Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Web Application Vulnerabilities

This page lists 24302 vulnerabilities in 62 categories.

Critical: 1589 High: 13053 Medium: 8721 Low: 870 Information: 69
Vulnerability Name
CVE
CWE
Severity
Liferay Portal Missing Authorization Vulnerability (CVE-2022-39975)
CVE-2022-39975
CWE-862
Medium
Liferay Portal Missing Authorization Vulnerability (CVE-2023-33948)
CVE-2023-33948
CWE-862
High
Liferay Portal Missing Authorization Vulnerability (CVE-2023-3426)
CVE-2023-3426
CWE-862
Medium
Liferay Portal Missing Authorization Vulnerability (CVE-2025-43773)
CVE-2025-43773
CWE-862
Critical
Liferay Portal Missing Authorization Vulnerability (CVE-2025-43788)
CVE-2025-43788
CWE-862
Medium
Liferay Portal Missing Authorization Vulnerability (CVE-2025-43805)
CVE-2025-43805
CWE-862
Medium
Liferay Portal Missing Authorization Vulnerability (CVE-2025-62247)
CVE-2025-62247
CWE-862
Medium
Liferay Portal Missing Authorization Vulnerability (CVE-2025-62256)
CVE-2025-62256
CWE-862
Medium
Liferay Portal Missing Release of Memory after Effective Lifetime Vulnerability (CVE-2025-43816)
CVE-2025-43816
CWE-401
High
Liferay Portal Observable Discrepancy Vulnerability (CVE-2024-25146)
CVE-2024-25146
CWE-203
Medium
Liferay Portal Observable Discrepancy Vulnerability (CVE-2024-26268)
CVE-2024-26268
CWE-203
Medium
Liferay Portal Observable Discrepancy Vulnerability (CVE-2025-43786)
CVE-2025-43786
CWE-203
Medium
Liferay Portal Observable Timing Discrepancy Vulnerability (CVE-2025-43754)
CVE-2025-43754
CWE-208
Medium
Liferay Portal Origin Validation Error Vulnerability (CVE-2022-25146)
CVE-2022-25146
CWE-346
Medium
Liferay Portal Origin Validation Error Vulnerability (CVE-2025-62250)
CVE-2025-62250
CWE-346
Medium
Liferay Portal Other Vulnerability (CVE-2023-33946)
CVE-2023-33946
-
Medium
Liferay Portal Other Vulnerability (CVE-2023-33947)
CVE-2023-33947
-
Medium
Liferay Portal Other Vulnerability (CVE-2024-25150)
CVE-2024-25150
-
Medium
Liferay Portal Other Vulnerability (CVE-2024-26270)
CVE-2024-26270
-
Medium
Liferay Portal Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-5327)
CVE-2010-5327
CWE-264
High
Liferay Portal Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-43763)
CVE-2025-43763
CWE-918
Medium
Liferay Portal Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-4581)
CVE-2025-4581
CWE-918
High
Liferay Portal Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-4655)
CVE-2025-4655
CWE-918
Medium
Liferay Portal Session Fixation Vulnerability (CVE-2023-47798)
CVE-2023-47798
CWE-384
Medium
Liferay Portal Unchecked Input for Loop Condition Vulnerability (CVE-2025-43801)
CVE-2025-43801
CWE-606
High
Liferay Portal Uncontrolled Resource Consumption Vulnerability (CVE-2025-43796)
CVE-2025-43796
CWE-400
High
Liferay Portal Uncontrolled Resource Consumption Vulnerability (CVE-2025-62260)
CVE-2025-62260
CWE-400
High
Liferay Portal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-10795)
CVE-2018-10795
CWE-434
High
Liferay Portal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-15839)
CVE-2020-15839
CWE-434
Medium
Liferay Portal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2025-43766)
CVE-2025-43766
CWE-434
Critical
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-24554)
CVE-2020-24554
CWE-601
High
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-33331)
CVE-2021-33331
CWE-601
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-28977)
CVE-2022-28977
CWE-601
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-35029)
CVE-2023-35029
CWE-601
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-5190)
CVE-2023-5190
CWE-601
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-25608)
CVE-2024-25608
CWE-601
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-25609)
CVE-2024-25609
CWE-601
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2025-43767)
CVE-2025-43767
CWE-601
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2025-43795)
CVE-2025-43795
CWE-601
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2025-62253)
CVE-2025-62253
CWE-601
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2025-62266)
CVE-2025-62266
CWE-601
Medium
Liferay Portal Use of Default Password Vulnerability (CVE-2025-43799)
CVE-2025-43799
-
Medium
Liferay Portal Use of Password Hash With Insufficient Computational Effort Vulnerability (CVE-2024-25607)
CVE-2024-25607
CWE-916
High
Liferay Portal Use of Web Browser Cache Containing Sensitive Information Vulnerability (CVE-2025-62276)
CVE-2025-62276
CWE-525
Medium
Liferay Portal Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-33321)
CVE-2021-33321
CWE-640
High
Liferay TunnelServlet Deserialization Remote Code Execution
-
CWE-502
High
Liferay version older than 7.0
-
CWE-502
High
Liferay version older than 7.1
-
CWE-918
Medium
Liferay XMLRPC Blind SSRF
-
CWE-918
Medium
lightbox2 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9441)
CVE-2014-9441
CWE-352
Medium
Lighttpd Cryptographic Issues Vulnerability (CVE-2013-1427)
CVE-2013-1427
-
Low
Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-1111)
CVE-2008-1111
CWE-200
Medium
Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-1270)
CVE-2008-1270
CWE-200
Medium
Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-4359)
CVE-2008-4359
CWE-200
High
Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-4360)
CVE-2008-4360
CWE-200
High
Lighttpd Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-2324)
CVE-2014-2324
CWE-22
Medium
Lighttpd Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-19052)
CVE-2018-19052
CWE-22
High
Lighttpd Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2015-3200)
CVE-2015-3200
CWE-138
High
Lighttpd Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-2323)
CVE-2014-2323
CWE-138
Critical
Lighttpd Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-4727)
CVE-2007-4727
CWE-119
Medium
Lighttpd Inadequate Encryption Strength Vulnerability (CVE-2013-4508)
CVE-2013-4508
CWE-326
High
Lighttpd Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2025-12642)
CVE-2025-12642
-
Critical
Lighttpd Integer Overflow or Wraparound Vulnerability (CVE-2019-11072)
CVE-2019-11072
CWE-190
Critical
Lighttpd Missing Release of Memory after Effective Lifetime Vulnerability (CVE-2022-41556)
CVE-2022-41556
CWE-401
High
Lighttpd NULL Pointer Dereference Vulnerability (CVE-2022-37797)
CVE-2022-37797
CWE-476
High
Lighttpd Other Vulnerability (CVE-2005-0453)
CVE-2005-0453
-
Medium
Lighttpd Other Vulnerability (CVE-2006-0760)
CVE-2006-0760
-
Low
Lighttpd Other Vulnerability (CVE-2006-0814)
CVE-2006-0814
-
Medium
Lighttpd Other Vulnerability (CVE-2007-1869)
CVE-2007-1869
-
Medium
Lighttpd Other Vulnerability (CVE-2007-1870)
CVE-2007-1870
-
High
Lighttpd Other Vulnerability (CVE-2007-3946)
CVE-2007-3946
-
Medium
Lighttpd Other Vulnerability (CVE-2007-3947)
CVE-2007-3947
-
Medium
Lighttpd Other Vulnerability (CVE-2007-3948)
CVE-2007-3948
-
Medium
Lighttpd Other Vulnerability (CVE-2007-3949)
CVE-2007-3949
-
High
Lighttpd Other Vulnerability (CVE-2007-3950)
CVE-2007-3950
-
Medium