409)
CVE-2009-1409
CWE-138
Medium
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-4084)
CVE-2009-4084
CWE-138
High
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-4921)
CVE-2011-4921
CWE-138
Medium
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-4946)
CVE-2011-4946
CWE-138
Medium
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10378)
CVE-2016-10378
CWE-138
High
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-16389)
CVE-2018-16389
CWE-138
Medium
e107 Inadequate Encryption Strength Vulnerability (CVE-2021-27885)
CVE-2021-27885
CWE-326
High
e107 Other Vulnerability (CVE-2003-1191)
CVE-2003-1191
-
Medium
e107 Other Vulnerability (CVE-2004-2028)
CVE-2004-2028
-
Medium
e107 Other Vulnerability (CVE-2004-2031)
CVE-2004-2031
-
Medium
e107 Other Vulnerability (CVE-2004-2039)
CVE-2004-2039
-
Medium
e107 Other Vulnerability (CVE-2004-2040)
CVE-2004-2040
-
Medium
e107 Other Vulnerability (CVE-2004-2042)
CVE-2004-2042
-
High
e107 Other Vulnerability (CVE-2004-2262)
CVE-2004-2262
-
Medium
e107 Other Vulnerability (CVE-2005-1949)
CVE-2005-1949
-
High
e107 Other Vulnerability (CVE-2005-1966)
CVE-2005-1966
-
High
e107 Other Vulnerability (CVE-2005-2327)
CVE-2005-2327
-
Medium
e107 Other Vulnerability (CVE-2005-2559)
CVE-2005-2559
-
High
e107 Other Vulnerability (CVE-2005-2805)
CVE-2005-2805
-
Medium
e107 Other Vulnerability (CVE-2005-3521)
CVE-2005-3521
-
High
e107 Other Vulnerability (CVE-2005-3594)
CVE-2005-3594
-
Medium
e107 Other Vulnerability (CVE-2005-4051)
CVE-2005-4051
-
Medium
e107 Other Vulnerability (CVE-2005-4224)
CVE-2005-4224
-
High
e107 Other Vulnerability (CVE-2006-0682)
CVE-2006-0682
-
Medium
e107 Other Vulnerability (CVE-2006-2590)
CVE-2006-2590
-
Medium
e107 Other Vulnerability (CVE-2006-2591)
CVE-2006-2591
-
Medium
e107 Other Vulnerability (CVE-2006-3259)
CVE-2006-3259
-
Medium
e107 Other Vulnerability (CVE-2006-4548)
CVE-2006-4548
-
High
e107 Other Vulnerability (CVE-2006-4757)
CVE-2006-4757
-
Medium
e107 Other Vulnerability (CVE-2006-4794)
CVE-2006-4794
-
Medium
e107 Other Vulnerability (CVE-2006-5786)
CVE-2006-5786
-
High
e107 Other Vulnerability (CVE-2007-3429)
CVE-2007-3429
-
Medium
e107 Other Vulnerability (CVE-2010-0996)
CVE-2010-0996
-
Medium
e107 Other Vulnerability (CVE-2010-2098)
CVE-2010-2098
-
High
e107 Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-2020)
CVE-2008-2020
CWE-264
Medium
e107 Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-2099)
CVE-2010-2099
CWE-264
High
e107 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-16388)
CVE-2018-16388
CWE-434
High
e107 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-50907)
CVE-2022-50907
CWE-434
High
e107 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-50916)
CVE-2022-50916
CWE-434
High
easyXDM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5212)
CVE-2013-5212
CWE-707
Medium
easyXDM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-1403)
CVE-2014-1403
CWE-707
Medium
easyXDM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-27739)
CVE-2023-27739
CWE-707
Medium
Edge Side Include injection
-
CWE-918
High
Ektron CMS Account Hijack
-
CWE-288
High
Ektron CMS authentication bypass
CVE-2018-12596
CWE-285
High
Ektron CMS multiple vulnerabilities
-
CWE-434
High
Ektron CMS unauthenticated code execution and Local File Read
CVE-2012-5358
CWE-20
High
Ektron CMS400.NET ContentRatingGraph.aspx SQL injection
CVE-2008-5122
CWE-89
High
EktronCMS Saxon XSLT parser remote code execution
CVE-2015-0931
CWE-78
High
Elasticsearch remote code execution
CVE-2014-3120
CWE-78
High
Elasticsearch service accessible
-
CWE-200
High
elFinder RCE (CVE-2021-32682)
CVE-2021-32682
CWE-22
High
Elgg Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2021-3964)
CVE-2021-3964
CWE-639
Medium
Elgg Exposure of Private Personal Information to an Unauthorized Actor Vulnerability (CVE-2021-3980)
CVE-2021-3980
CWE-359
High