Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.3.2229

Web Application Vulnerabilities

This page lists 24119 vulnerabilities in 70 categories.

Critical: 1560 High: 12984 Medium: 8644 Low: 865 Information: 66
Vulnerability Name
CVE
CWE
Severity
Apache Tomcat Authentication Bypass Using an Alternate Path or Channel Vulnerability (CVE-2025-49125)
CVE-2025-49125
CWE-288
High
Apache Tomcat Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2018-8037)
CVE-2018-8037
CWE-362
Medium
Apache Tomcat Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2021-43980)
CVE-2021-43980
CWE-362
Low
Apache Tomcat Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2025-52434)
CVE-2025-52434
CWE-362
High
Apache Tomcat Configuration Vulnerability (CVE-2008-0128)
CVE-2008-0128
-
Medium
Apache Tomcat Configuration Vulnerability (CVE-2010-4312)
CVE-2010-4312
-
Medium
Apache Tomcat Credentials Management Errors Vulnerability (CVE-2009-3548)
CVE-2009-3548
-
High
Apache Tomcat Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-4724)
CVE-2007-4724
CWE-352
Medium
Apache Tomcat Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-6357)
CVE-2013-6357
CWE-352
Medium
Apache Tomcat Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5351)
CVE-2015-5351
CWE-352
High
Apache Tomcat Cryptographic Issues Vulnerability (CVE-2011-5064)
CVE-2011-5064
-
Medium
Apache Tomcat CVE-2012-5568 Vulnerability (CVE-2012-5568)
CVE-2012-5568
-
Medium
Apache Tomcat CVE-2016-6794 Vulnerability (CVE-2016-6794)
CVE-2016-6794
-
Medium
Apache Tomcat CVE-2016-8735 Vulnerability (CVE-2016-8735)
CVE-2016-8735
-
Critical
Apache Tomcat CVE-2017-5651 Vulnerability (CVE-2017-5651)
CVE-2017-5651
-
Critical
Apache Tomcat CVE-2018-1304 Vulnerability (CVE-2018-1304)
CVE-2018-1304
-
Medium
Apache Tomcat CVE-2018-1305 Vulnerability (CVE-2018-1305)
CVE-2018-1305
-
Medium
Apache Tomcat CVE-2019-2684 Vulnerability (CVE-2019-2684)
CVE-2019-2684
-
Medium
Apache Tomcat CVE-2020-0822 Vulnerability (CVE-2020-0822)
CVE-2020-0822
-
High
Apache Tomcat CVE-2020-13943 Vulnerability (CVE-2020-13943)
CVE-2020-13943
-
Medium
Apache Tomcat CVE-2022-29885 Vulnerability (CVE-2022-29885)
CVE-2022-29885
-
High
Apache Tomcat CVE-2023-34981 Vulnerability (CVE-2023-34981)
CVE-2023-34981
-
High
Apache Tomcat CVE-2023-44487 Vulnerability (CVE-2023-44487)
CVE-2023-44487
-
High
Apache Tomcat CVE-2024-24549 Vulnerability (CVE-2024-24549)
CVE-2024-24549
-
High
Apache Tomcat Data Processing Errors Vulnerability (CVE-2014-0227)
CVE-2014-0227
-
Medium
Apache Tomcat Deserialization of Untrusted Data Vulnerability (CVE-2020-9484)
CVE-2020-9484
CWE-502
High
Apache Tomcat Deserialization of Untrusted Data Vulnerability (CVE-2021-25329)
CVE-2021-25329
CWE-502
High
Apache Tomcat examples directory vulnerabilities
-
CWE-264
Medium
Apache Tomcat Exposure of Resource to Wrong Sphere Vulnerability (CVE-2017-5648)
CVE-2017-5648
CWE-668
Critical
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2005-3164)
CVE-2005-3164
CWE-200
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2005-4836)
CVE-2005-4836
CWE-200
High
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-3382)
CVE-2007-3382
CWE-200
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-3385)
CVE-2007-3385
CWE-200
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-5333)
CVE-2007-5333
CWE-200
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-4308)
CVE-2008-4308
CWE-200
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5519)
CVE-2008-5519
CWE-200
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-0580)
CVE-2009-0580
CWE-200
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-0783)
CVE-2009-0783
CWE-200
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1157)
CVE-2010-1157
CWE-200
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-2204)
CVE-2011-2204
CWE-200
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3375)
CVE-2011-3375
CWE-200
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2071)
CVE-2013-2071
CWE-200
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4590)
CVE-2013-4590
CWE-200
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0706)
CVE-2016-0706
CWE-200
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-8747)
CVE-2016-8747
CWE-200
High
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-12616)
CVE-2017-12616
CWE-200
High
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-5647)
CVE-2017-5647
CWE-200
High
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-17527)
CVE-2020-17527
CWE-200
High
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-25122)
CVE-2021-25122
CWE-200
High
Apache Tomcat Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2024-21733)
CVE-2024-21733
CWE-209
Medium
Apache Tomcat hello.jsp XSS
CVE-2007-1355
CWE-79
Low
Apache Tomcat Improper Access Control Vulnerability (CVE-2014-7810)
CVE-2014-7810
CWE-284
Medium
Apache Tomcat Improper Access Control Vulnerability (CVE-2016-5388)
CVE-2016-5388
CWE-284
High
Apache Tomcat Improper Authentication Vulnerability (CVE-2011-5063)
CVE-2011-5063
CWE-287
Medium
Apache Tomcat Improper Authentication Vulnerability (CVE-2012-5886)
CVE-2012-5886
CWE-287
Medium
Apache Tomcat Improper Authentication Vulnerability (CVE-2012-5887)
CVE-2012-5887
CWE-287
Medium
Apache Tomcat Improper Authentication Vulnerability (CVE-2013-2067)
CVE-2013-2067
CWE-287
Medium
Apache Tomcat Improper Certificate Validation Vulnerability (CVE-2018-8034)
CVE-2018-8034
CWE-295
High
Apache Tomcat Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2024-52316)
CVE-2024-52316
CWE-754
Critical
Apache Tomcat Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-4444)
CVE-2013-4444
CWE-94
Medium
Apache Tomcat Improper Encoding or Escaping of Output Vulnerability (CVE-2021-30640)
CVE-2021-30640
CWE-116
Medium
Apache Tomcat Improper Encoding or Escaping of Output Vulnerability (CVE-2022-45143)
CVE-2022-45143
CWE-116
High
Apache Tomcat Improper Encoding or Escaping of Output Vulnerability (CVE-2025-31651)
CVE-2025-31651
CWE-116
Critical
Apache Tomcat Improper Handling of Case Sensitivity Vulnerability (CVE-2025-46701)
CVE-2025-46701
CWE-178
High
Apache Tomcat Improper Handling of Exceptional Conditions Vulnerability (CVE-2017-5664)
CVE-2017-5664
CWE-755
High
Apache Tomcat Improper Handling of Exceptional Conditions Vulnerability (CVE-2021-30639)
CVE-2021-30639
CWE-755
High
Apache Tomcat Improper Input Validation Vulnerability (CVE-2009-0033)
CVE-2009-0033
CWE-20
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2011-1475)
CVE-2011-1475
CWE-20
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2011-2526)
CVE-2011-2526
CWE-20
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2012-2733)
CVE-2012-2733
CWE-20
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2012-3544)
CVE-2012-3544
CWE-20
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2013-2185)
CVE-2013-2185
CWE-20
High
Apache Tomcat Improper Input Validation Vulnerability (CVE-2013-4286)
CVE-2013-4286
CWE-20
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2013-4322)
CVE-2013-4322
CWE-20
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2014-0033)
CVE-2014-0033
CWE-20
Medium