Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

High Severity Vulnerabilities

Found 12675 vulnerabilities at High severity.

Vulnerability Name
CVE
CWE
Severity
WordPress 2.3 Cross-Site Scripting Vulnerability (2.3)
CVE-2007-5710
CWE-79
High
WordPress 2.3.1 Unauthorized Post Access Vulnerability (2.3.1)
-
CWE-264
High
WordPress 'admin-ajax.php' SQL Injection Vulnerability (2.1.3)
CVE-2007-2821
CWE-89
High
WordPress Cookies Security Bypass Weakness (1.5 - 2.3.1)
CVE-2007-6013
CWE-287
High
WordPress Pingback Source URI Denial of Service and Information Disclosure Vulnerabilities (0.6.2 - 2.1.3)
CVE-2007-0540
CWE-400
High
WordPress 'templates.php' Cross-Site Scripting Vulnerability (0.6.2 - 2.1)
CVE-2007-1049
CWE-79
High
WordPress 'wp-db.php' Character Set SQL Injection Vulnerability (2.0 - 2.3.1)
CVE-2007-6318
CWE-89
High
WordPress 'wp-register.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1)
CVE-2007-5106
CWE-79
High
WordPress 2.3.2 Post Edit Unauthorized Access Vulnerability (0.7 - 2.3.2)
CVE-2008-0664
CWE-264
High
WordPress 2.3.3 Directory Traversal Vulnerability (0.6.2 - 2.3.3)
CVE-2008-4769
CWE-22
High
WordPress 2.5 Cookie Integrity Protection Unauthorized Access Vulnerability (0.6.2 - 2.5)
CVE-2008-1930
CWE-287
High
WordPress 2.6.3 Cross-Site Scripting Vulnerability (0.6.2 - 2.6.3)
CVE-2008-5278
CWE-79
High
WordPress 'get_edit_post_link()' and 'get_edit_comment_link()' Multiple Eavesdropping Vulnerabilities (0.6.2 - 2.6)
CVE-2008-3747
CWE-264
High
WordPress MU 'wp-admin/wpmu-blogs.php' Multiple Cross-Site Scripting Vulnerabilities (1.0 - 2.5.1)
CVE-2008-4671
CWE-79
High
WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0.11 - 2.3)
CVE-2008-0193
CWE-79
High
WordPress 'press-this.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.5.1)
CVE-2008-3233
CWE-79
High
WordPress 'wp-admin/options.php' Remote Code Execution Vulnerability (0.6.2 - 2.3.2)
CVE-2008-5695
CWE-20
High
WordPress 2.6.1 Lost Password SQL Column Truncation Unauthorized Access Vulnerability (0.71 - 2.6.1)
CVE-2008-4107
CWE-20
High
WordPress 2.8 Multiple Existing/Non-Existing Username Enumeration Weaknesses (0.6.2 - 2.8)
CVE-2009-2336
CWE-16
High
WordPress 2.8.1 Comment Author URI Cross-Site Scripting Vulnerability (0.6.2 - 2.8.1)
CVE-2009-2851
CWE-79
High
WordPress 2.8.2 Multiple Security Bypass Vulnerabilities (2.0 - 2.8.2)
CVE-2009-2854
CWE-264
High
WordPress 2.8.3 Admin Password Reset Security Bypass Vulnerability (0.6.2 - 2.8.3)
CVE-2009-2762
CWE-255
High
WordPress 2.8.4 Denial of Service Vulnerability (0.6.2 - 2.8.4)
CVE-2009-3622
CWE-310
High
WordPress MU 'wp-includes/wpmu-functions.php' Cross-Site Scripting Vulnerability (1.0 - 2.6)
CVE-2009-1030
CWE-79
High
WordPress 'wp-admin/admin.php' Module Configuration Security Bypass Vulnerability (0.6.2 - 2.8)
CVE-2009-2334
CWE-287
High
WordPress 2.9.1 Trashed Posts Security Bypass Vulnerability (2.9 - 2.9.1)
CVE-2010-0682
CWE-264
High
WordPress 3.0.3 KSES Library Cross-Site Scripting Vulnerability (0.6.2 - 3.0.3)
CVE-2010-4536
CWE-79
High
WordPress 'xmlrpc.php' Remote Security Bypass Vulnerability (3.0.1 - 3.0.2)
CVE-2010-5106
CWE-264
High
WordPress 3.0.4 Multiple Vulnerabilities (0.6.2 - 3.0.4)
CVE-2011-0701
CWE-200
High
WordPress 3.1 Multiple Vulnerabilities (0.7 - 3.1)
CVE-2011-4957
CWE-400
High
WordPress 3.1.2 Multiple Vulnerabilities (3.0.1 - 3.1.2)
CVE-2011-3130
CWE-693
High
WordPress 3.1.3 Multiple SQL Injection Vulnerabilities (3.1 - 3.1.3)
-
CWE-89
High
WordPress Clickjacking Vulnerability (0.7 - 3.1.2)
CVE-2011-3127
CWE-693
High
WordPress 'comment_post_ID' Parameter SQL Injection Vulnerability (3.0.4)
-
CWE-89
High
WordPress 'press-this.php' Remote Security Bypass Vulnerability (0.7 - 3.1.1)
CVE-2011-5270
CWE-264
High
WordPress 3.3 Cross-Site Scripting Vulnerability (3.3)
CVE-2012-0287
CWE-79
High
WordPress Anti-CSRF Token Security Bypass Weakness (3.3.1)
CVE-2012-1936
CWE-352
High
WordPress 'swfupload.swf' Cross-Site Scripting Vulnerability (2.5 - 3.3.1)
CVE-2012-3414
CWE-79
High
WordPress 3.5 Multiple Vulnerabilities (1.5 - 3.5)
CVE-2013-0237
CWE-918
High
WordPress 2.0.9 Multiple Vulnerabilities (2.0 - 2.0.9)
CVE-2007-1897
CWE-264
High
WordPress 2.1.2 Multiple Vulnerabilities (2.1 - 2.1.2)
CVE-2007-1897
CWE-264
High
WordPress 2.2 Multiple Vulnerabilities (2.2)
CVE-2007-3543
CWE-434
High
WordPress 2.2.1 Multiple Vulnerabilities (2.2.1)
CVE-2007-4154
CWE-601
High
WordPress 2.2.2 Multiple Vulnerabilities (2.2 - 2.2.2)
CVE-2008-2146
CWE-264
High
WordPress 2.5 Cross-Site Scripting Vulnerability (2.5)
CVE-2008-2068
CWE-79
High
WordPress 2.6.2 Remote Code Execution Vulnerability (0.70 - 2.6.2)
CVE-2008-4796
CWE-94
High
WordPress 2.8.5 Multiple Vulnerabilities (2.8 - 2.8.5)
CVE-2009-3891
CWE-94
High
WordPress 3.0.1 Multiple Vulnerabilities (0.6.2 - 3.0.1)
CVE-2010-5296
CWE-264
High
WordPress 3.3.1 Multiple Vulnerabilities (2.0 - 3.3.1)
CVE-2012-3414
CWE-352
High
WordPress 3.3.2 Multiple Vulnerabilities (3.3 - 3.3.2)
CVE-2012-6635
CWE-352
High
WordPress 3.4 Multiple Vulnerabilities (3.4)
CVE-2012-3385
CWE-352
High
WordPress 3.4.1 Multiple Vulnerabilities (2.0 - 3.4.1)
CVE-2012-4422
CWE-264
High
WordPress 3.5.1 Multiple Vulnerabilities (2.0 - 3.5.1)
CVE-2013-2205
CWE-918
High
WordPress 3.6 Multiple Vulnerabilities (2.0 - 3.6)
CVE-2013-5739
CWE-264
High
WordPress 3.7.1 Multiple Vulnerabilities (3.7 - 3.7.1)
CVE-2014-0166
CWE-287
High
WordPress 3.7.3 Multiple Vulnerabilities (3.7 - 3.7.3)
CVE-2014-5266
CWE-611
High
WordPress 3.7.4 Multiple Vulnerabilities (3.7 - 3.7.4)
CVE-2014-9039
CWE-918
High
WordPress 3.8.1 Multiple Vulnerabilities (3.8 - 3.8.1)
CVE-2014-0166
CWE-287
High
WordPress 3.8.3 Multiple Vulnerabilities (3.8 - 3.8.3)
CVE-2014-5266
CWE-611
High
WordPress 3.8.4 Multiple Vulnerabilities (3.8 - 3.8.4)
CVE-2014-9039
CWE-918
High
WordPress 3.9.1 Multiple Vulnerabilities (3.9 - 3.9.1)
CVE-2014-5266
CWE-611
High
WordPress 3.9.2 Multiple Vulnerabilities (3.9 - 3.9.2)
CVE-2014-9039
CWE-918
High
WordPress 4.0 Multiple Vulnerabilities (4.0)
CVE-2014-9039
CWE-918
High
WordPress Cross-Site Scripting Vulnerability (3.0 - 3.6.1)
CVE-2014-9031
CWE-79
High
WordPress Denial of Service Vulnerability (3.5 - 3.6.1)
CVE-2014-5265
CWE-399
High
WordPress 4.2.2 Multiple Vulnerabilities (0.7 - 4.2.2)
CVE-2015-5623
CWE-264
High
WordPress 4.2.3 Multiple Vulnerabilities (0.7 - 4.2.3)
CVE-2015-5734
CWE-264
High
WordPress 4.3 Multiple Vulnerabilities (0.7 - 4.3)
CVE-2015-7989
CWE-264
High
WordPress Cross-Site Scripting Vulnerability (0.70 - 4.1.1)
CVE-2015-3438
CWE-79
High
WordPress Cross-Site Scripting Vulnerability (3.9.3 - 4.2)
CVE-2015-3440
CWE-79
High
WordPress Cross-Site Scripting Vulnerability (3.9 - 4.1.1)
CVE-2015-3439
CWE-79
High
WordPress Multiple Cross-Site Scripting Vulnerabilities (4.1 - 4.2.1)
CVE-2015-8834
CWE-79
High
WordPress 3.7.x Multiple Vulnerabilities (3.7 - 3.7.15)
CVE-2016-7169
CWE-79
High
WordPress 3.7.x Multiple Vulnerabilities (3.7 - 3.7.14)
CVE-2016-5839
CWE-400
High
WordPress 3.7.x Multiple Vulnerabilities (3.7 - 3.7.12)
CVE-2016-2222
CWE-918
High