Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
Apache Tomcat Other Vulnerability (CVE-2002-0936)
CVE-2002-0936
-
Medium
Django Inefficient Regular Expression Complexity Vulnerability (CVE-2024-27351)
CVE-2024-27351
CWE-1333
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-27300)
CVE-2024-27300
CWE-707
Medium
MySQL Other Vulnerability (CVE-2002-0969)
CVE-2002-0969
-
Medium
PostgreSQL Other Vulnerability (CVE-2002-0972)
CVE-2002-0972
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-27186)
CVE-2024-27186
CWE-707
Medium
Joomla URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-27184)
CVE-2024-27184
CWE-601
Medium
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26450)
CVE-2024-26450
CWE-352
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-26279)
CVE-2024-26279
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-26278)
CVE-2024-26278
CWE-707
Medium
PHP Other Vulnerability (CVE-2002-0986)
CVE-2002-0986
-
Medium
Liferay Portal Incorrect Authorization Vulnerability (CVE-2024-25604)
CVE-2024-25604
CWE-863
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25603)
CVE-2024-25603
CWE-707
Medium
TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-29881)
CVE-2024-29881
CWE-707
Medium
Oracle Application Server Other Vulnerability (CVE-2002-1632)
CVE-2002-1632
-
Medium
Apache HTTP Server Other Vulnerability (CVE-2002-1592)
CVE-2002-1592
-
Medium
Apache HTTP Server Other Vulnerability (CVE-2002-1593)
CVE-2002-1593
-
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23821)
CVE-2024-23821
CWE-707
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23819)
CVE-2024-23819
CWE-707
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23818)
CVE-2024-23818
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23817)
CVE-2024-23817
CWE-707
Medium
Apache Tomcat Incomplete Cleanup Vulnerability (CVE-2024-23672)
CVE-2024-23672
CWE-459
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23643)
CVE-2024-23643
CWE-707
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23642)
CVE-2024-23642
CWE-707
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23640)
CVE-2024-23640
CWE-707
Medium
Squid Operation on a Resource after Expiration or Release Vulnerability (CVE-2024-23638)
CVE-2024-23638
CWE-672
Medium
GeoServer Other Vulnerability (CVE-2024-23634)
CVE-2024-23634
-
Medium
MyBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-23336)
CVE-2024-23336
CWE-918
Medium
MyBB CVE-2024-23335 Vulnerability (CVE-2024-23335)
CVE-2024-23335
-
Medium
Oracle Application Server Other Vulnerability (CVE-2002-1635)
CVE-2002-1635
-
Medium
Apache Tomcat Other Vulnerability (CVE-2002-1567)
CVE-2002-1567
-
Medium
Oracle Application Server Other Vulnerability (CVE-2002-1636)
CVE-2002-1636
-
Medium
Envoy Proxy Uncontrolled Resource Consumption Vulnerability (CVE-2024-23323)
CVE-2024-23323
CWE-400
Medium
Oracle Application Server CVE-2002-1637 Vulnerability (CVE-2002-1637)
CVE-2002-1637
-
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23179)
CVE-2024-23179
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23178)
CVE-2024-23178
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23177)
CVE-2024-23177
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23174)
CVE-2024-23174
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23173)
CVE-2024-23173
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23172)
CVE-2024-23172
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23171)
CVE-2024-23171
CWE-707
Medium
CrushFTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-22910)
CVE-2024-22910
CWE-707
Medium
osCommerce Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-22724)
CVE-2024-22724
CWE-94
Medium
Seo Panel Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-22648)
CVE-2024-22648
CWE-918
Medium
Seo Panel Observable Discrepancy Vulnerability (CVE-2024-22647)
CVE-2024-22647
CWE-203
Medium
OpenSSL Other Vulnerability (CVE-2002-1568)
CVE-2002-1568
-
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24574)
CVE-2024-24574
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25603)
CVE-2024-25603
CWE-707
Medium
Liferay DXP Observable Discrepancy Vulnerability (CVE-2024-25146)
CVE-2024-25146
CWE-203
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25602)
CVE-2024-25602
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25602)
CVE-2024-25602
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25601)
CVE-2024-25601
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25601)
CVE-2024-25601
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25152)
CVE-2024-25152
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25152)
CVE-2024-25152
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25151)
CVE-2024-25151
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25151)
CVE-2024-25151
CWE-707
Medium
Liferay Portal Other Vulnerability (CVE-2024-25150)
CVE-2024-25150
-
Medium
Liferay DXP Other Vulnerability (CVE-2024-25150)
CVE-2024-25150
-
Medium
Liferay Portal Incorrect Authorization Vulnerability (CVE-2024-25149)
CVE-2024-25149
CWE-863
Medium
Liferay DXP Incorrect Authorization Vulnerability (CVE-2024-25149)
CVE-2024-25149
CWE-863
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25147)
CVE-2024-25147
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25147)
CVE-2024-25147
CWE-707
Medium
Liferay Portal Observable Discrepancy Vulnerability (CVE-2024-25146)
CVE-2024-25146
CWE-203
Medium
PostgreSQL Other Vulnerability (CVE-2002-1402)
CVE-2002-1402
-
Medium
TYPO3 CVE-2024-25118 Vulnerability (CVE-2024-25118)
CVE-2024-25118
-
Medium
PostgreSQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2002-1401)
CVE-2002-1401
CWE-119
Medium
PostgreSQL Other Vulnerability (CVE-2002-1398)
CVE-2002-1398
-
Medium
Apache HTTP Server Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') Vulnerability (CVE-2024-24795)
CVE-2024-24795
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24815)
CVE-2024-24815
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24816)
CVE-2024-24816
CWE-707
Medium
EspoCRM URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-24818)
CVE-2024-24818
CWE-601
Medium
TYPO3 CVE-2024-25119 Vulnerability (CVE-2024-25119)
CVE-2024-25119
-
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-25145)
CVE-2024-25145
CWE-707
Medium
TYPO3 CVE-2024-25120 Vulnerability (CVE-2024-25120)
CVE-2024-25120
-
Medium