🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ High Severity
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
High Severity Vulnerabilities
Found
13053 vulnerabilities
at
High
severity.
Vulnerability Name
CVE
CWE
Severity
Liferay Portal Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-5327)
CVE-2010-5327
CWE-264
High
Ruby on Rails Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-0448)
CVE-2011-0448
CWE-138
High
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-0449)
CVE-2011-0449
CWE-264
High
MediaWiki Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2011-0537)
CVE-2011-0537
CWE-22
High
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2011-0698)
CVE-2011-0698
CWE-22
High
Plone CMS CVE-2011-0720 Vulnerability (CVE-2011-0720)
CVE-2011-0720
-
High
PHP Numeric Errors Vulnerability (CVE-2011-1092)
CVE-2011-1092
-
High
PHP Resource Management Errors Vulnerability (CVE-2011-1148)
CVE-2011-1148
-
High
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2011-1153)
CVE-2011-1153
CWE-134
High
e107 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2011-1513)
CVE-2011-1513
CWE-138
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2011-1938)
CVE-2011-1938
CWE-119
High
Oracle Database Server CVE-2011-2239 Vulnerability (CVE-2011-2239)
CVE-2011-2239
-
High
Oracle Database Server CVE-2011-2253 Vulnerability (CVE-2011-2253)
CVE-2011-2253
-
High
Oracle Database Server CVE-2011-2301 Vulnerability (CVE-2011-2301)
CVE-2011-2301
-
High
phpMyAdmin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-2506)
CVE-2011-2506
CWE-94
High
Plone CMS CVE-2011-2528 Vulnerability (CVE-2011-2528)
CVE-2011-2528
-
High
Zope Web Application Server CVE-2011-2528 Vulnerability (CVE-2011-2528)
CVE-2011-2528
-
High
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-2687)
CVE-2011-2687
CWE-264
High
Drupal Incorrect Authorization Vulnerability (CVE-2011-2726)
CVE-2011-2726
CWE-863
High
Ruby on Rails Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-2930)
CVE-2011-2930
CWE-138
High
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-3130)
CVE-2011-3130
CWE-138
High
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-3190)
CVE-2011-3190
CWE-264
High
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2011-3192)
CVE-2011-3192
CWE-400
High
PHP Uncontrolled Resource Consumption Vulnerability (CVE-2011-3336)
CVE-2011-3336
CWE-400
High
PHP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-3379)
CVE-2011-3379
CWE-94
High
GlassFish CVE-2011-3559 Vulnerability (CVE-2011-3559)
CVE-2011-3559
-
High
Vanilla Forums Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3613)
CVE-2011-3613
CWE-200
High
Joomla Inadequate Encryption Strength Vulnerability (CVE-2011-3629)
CVE-2011-3629
CWE-326
High
PmWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4453)
CVE-2011-4453
CWE-94
High
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4605)
CVE-2011-4605
CWE-264
High
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4608)
CVE-2011-4608
CWE-264
High
Ruby Improper Input Validation Vulnerability (CVE-2011-4815)
CVE-2011-4815
CWE-20
High
phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4825)
CVE-2011-4825
CWE-94
High
SugarCRM Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-4833)
CVE-2011-4833
CWE-138
High
WordPress CVE-2011-4899 Vulnerability (CVE-2011-4899)
CVE-2011-4899
-
High
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4937)
CVE-2011-4937
CWE-200
High
silverstripeCMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-4960)
CVE-2011-4960
CWE-138
High
Dotclear Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-5083)
CVE-2011-5083
CWE-264
High
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-0046)
CVE-2012-0046
CWE-200
High
Oracle JRE CVE-2012-0503 Vulnerability (CVE-2012-0503)
CVE-2012-0503
-
High
Oracle JRE CVE-2012-0505 Vulnerability (CVE-2012-0505)
CVE-2012-0505
-
High
Oracle Database Server CVE-2012-0519 Vulnerability (CVE-2012-0519)
CVE-2012-0519
-
High
MySQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-0553)
CVE-2012-0553
CWE-119
High
Family Connections Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-0699)
CVE-2012-0699
CWE-352
High
Jenkins Uncontrolled Resource Consumption Vulnerability (CVE-2012-0785)
CVE-2012-0785
CWE-400
High
Moodle Improper Input Validation Vulnerability (CVE-2012-0801)
CVE-2012-0801
CWE-20
High
PHP Resource Management Errors Vulnerability (CVE-2012-0830)
CVE-2012-0830
-
High
MySQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-0882)
CVE-2012-0882
CWE-119
High
Osclass Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-0973)
CVE-2012-0973
CWE-138
High
JBoss Application Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1094)
CVE-2012-1094
CWE-200
High
Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1116)
CVE-2012-1116
CWE-138
High
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1155)
CVE-2012-1155
CWE-200
High
Moodle Insertion of Sensitive Information into Log File Vulnerability (CVE-2012-1156)
CVE-2012-1156
CWE-532
High
Moodle Improper Input Validation Vulnerability (CVE-2012-1168)
CVE-2012-1168
CWE-20
High
Moodle Improper Validation of Integrity Check Value Vulnerability (CVE-2012-1170)
CVE-2012-1170
CWE-354
High
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1225)
CVE-2012-1225
CWE-138
High
PleskWin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1557)
CVE-2012-1557
CWE-138
High
PleskLin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1557)
CVE-2012-1557
CWE-138
High
Joomla Use of Insufficiently Random Values Vulnerability (CVE-2012-1562)
CVE-2012-1562
CWE-330
High
Joomla Improper Privilege Management Vulnerability (CVE-2012-1563)
CVE-2012-1563
CWE-269
High
Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1598)
CVE-2012-1598
CWE-264
High
PostgreSQL Other Vulnerability (CVE-2012-1618)
CVE-2012-1618
-
High
Oracle Database Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1675)
CVE-2012-1675
CWE-264
High
PHP Address Book Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1911)
CVE-2012-1911
CWE-138
High
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-2110)
CVE-2012-2110
CWE-119
High
OpenSSL Numeric Errors Vulnerability (CVE-2012-2131)
CVE-2012-2131
-
High
Piwigo Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2012-2208)
CVE-2012-2208
CWE-22
High
PHP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-2311)
CVE-2012-2311
CWE-138
High
JBoss Application Server Improper Privilege Management Vulnerability (CVE-2012-2312)
CVE-2012-2312
CWE-269
High
MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-2324)
CVE-2012-2324
CWE-138
High
MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-2325)
CVE-2012-2325
CWE-138
High
Serendipity Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-2332)
CVE-2012-2332
CWE-138
High
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2335)
CVE-2012-2335
CWE-264
High
PHP Numeric Errors Vulnerability (CVE-2012-2386)
CVE-2012-2386
-
High
SharePoint Out-of-bounds Write Vulnerability (CVE-2012-2539)
CVE-2012-2539
CWE-787
High
« Previous
1
...
21
22
23
24
25
26
27
28
...
175
Next »
