🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ High Severity
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
High Severity Vulnerabilities
Found
13053 vulnerabilities
at
High
severity.
Vulnerability Name
CVE
CWE
Severity
WebLogic CVE-2021-2376 Vulnerability (CVE-2021-2376)
CVE-2021-2376
-
High
WebLogic CVE-2021-2378 Vulnerability (CVE-2021-2378)
CVE-2021-2378
-
High
Oracle JRE CVE-2021-2388 Vulnerability (CVE-2021-2388)
CVE-2021-2388
-
High
Rukovoditel Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-30224)
CVE-2021-30224
CWE-352
High
Apache Tomcat Improper Handling of Exceptional Conditions Vulnerability (CVE-2021-30639)
CVE-2021-30639
CWE-755
High
Sqlite Out-of-bounds Read Vulnerability (CVE-2021-31239)
CVE-2021-31239
CWE-125
High
Django Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-31542)
CVE-2021-31542
CWE-434
High
MediaWiki Improper Input Validation Vulnerability (CVE-2021-31555)
CVE-2021-31555
CWE-20
High
Apache HTTP Server NULL Pointer Dereference Vulnerability (CVE-2021-31618)
CVE-2021-31618
CWE-476
High
Chamilo Improper Input Validation Vulnerability (CVE-2021-31933)
CVE-2021-31933
CWE-20
High
SharePoint CVE-2021-31948 Vulnerability (CVE-2021-31948)
CVE-2021-31948
-
High
SharePoint Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-31950)
CVE-2021-31950
CWE-918
High
SharePoint CVE-2021-31963 Vulnerability (CVE-2021-31963)
CVE-2021-31963
-
High
SharePoint CVE-2021-31964 Vulnerability (CVE-2021-31964)
CVE-2021-31964
-
High
PostgreSQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2021-32027)
CVE-2021-32027
CWE-119
High
Jboss EAP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2021-32027)
CVE-2021-32027
CWE-119
High
MongoDb Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-32036)
CVE-2021-32036
CWE-770
High
MongoDb Out-of-bounds Write Vulnerability (CVE-2021-32040)
CVE-2021-32040
CWE-787
High
Ruby Inadequate Encryption Strength Vulnerability (CVE-2021-32066)
CVE-2021-32066
CWE-326
High
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-32474)
CVE-2021-32474
CWE-138
High
Moodle Uncontrolled Resource Consumption Vulnerability (CVE-2021-32476)
CVE-2021-32476
CWE-400
High
Apache Traffic Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2021-32565)
CVE-2021-32565
CWE-444
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-32566)
CVE-2021-32566
CWE-20
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-32567)
CVE-2021-32567
CWE-20
High
Zope Web Application Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-32633)
CVE-2021-32633
CWE-22
High
Plone CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-32633)
CVE-2021-32633
CWE-22
High
Zope Web Application Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-32674)
CVE-2021-32674
CWE-22
High
Envoy Proxy Incorrect Authorization Vulnerability (CVE-2021-32777)
CVE-2021-32777
CWE-863
High
Envoy Proxy Excessive Iteration Vulnerability (CVE-2021-32778)
CVE-2021-32778
CWE-834
High
Envoy Proxy Incorrect Authorization Vulnerability (CVE-2021-32779)
CVE-2021-32779
CWE-863
High
Envoy Proxy Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2021-32780)
CVE-2021-32780
CWE-754
High
Envoy Proxy Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2021-32781)
CVE-2021-32781
CWE-119
High
Zope Web Application Server Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2021-32811)
CVE-2021-32811
CWE-915
High
Apache HTTP Server Other Vulnerability (CVE-2021-33193)
CVE-2021-33193
-
High
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-33203)
CVE-2021-33203
CWE-22
High
Liferay Portal Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-33321)
CVE-2021-33321
CWE-640
High
Liferay Portal Insufficient Session Expiration Vulnerability (CVE-2021-33322)
CVE-2021-33322
CWE-613
High
Liferay Portal Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-33323)
CVE-2021-33323
CWE-312
High
Liferay Portal Incorrect Authorization Vulnerability (CVE-2021-33335)
CVE-2021-33335
CWE-863
High
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-33338)
CVE-2021-33338
CWE-352
High
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33511)
CVE-2021-33511
CWE-918
High
Django Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33571)
CVE-2021-33571
CWE-918
High
Ruby Interpretation Conflict Vulnerability (CVE-2021-33621)
CVE-2021-33621
CWE-436
High
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33926)
CVE-2021-33926
CWE-918
High
Seo Panel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-34117)
CVE-2021-34117
CWE-138
High
SharePoint CVE-2021-34467 Vulnerability (CVE-2021-34467)
CVE-2021-34467
-
High
SharePoint CVE-2021-34468 Vulnerability (CVE-2021-34468)
CVE-2021-34468
-
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2021-34520)
CVE-2021-34520
CWE-502
High
Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2021-34798)
CVE-2021-34798
CWE-476
High
MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-35197)
CVE-2021-35197
CWE-668
High
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35413)
CVE-2021-35413
CWE-707
High
MySQL CVE-2021-35610 Vulnerability (CVE-2021-35610)
CVE-2021-35610
-
High
WebLogic CVE-2021-35620 Vulnerability (CVE-2021-35620)
CVE-2021-35620
-
High
Oracle HTTP Server CVE-2021-35666 Vulnerability (CVE-2021-35666)
CVE-2021-35666
-
High
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2021-35940)
CVE-2021-35940
CWE-125
High
Magento CVE-2021-36021 Vulnerability (CVE-2021-36021)
CVE-2021-36021
-
High
Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-36023)
CVE-2021-36023
CWE-138
High
Magento Improper Access Control Vulnerability (CVE-2021-36036)
CVE-2021-36036
CWE-284
High
MediaWiki Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-36125)
CVE-2021-36125
CWE-835
High
MediaWiki Incorrect Authorization Vulnerability (CVE-2021-36132)
CVE-2021-36132
CWE-863
High
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2021-36160)
CVE-2021-36160
CWE-125
High
Moodle Uncontrolled Recursion Vulnerability (CVE-2021-36395)
CVE-2021-36395
CWE-674
High
Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-36396)
CVE-2021-36396
CWE-918
High
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-36625)
CVE-2021-36625
CWE-138
High
Sqlite CVE-2021-36690 Vulnerability (CVE-2021-36690)
CVE-2021-36690
-
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37147)
CVE-2021-37147
CWE-20
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37148)
CVE-2021-37148
CWE-20
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37149)
CVE-2021-37149
CWE-20
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37150)
CVE-2021-37150
CWE-20
High
Dolibarr Incorrect Authorization Vulnerability (CVE-2021-37517)
CVE-2021-37517
CWE-863
High
Contao Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-37626)
CVE-2021-37626
CWE-94
High
Contao Improper Privilege Management Vulnerability (CVE-2021-37627)
CVE-2021-37627
CWE-269
High
Apache Traffic Server Improper Authentication Vulnerability (CVE-2021-38161)
CVE-2021-38161
CWE-287
High
Liferay Portal CVE-2021-38266 Vulnerability (CVE-2021-38266)
CVE-2021-38266
-
High
Liferay DXP CVE-2021-38266 Vulnerability (CVE-2021-38266)
CVE-2021-38266
-
High
« Previous
1
...
44
45
46
47
48
49
50
51
...
175
Next »
