Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Beego Framework CVE-2022-31259 Vulnerability (CVE-2022-31259)
CVE-2022-31259
-
Critical
Oracle JRE CVE-2013-5810 Vulnerability (CVE-2013-5810)
CVE-2013-5810
-
Critical
Jboss EAP CVE-2022-4492 Vulnerability (CVE-2022-4492)
CVE-2022-4492
-
Critical
IBMHttpServer Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-4947)
CVE-2015-4947
CWE-119
Critical
Atlassian Jira Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-1165)
CVE-2010-1165
CWE-94
Critical
phpList Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2020-8547)
CVE-2020-8547
CWE-843
Critical
ATutor Improper Authentication Vulnerability (CVE-2014-9753)
CVE-2014-9753
CWE-287
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-9912)
CVE-2014-9912
CWE-119
Critical
SharePoint Resource Management Errors Vulnerability (CVE-2015-0064)
CVE-2015-0064
-
Critical
SharePoint Other Vulnerability (CVE-2015-0085)
CVE-2015-0085
-
Critical
SharePoint Resource Management Errors Vulnerability (CVE-2015-0086)
CVE-2015-0086
-
Critical
Joomla Incorrect Authorization Vulnerability (CVE-2010-1435)
CVE-2010-1435
CWE-863
Critical
Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2010-1433)
CVE-2010-1433
CWE-434
Critical
Ruby on Rails Deserialization of Untrusted Data Vulnerability (CVE-2020-8165)
CVE-2020-8165
CWE-502
Critical
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-30838)
CVE-2023-30838
CWE-707
Critical
Dolibarr Improper Authentication Vulnerability (CVE-2020-7995)
CVE-2020-7995
CWE-287
Critical
Liferay Portal Deserialization of Untrusted Data Vulnerability (CVE-2020-7961)
CVE-2020-7961
CWE-502
Critical
Django Improper Input Validation Vulnerability (CVE-2023-31047)
CVE-2023-31047
CWE-20
Critical
FluxBB Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-9574)
CVE-2014-9574
CWE-22
Critical
Plone CMS Improper Privilege Management Vulnerability (CVE-2020-7941)
CVE-2020-7941
CWE-269
Critical
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31126)
CVE-2023-31126
CWE-707
Critical
PHP Out-of-bounds Write Vulnerability (CVE-2015-0235)
CVE-2015-0235
CWE-787
Critical
PostgreSQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-0244)
CVE-2015-0244
CWE-138
Critical
CKEditor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-31541)
CVE-2023-31541
CWE-434
Critical
PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-31672)
CVE-2023-31672
CWE-138
Critical
SugarCRM Missing Authorization Vulnerability (CVE-2020-7472)
CVE-2020-7472
CWE-862
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-7471)
CVE-2020-7471
CWE-138
Critical
Oracle Database Server CVE-2015-0457 Vulnerability (CVE-2015-0457)
CVE-2015-0457
-
Critical
Oracle JRE CVE-2010-0840 Vulnerability (CVE-2010-0840)
CVE-2010-0840
-
Critical
PHP Out-of-bounds Read Vulnerability (CVE-2020-7061)
CVE-2020-7061
CWE-125
Critical
PHP Out-of-bounds Read Vulnerability (CVE-2020-7060)
CVE-2020-7060
CWE-125
Critical
PHP Out-of-bounds Read Vulnerability (CVE-2020-7059)
CVE-2020-7059
CWE-125
Critical
OpenVPN AS Improper Authentication Vulnerability (CVE-2020-8953)
CVE-2020-8953
CWE-287
Critical
MediaWiki Improper Restriction of XML External Entity Reference Vulnerability (CVE-2014-9487)
CVE-2014-9487
CWE-611
Critical
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-32071)
CVE-2023-32071
CWE-707
Critical
Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2020-9664)
CVE-2020-9664
CWE-94
Critical
MediaWiki CVE-2023-29141 Vulnerability (CVE-2023-29141)
CVE-2023-29141
-
Critical
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-29201)
CVE-2023-29201
CWE-707
Critical
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-29202)
CVE-2023-29202
CWE-707
Critical
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-21014)
CVE-2021-21014
CWE-434
Critical
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-29207)
CVE-2023-29207
CWE-707
Critical
EspoCRM Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-7985)
CVE-2014-7985
CWE-22
Critical
Sqlite CVE-2021-20223 Vulnerability (CVE-2021-20223)
CVE-2021-20223
-
Critical
SharePoint CVE-2023-29357 Vulnerability (CVE-2023-29357)
CVE-2023-29357
-
Critical
WebLogic CVE-2021-1994 Vulnerability (CVE-2021-1994)
CVE-2021-1994
-
Critical
SharePoint CVE-2021-1716 Vulnerability (CVE-2021-1716)
CVE-2021-1716
-
Critical
SharePoint Out-of-bounds Write Vulnerability (CVE-2021-1715)
CVE-2021-1715
CWE-787
Critical
SharePoint CVE-2021-1707 Vulnerability (CVE-2021-1707)
CVE-2021-1707
-
Critical
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9691)
CVE-2020-9691
CWE-707
Critical
Magento CVE-2020-9632 Vulnerability (CVE-2020-9632)
CVE-2020-9632
-
Critical
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-9546)
CVE-2020-9546
CWE-502
Critical
Magento CVE-2020-9631 Vulnerability (CVE-2020-9631)
CVE-2020-9631
-
Critical
Magento Improper Privilege Management Vulnerability (CVE-2020-9630)
CVE-2020-9630
CWE-269
Critical
Magento CVE-2020-9585 Vulnerability (CVE-2020-9585)
CVE-2020-9585
-
Critical
Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9583)
CVE-2020-9583
CWE-138
Critical
Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9582)
CVE-2020-9582
CWE-138
Critical
Magento CVE-2020-9580 Vulnerability (CVE-2020-9580)
CVE-2020-9580
-
Critical
Magento CVE-2020-9579 Vulnerability (CVE-2020-9579)
CVE-2020-9579
-
Critical
Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9578)
CVE-2020-9578
CWE-138
Critical
Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9576)
CVE-2020-9576
CWE-138
Critical
PHP Integer Overflow or Wraparound Vulnerability (CVE-2010-1866)
CVE-2010-1866
CWE-190
Critical
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-9548)
CVE-2020-9548
CWE-502
Critical
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-9547)
CVE-2020-9547
CWE-502
Critical
phpMyFAQ Improper Access Control Vulnerability (CVE-2023-2429)
CVE-2023-2429
CWE-284
Critical
Dot CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-6754)
CVE-2020-6754
CWE-22
Critical
IBMHttpServer CVE-2010-0425 Vulnerability (CVE-2010-0425)
CVE-2010-0425
-
Critical
Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-21018)
CVE-2021-21018
CWE-138
Critical
Oracle Database Server CVE-2009-3415 Vulnerability (CVE-2009-3415)
CVE-2009-3415
-
Critical
Oracle HTTP Server Other Vulnerability (CVE-2020-35166)
CVE-2020-35166
-
Critical
PHP Other Vulnerability (CVE-2015-4116)
CVE-2015-4116
-
Critical
Envoy Proxy Improper Encoding or Escaping of Output Vulnerability (CVE-2023-35941)
CVE-2023-35941
CWE-116
Critical
Oracle HTTP Server Use of Insufficiently Random Values Vulnerability (CVE-2020-35163)
CVE-2020-35163
CWE-330
Critical
PHP Other Vulnerability (CVE-2015-4599)
CVE-2015-4599
-
Critical
PHP Other Vulnerability (CVE-2015-4600)
CVE-2015-4600
-
Critical
PHP Other Vulnerability (CVE-2015-4601)
CVE-2015-4601
-
Critical
«
1
...
10
11
12
...
181
»
