Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
IBM RTC Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-4989)
CVE-2020-4989
CWE-668
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9581)
CVE-2020-9581
CWE-707
Medium
Prototype Improper Privilege Management Vulnerability (CVE-2020-7993)
CVE-2020-7993
CWE-269
Medium
Ruby on Rails Uncontrolled Resource Consumption Vulnerability (CVE-2020-8185)
CVE-2020-8185
CWE-400
Medium
Ruby on Rails Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8167)
CVE-2020-8167
CWE-352
Medium
Ruby on Rails Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8166)
CVE-2020-8166
CWE-352
Medium
Moodle Externally Controlled Reference to a Resource in Another Sphere Vulnerability (CVE-2023-30943)
CVE-2023-30943
CWE-610
Medium
ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-8143)
CVE-2020-8143
CWE-601
Medium
ReviveAdserver Incorrect Authorization Vulnerability (CVE-2020-8142)
CVE-2020-8142
CWE-863
Medium
reveal.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8127)
CVE-2020-8127
CWE-707
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8115)
CVE-2020-8115
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8091)
CVE-2020-8091
CWE-707
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8089)
CVE-2020-8089
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-7996)
CVE-2020-7996
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-7994)
CVE-2020-7994
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31144)
CVE-2023-31144
CWE-707
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8264)
CVE-2020-8264
CWE-707
Medium
Drupal Incorrect Authorization Vulnerability (CVE-2023-31250)
CVE-2023-31250
CWE-863
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31508)
CVE-2023-31508
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-7937)
CVE-2020-7937
CWE-707
Medium
Plone CMS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-7936)
CVE-2020-7936
CWE-601
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-7934)
CVE-2020-7934
CWE-707
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31799)
CVE-2023-31799
CWE-707
Medium
MongoDb Other Vulnerability (CVE-2020-7929)
CVE-2020-7929
-
Medium
MongoDb Other Vulnerability (CVE-2020-7928)
CVE-2020-7928
-
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31800)
CVE-2023-31800
CWE-707
Medium
MongoDb Improper Handling of Exceptional Conditions Vulnerability (CVE-2020-7926)
CVE-2020-7926
CWE-755
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31801)
CVE-2023-31801
CWE-707
Medium
MongoDb Improper Handling of Exceptional Conditions Vulnerability (CVE-2020-7923)
CVE-2020-7923
CWE-755
Medium
MongoDb Incorrect Authorization Vulnerability (CVE-2020-7921)
CVE-2020-7921
CWE-863
Medium
phpBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-8226)
CVE-2020-8226
CWE-918
Medium
Python Improper Input Validation Vulnerability (CVE-2020-8315)
CVE-2020-8315
CWE-20
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31802)
CVE-2023-31802
CWE-707
Medium
Grafana Improper Synchronization Vulnerability (CVE-2023-2801)
CVE-2023-2801
CWE-662
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9577)
CVE-2020-9577
CWE-707
Medium
Grafana Missing Authorization Vulnerability (CVE-2023-2183)
CVE-2023-2183
CWE-862
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-2427)
CVE-2023-2427
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-2428)
CVE-2023-2428
CWE-707
Medium
PostgreSQL CVE-2023-2455 Vulnerability (CVE-2023-2455)
CVE-2023-2455
-
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-2550)
CVE-2023-2550
CWE-707
Medium
OpenSSL Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-2650)
CVE-2023-2650
CWE-770
Medium
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-2745)
CVE-2023-2745
CWE-22
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-2752)
CVE-2023-2752
CWE-707
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9467)
CVE-2020-9467
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9440)
CVE-2020-9440
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-2753)
CVE-2023-2753
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-2817)
CVE-2023-2817
CWE-707
Medium
PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30545)
CVE-2023-30545
CWE-138
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9311)
CVE-2020-9311
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9281)
CVE-2020-9281
CWE-707
Medium
OpenSSL Improper Authentication Vulnerability (CVE-2023-2975)
CVE-2023-2975
CWE-287
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9281)
CVE-2020-9281
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-2998)
CVE-2023-2998
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9016)
CVE-2020-9016
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-2999)
CVE-2023-2999
CWE-707
Medium
Vanilla Forums Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8825)
CVE-2020-8825
CWE-707
Medium
Envoy Proxy Insufficient Verification of Data Authenticity Vulnerability (CVE-2020-8660)
CVE-2020-8660
CWE-345
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-30177)
CVE-2023-30177
CWE-707
Medium
Python Uncontrolled Resource Consumption Vulnerability (CVE-2020-8492)
CVE-2020-8492
CWE-400
Medium
TYPO3 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-30451)
CVE-2023-30451
CWE-22
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8421)
CVE-2020-8421
CWE-707
Medium
UAParser.js Other Vulnerability (CVE-2020-7793)
CVE-2020-7793
-
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31803)
CVE-2023-31803
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5004)
CVE-2020-5004
CWE-707
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5276)
CVE-2020-5276
CWE-707
Medium
phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-5501)
CVE-2020-5501
CWE-352
Medium
WebLogic CVE-2020-5421 Vulnerability (CVE-2020-5421)
CVE-2020-5421
-
Medium
SharePoint CVE-2023-33142 Vulnerability (CVE-2023-33142)
CVE-2023-33142
-
Medium
WebLogic Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-5397)
CVE-2020-5397
CWE-352
Medium
PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5293)
CVE-2020-5293
CWE-863
Medium
PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5288)
CVE-2020-5288
CWE-863
Medium
PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5287)
CVE-2020-5287
CWE-863
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5286)
CVE-2020-5286
CWE-707
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5285)
CVE-2020-5285
CWE-707
Medium
Next.js Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-5284)
CVE-2020-5284
CWE-22
Medium
«
1
...
105
106
107
...
181
»
