🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ High Severity
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
High Severity Vulnerabilities
Found
13071 vulnerabilities
at
High
severity.
Vulnerability Name
CVE
CWE
Severity
Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-43665)
CVE-2023-43665
CWE-1284
High
PleskLin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784)
CVE-2023-43784
CWE-668
High
PleskWin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784)
CVE-2023-43784
CWE-668
High
Apache Tomcat CVE-2023-44487 Vulnerability (CVE-2023-44487)
CVE-2023-44487
-
High
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)
CVE-2023-44487
CWE-400
High
Open Resty Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)
CVE-2023-44487
CWE-400
High
Nginx Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)
CVE-2023-44487
CWE-400
High
Apache Traffic Server CVE-2023-44487 Vulnerability (CVE-2023-44487)
CVE-2023-44487
-
High
Caddy Web Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)
CVE-2023-44487
CWE-400
High
Envoy Proxy Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)
CVE-2023-44487
CWE-400
High
Jenkins CVE-2023-44487 Vulnerability (CVE-2023-44487)
CVE-2023-44487
-
High
Kong Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)
CVE-2023-44487
CWE-400
High
Jetty Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)
CVE-2023-44487
CWE-400
High
XWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2023-45135)
CVE-2023-45135
CWE-116
High
MediaWiki Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2023-45363)
CVE-2023-45363
CWE-835
High
MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-45371)
CVE-2023-45371
CWE-770
High
qdPM Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-45855)
CVE-2023-45855
CWE-22
High
GibbonEdu Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-45880)
CVE-2023-45880
CWE-22
High
Werkzeug WSGI Out-of-bounds Write Vulnerability (CVE-2023-46136)
CVE-2023-46136
CWE-787
High
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-46242)
CVE-2023-46242
CWE-352
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46243)
CVE-2023-46243
CWE-94
High
XWiki Incorrect Authorization Vulnerability (CVE-2023-46244)
CVE-2023-46244
CWE-863
High
Next.js CVE-2023-46298 Vulnerability (CVE-2023-46298)
CVE-2023-46298
-
High
Apache Tomcat Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2023-46589)
CVE-2023-46589
-
High
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-46695)
CVE-2023-46695
CWE-770
High
Squid Improper Certificate Validation Vulnerability (CVE-2023-46724)
CVE-2023-46724
CWE-295
High
Squid NULL Pointer Dereference Vulnerability (CVE-2023-46728)
CVE-2023-46728
CWE-476
High
SugarCRM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-46815)
CVE-2023-46815
CWE-434
High
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46816)
CVE-2023-46816
CWE-94
High
Squid Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2023-46847)
CVE-2023-46847
CWE-120
High
Squid Incorrect Conversion between Numeric Types Vulnerability (CVE-2023-46848)
CVE-2023-46848
CWE-681
High
OpenVPN AS Divide By Zero Vulnerability (CVE-2023-46849)
CVE-2023-46849
CWE-369
High
Perl Out-of-bounds Write Vulnerability (CVE-2023-47038)
CVE-2023-47038
CWE-787
High
Perl Out-of-bounds Write Vulnerability (CVE-2023-47039)
CVE-2023-47039
CWE-787
High
Opencart Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-47444)
CVE-2023-47444
CWE-94
High
CubeCart Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2023-47675)
CVE-2023-47675
CWE-138
High
XWiki Server-Side Request Forgery (SSRF) Vulnerability (CVE-2023-48240)
CVE-2023-48240
CWE-918
High
XWiki CVE-2023-48241 Vulnerability (CVE-2023-48241)
CVE-2023-48241
-
High
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-48293)
CVE-2023-48293
CWE-352
High
Squid Out-of-bounds Read Vulnerability (CVE-2023-49285)
CVE-2023-49285
CWE-125
High
Squid Reachable Assertion Vulnerability (CVE-2023-49286)
CVE-2023-49286
CWE-617
High
Squid Use After Free Vulnerability (CVE-2023-49288)
CVE-2023-49288
CWE-416
High
Dolibarr Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-4197)
CVE-2023-4197
CWE-138
High
Chamilo Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2023-4221)
CVE-2023-4221
CWE-138
High
Chamilo Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2023-4222)
CVE-2023-4222
CWE-138
High
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-4223)
CVE-2023-4223
CWE-434
High
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-4224)
CVE-2023-4224
CWE-434
High
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-4225)
CVE-2023-4225
CWE-434
High
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-4226)
CVE-2023-4226
CWE-434
High
Grafana CVE-2023-4399 Vulnerability (CVE-2023-4399)
CVE-2023-4399
-
High
Jboss EAP Improper Initialization Vulnerability (CVE-2023-4503)
CVE-2023-4503
CWE-665
High
OpenSSL CVE-2023-4807 Vulnerability (CVE-2023-4807)
CVE-2023-4807
-
High
Grafana CVE-2023-4822 Vulnerability (CVE-2023-4822)
CVE-2023-4822
-
High
Pega Infinity Improper Restriction of XML External Entity Reference Vulnerability (CVE-2023-50168)
CVE-2023-50168
CWE-611
High
Squid Uncontrolled Recursion Vulnerability (CVE-2023-50269)
CVE-2023-50269
CWE-674
High
XWiki Cleartext Storage of Sensitive Information Vulnerability (CVE-2023-50719)
CVE-2023-50719
CWE-312
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-50721)
CVE-2023-50721
CWE-94
High
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-50722)
CVE-2023-50722
CWE-707
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-50723)
CVE-2023-50723
CWE-94
High
GeoServer Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-51444)
CVE-2023-51444
CWE-434
High
Coppermine Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-53868)
CVE-2023-53868
CWE-434
High
ProjectSend Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2023-53905)
CVE-2023-53905
CWE-1236
High
Rukovoditel Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2023-53913)
CVE-2023-53913
CWE-1236
High
phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2023-53929)
CVE-2023-53929
CWE-1236
High
ProjectSend Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2023-53930)
CVE-2023-53930
CWE-639
High
Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-53933)
CVE-2023-53933
CWE-434
High
Dotclear Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-53952)
CVE-2023-53952
CWE-434
High
MyBB Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-53979)
CVE-2023-53979
CWE-22
High
OpenSSL CVE-2023-5363 Vulnerability (CVE-2023-5363)
CVE-2023-5363
-
High
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-5379)
CVE-2023-5379
CWE-770
High
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-5539)
CVE-2023-5539
CWE-94
High
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-5540)
CVE-2023-5540
CWE-94
High
Squid Improper Handling of Exceptional Conditions Vulnerability (CVE-2023-5824)
CVE-2023-5824
CWE-755
High
PostgreSQL Integer Overflow or Wraparound Vulnerability (CVE-2023-5869)
CVE-2023-5869
CWE-190
High
EspoCRM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-5965)
CVE-2023-5965
CWE-434
High
« Previous
1
...
52
53
54
55
56
57
58
59
...
175
Next »
