Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Web Application Vulnerabilities
This page lists
23441 vulnerabilities
in
68 categories
.
Critical: 1499
High: 12791
Medium: 8230
Low: 857
Information: 64
Vulnerability Name
CVE
CWE
Severity
Hesk Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-5287)
CVE-2011-5287
CWE-707
Medium
Hesk Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13897)
CVE-2020-13897
CWE-707
Medium
Hiawatha Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-8358)
CVE-2019-8358
CWE-22
High
Hibernate Query Language (HQL) Injection
-
CWE-564
High
Highcharts JS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29489)
CVE-2021-29489
CWE-707
Medium
Highcharts JS Incorrect Regular Expression Vulnerability (CVE-2018-20801)
CVE-2018-20801
CWE-185
High
HipChat for JIRA plugin - Velocity template injection
CVE-2015-5603
CWE-94
High
Horde Imp Unauthenticated Remote Command Execution
CVE-2018-19518
CWE-94
High
Horde remote code execution
CVE-2014-1691
CWE-94
High
Horde/IMP Plesk webmail exploit
-
CWE-20
High
Horizontal Broken Function Level Authorization (BFLA)
-
CWE-639
High
Horizontal IDOR/BOLA (Broken Object Level Authorization)
-
CWE-639
High
Host header attack
-
CWE-20
Medium
Hostile subdomain takeover
-
CWE-16
Medium
HSQLDB CVE-2022-41853 Vulnerability (CVE-2022-41853)
CVE-2022-41853
-
Critical
HTML Attribute Injection
-
CWE-80
Low
HTML Form found in redirect page
-
CWE-287
Low
HTML form susceptible to spam
-
CWE-20
Medium
HTML Injection
-
CWE-80
Medium
HTML Injection (requiring unencoded tag delimiter)
-
CWE-80
Information
HTTP Header Injection
-
CWE-113
Medium
HTTP header reflected in cached response
-
CWE-16
Medium
HTTP parameter pollution
-
CWE-88
Medium
Http redirect security bypass
-
CWE-20
High
HTTP response splitting with cloud storage
-
CWE-113
Medium
HTTP Strict Transport Security (HSTS) Errors and Warnings
-
CWE-16
Information
HTTP Strict Transport Security (HSTS) Policy Not Enabled
-
CWE-16
Medium
HTTP verb tampering via POST
-
CWE-285
High
HTTP.sys remote code execution vulnerability
CVE-2015-1635
CWE-119
High
HTTP/2 pseudo-header server side request forgery
-
CWE-918
High
Httpoxy vulnerability
-
CWE-16
Medium
HTTPS connection uses outdated TLS version
-
CWE-310
Medium
HTTPS connection with weak key length
-
CWE-310
Medium
IBM Aspera Faspex RCE (CVE-2022-47986)
CVE-2022-47986
CWE-502
Critical
IBM Lotus Domino web server Cross-Site Scripting vulnerabilities
CVE-2012-3302
CWE-79
High
IBM ODM JNDI injection (CVE-2024-22319)
CVE-2024-22319
CWE-74
Critical
IBM RTC Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-29786)
CVE-2021-29786
CWE-312
Medium
IBM RTC Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-0748)
CVE-2012-0748
CWE-352
Medium
IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4691)
CVE-2020-4691
-
Medium
IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4697)
CVE-2020-4697
-
Medium
IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4733)
CVE-2020-4733
-
Medium
IBM RTC CVE-2015-1971 Vulnerability (CVE-2015-1971)
CVE-2015-1971
-
Medium
IBM RTC CVE-2017-1191 Vulnerability (CVE-2017-1191)
CVE-2017-1191
-
Medium
IBM RTC CVE-2018-1694 Vulnerability (CVE-2018-1694)
CVE-2018-1694
-
Medium
IBM RTC CVE-2019-4084 Vulnerability (CVE-2019-4084)
CVE-2019-4084
-
Medium
IBM RTC CVE-2020-4964 Vulnerability (CVE-2020-4964)
CVE-2020-4964
-
Medium
IBM RTC Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-4989)
CVE-2020-4989
CWE-668
Medium
IBM RTC Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-29701)
CVE-2021-29701
CWE-668
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3050)
CVE-2014-3050
CWE-200
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3092)
CVE-2014-3092
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6131)
CVE-2014-6131
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-0113)
CVE-2015-0113
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-4962)
CVE-2015-4962
CWE-200
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-7449)
CVE-2015-7449
CWE-200
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0372)
CVE-2016-0372
CWE-200
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2865)
CVE-2016-2865
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2947)
CVE-2016-2947
CWE-200
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2987)
CVE-2016-2987
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6024)
CVE-2016-6024
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9700)
CVE-2016-9700
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9735)
CVE-2016-9735
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1099)
CVE-2017-1099
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1240)
CVE-2017-1240
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1251)
CVE-2017-1251
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1488)
CVE-2017-1488
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1507)
CVE-2017-1507
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1509)
CVE-2017-1509
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1524)
CVE-2017-1524
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1559)
CVE-2017-1559
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1570)
CVE-2017-1570
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1725)
CVE-2017-1725
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1734)
CVE-2017-1734
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1423)
CVE-2018-1423
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1606)
CVE-2018-1606
CWE-200
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1734)
CVE-2018-1734
CWE-200
Medium
«
1
...
41
42
43
...
313
»
