Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

High Severity Vulnerabilities

Found 13053 vulnerabilities at High severity.

Vulnerability Name
CVE
CWE
Severity
PHP Improper Input Validation Vulnerability (CVE-2015-8873)
CVE-2015-8873
CWE-20
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8874)
CVE-2015-8874
CWE-119
High
PHP Resource Management Errors Vulnerability (CVE-2015-8877)
CVE-2015-8877
-
High
PHP Improper Input Validation Vulnerability (CVE-2015-8879)
CVE-2015-8879
CWE-20
High
MyBB Improper Access Control Vulnerability (CVE-2015-8973)
CVE-2015-8973
CWE-284
High
MyBB Insertion of Sensitive Information into Log File Vulnerability (CVE-2015-8977)
CVE-2015-8977
CWE-532
High
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-8994)
CVE-2015-8994
CWE-264
High
MySQL CVE-2016-0546 Vulnerability (CVE-2016-0546)
CVE-2016-0546
-
High
WebLogic CVE-2016-0572 Vulnerability (CVE-2016-0572)
CVE-2016-0572
-
High
WebLogic CVE-2016-0573 Vulnerability (CVE-2016-0573)
CVE-2016-0573
-
High
WebLogic CVE-2016-0574 Vulnerability (CVE-2016-0574)
CVE-2016-0574
-
High
WebLogic CVE-2016-0577 Vulnerability (CVE-2016-0577)
CVE-2016-0577
-
High
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0714)
CVE-2016-0714
CWE-264
High
Apache HTTP Server Cryptographic Issues Vulnerability (CVE-2016-0736)
CVE-2016-0736
-
High
Nginx Other Vulnerability (CVE-2016-0742)
CVE-2016-0742
-
High
Ruby on Rails Resource Management Errors Vulnerability (CVE-2016-0751)
CVE-2016-0751
-
High
Ruby on Rails Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-0752)
CVE-2016-0752
CWE-22
High
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0766)
CVE-2016-0766
CWE-264
High
PostgreSQL Improper Access Control Vulnerability (CVE-2016-0768)
CVE-2016-0768
CWE-284
High
PostgreSQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-0773)
CVE-2016-0773
CWE-119
High
Jenkins Improper Input Validation Vulnerability (CVE-2016-0792)
CVE-2016-0792
CWE-20
High
WildFly Application Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0793)
CVE-2016-0793
CWE-200
High
OpenSSL Other Vulnerability (CVE-2016-0797)
CVE-2016-0797
-
High
OpenSSL Resource Management Errors Vulnerability (CVE-2016-0798)
CVE-2016-0798
-
High
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10002)
CVE-2016-10002
CWE-200
High
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10003)
CVE-2016-10003
CWE-200
High
Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10007)
CVE-2016-10007
CWE-138
High
Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10008)
CVE-2016-10008
CWE-138
High
MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10037)
CVE-2016-10037
CWE-22
High
MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10038)
CVE-2016-10038
CWE-22
High
MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10039)
CVE-2016-10039
CWE-22
High
Vanilla Forums Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10073)
CVE-2016-10073
CWE-200
High
Piwigo Improper Access Control Vulnerability (CVE-2016-10084)
CVE-2016-10084
CWE-284
High
Piwigo Improper Access Control Vulnerability (CVE-2016-10085)
CVE-2016-10085
CWE-284
High
PHP Numeric Errors Vulnerability (CVE-2016-10158)
CVE-2016-10158
-
High
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-10159)
CVE-2016-10159
CWE-190
High
PHP Out-of-bounds Read Vulnerability (CVE-2016-10161)
CVE-2016-10161
CWE-125
High
PHP NULL Pointer Dereference Vulnerability (CVE-2016-10162)
CVE-2016-10162
CWE-476
High
Phusion Passenger Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-10345)
CVE-2016-10345
CWE-264
High
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10378)
CVE-2016-10378
CWE-138
High
PHP Improper Input Validation Vulnerability (CVE-2016-10397)
CVE-2016-10397
CWE-20
High
ATutor Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10400)
CVE-2016-10400
CWE-22
High
Riot.js Resource Management Errors Vulnerability (CVE-2016-10527)
CVE-2016-10527
-
High
PHP Improper Input Validation Vulnerability (CVE-2016-10712)
CVE-2016-10712
CWE-20
High
Osclass Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10751)
CVE-2016-10751
CWE-22
High
e107 Deserialization of Untrusted Data Vulnerability (CVE-2016-10753)
CVE-2016-10753
CWE-502
High
AbanteCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10755)
CVE-2016-10755
CWE-138
High
Perl Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-1238)
CVE-2016-1238
CWE-264
High
Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-1240)
CVE-2016-1240
CWE-20
High
Nginx Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2016-1247)
CVE-2016-1247
CWE-59
High
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-1499)
CVE-2016-1499
CWE-200
High
PHP Numeric Errors Vulnerability (CVE-2016-1904)
CVE-2016-1904
-
High
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-1927)
CVE-2016-1927
-
High
GlassFish Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-1950)
CVE-2016-1950
CWE-119
High
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-2041)
CVE-2016-2041
-
High
Ruby on Rails Improper Input Validation Vulnerability (CVE-2016-2098)
CVE-2016-2098
CWE-20
High
OpenSSL Numeric Errors Vulnerability (CVE-2016-2105)
CVE-2016-2105
-
High
MySQL Numeric Errors Vulnerability (CVE-2016-2105)
CVE-2016-2105
-
High
OpenSSL Numeric Errors Vulnerability (CVE-2016-2106)
CVE-2016-2106
-
High
OpenSSL Resource Management Errors Vulnerability (CVE-2016-2109)
CVE-2016-2109
-
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-2157)
CVE-2016-2157
CWE-352
High
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2016-2161)
CVE-2016-2161
CWE-20
High
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2176)
CVE-2016-2176
CWE-119
High
OpenSSL Resource Management Errors Vulnerability (CVE-2016-2179)
CVE-2016-2179
-
High
OpenSSL Out-of-bounds Read Vulnerability (CVE-2016-2180)
CVE-2016-2180
CWE-125
High
OpenSSL Numeric Errors Vulnerability (CVE-2016-2181)
CVE-2016-2181
-
High
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
CVE-2016-2183
CWE-200
High
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
CVE-2016-2183
CWE-200
High
Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
CVE-2016-2183
CWE-200
High
PostgreSQL 7PK - Security Features Vulnerability (CVE-2016-2193)
CVE-2016-2193
-
High
WordPress Other Vulnerability (CVE-2016-2221)
CVE-2016-2221
-
High
WordPress Other Vulnerability (CVE-2016-2222)
CVE-2016-2222
-
High
Oracle Database Server Improper Input Validation Vulnerability (CVE-2016-2381)
CVE-2016-2381
CWE-20
High
Perl Improper Input Validation Vulnerability (CVE-2016-2381)
CVE-2016-2381
CWE-20
High
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2512)
CVE-2016-2512
CWE-707
High