🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Invicti vs. Competitors
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
MSSP
Documentation
Vulnerability Database
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Known Vulnerabilities
This page lists
14981 vulnerabilities
in this category.
Critical: 1612
High: 4015
Medium: 8569
Low: 783
Information: 2
Vulnerability Name
CVE
CWE
Severity
MySQL CVE-2023-22026 Vulnerability (CVE-2023-22026)
CVE-2023-22026
-
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-46967)
CVE-2023-46967
CWE-707
Medium
EspoCRM Server-Side Request Forgery (SSRF) Vulnerability (CVE-2023-46736)
CVE-2023-46736
CWE-918
Medium
MySQL CVE-2023-22095 Vulnerability (CVE-2023-22095)
CVE-2023-22095
-
Medium
MySQL CVE-2023-22008 Vulnerability (CVE-2023-22008)
CVE-2023-22008
-
Medium
GibbonEdu Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45879)
CVE-2023-45879
CWE-707
Medium
TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45819)
CVE-2023-45819
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-23922)
CVE-2023-23922
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-23921)
CVE-2023-23921
CWE-707
Medium
Joomla URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-23754)
CVE-2023-23754
CWE-601
Medium
Joomla Other Vulnerability (CVE-2023-23752)
CVE-2023-23752
-
Medium
Joomla Incorrect Authorization Vulnerability (CVE-2023-23751)
CVE-2023-23751
CWE-863
Medium
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-23750)
CVE-2023-23750
CWE-352
Medium
axios Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-45857)
CVE-2023-45857
CWE-352
Medium
MediaWiki Incorrect Authorization Vulnerability (CVE-2023-22945)
CVE-2023-22945
CWE-863
Medium
MediaWiki Use of Insufficiently Random Values Vulnerability (CVE-2023-22912)
CVE-2023-22912
CWE-330
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-22911)
CVE-2023-22911
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-22910)
CVE-2023-22910
CWE-707
Medium
MediaWiki CVE-2023-22909 Vulnerability (CVE-2023-22909)
CVE-2023-22909
-
Medium
Ruby on Rails URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-22797)
CVE-2023-22797
CWE-601
Medium
GibbonEdu Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45881)
CVE-2023-45881
CWE-707
Medium
Oracle Database Server CVE-2023-22096 Vulnerability (CVE-2023-22096)
CVE-2023-22096
-
Medium
Twisted Web HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2023-46137)
CVE-2023-46137
-
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-46251)
CVE-2023-46251
CWE-707
Medium
Atlassian Confluence Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-22504)
CVE-2023-22504
CWE-434
Medium
Atlassian Confluence CVE-2023-22503 Vulnerability (CVE-2023-22503)
CVE-2023-22503
-
Medium
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-22462)
CVE-2023-22462
CWE-707
Medium
MySQL CVE-2023-22115 Vulnerability (CVE-2023-22115)
CVE-2023-22115
-
Medium
MySQL CVE-2023-22114 Vulnerability (CVE-2023-22114)
CVE-2023-22114
-
Medium
MySQL CVE-2023-22112 Vulnerability (CVE-2023-22112)
CVE-2023-22112
-
Medium
MySQL CVE-2023-22111 Vulnerability (CVE-2023-22111)
CVE-2023-22111
-
Medium
MySQL CVE-2023-22110 Vulnerability (CVE-2023-22110)
CVE-2023-22110
-
Medium
MySQL CVE-2023-22104 Vulnerability (CVE-2023-22104)
CVE-2023-22104
-
Medium
MySQL CVE-2023-22103 Vulnerability (CVE-2023-22103)
CVE-2023-22103
-
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-46732)
CVE-2023-46732
CWE-707
Medium
MySQL CVE-2023-22097 Vulnerability (CVE-2023-22097)
CVE-2023-22097
-
Medium
MySQL CVE-2023-22015 Vulnerability (CVE-2023-22015)
CVE-2023-22015
-
Medium
MySQL CVE-2023-22007 Vulnerability (CVE-2023-22007)
CVE-2023-22007
-
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1757)
CVE-2023-1757
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1885)
CVE-2023-1885
CWE-707
Medium
Jboss EAP CVE-2023-4061 Vulnerability (CVE-2023-4061)
CVE-2023-4061
-
Medium
Dolibarr Missing Authorization Vulnerability (CVE-2023-4198)
CVE-2023-4198
CWE-862
Medium
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-4220)
CVE-2023-4220
CWE-434
Medium
Pega Infinity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-4843)
CVE-2023-4843
CWE-707
Medium
Pega Infinity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-50167)
CVE-2023-50167
CWE-707
Medium
Oracle JRE CVE-2023-21835 Vulnerability (CVE-2023-21835)
CVE-2023-21835
-
Medium
Oracle JRE CVE-2023-21830 Vulnerability (CVE-2023-21830)
CVE-2023-21830
-
Medium
SharePoint CVE-2023-21743 Vulnerability (CVE-2023-21743)
CVE-2023-21743
-
Medium
Caddy Web Server Authentication Bypass by Spoofing Vulnerability (CVE-2023-50463)
CVE-2023-50463
CWE-290
Medium
XWiki CVE-2023-50720 Vulnerability (CVE-2023-50720)
CVE-2023-50720
-
Medium
Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1932)
CVE-2023-1932
CWE-707
Medium
phpMyFAQ Business Logic Errors Vulnerability (CVE-2023-1887)
CVE-2023-1887
-
Medium
XWiki Incorrect Authorization Vulnerability (CVE-2023-50732)
CVE-2023-50732
CWE-863
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-51445)
CVE-2023-51445
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-51704)
CVE-2023-51704
CWE-707
Medium
MySQL CVE-2023-21876 Vulnerability (CVE-2023-21876)
CVE-2023-21876
-
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1884)
CVE-2023-1884
CWE-707
Medium
phpMyFAQ Improper Access Control Vulnerability (CVE-2023-1883)
CVE-2023-1883
CWE-284
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1882)
CVE-2023-1882
CWE-707
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-51790)
CVE-2023-51790
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-53897)
CVE-2023-53897
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-53898)
CVE-2023-53898
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1880)
CVE-2023-1880
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1879)
CVE-2023-1879
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1878)
CVE-2023-1878
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1875)
CVE-2023-1875
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1761)
CVE-2023-1761
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1760)
CVE-2023-1760
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1759)
CVE-2023-1759
CWE-707
Medium
phpMyFAQ Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) Vulnerability (CVE-2023-1758)
CVE-2023-1758
CWE-75
Medium
MySQL CVE-2023-21875 Vulnerability (CVE-2023-21875)
CVE-2023-21875
-
Medium
MySQL CVE-2023-21877 Vulnerability (CVE-2023-21877)
CVE-2023-21877
-
Medium
MySQL CVE-2023-22005 Vulnerability (CVE-2023-22005)
CVE-2023-22005
-
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-47795)
CVE-2023-47795
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-47125)
CVE-2023-47125
CWE-707
Medium
«
1
...
104
105
106
...
200
»