🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Invicti vs. Competitors
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
MSSP
Documentation
Vulnerability Database
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Known Vulnerabilities
This page lists
15072 vulnerabilities
in this category.
Critical: 1617
High: 4043
Medium: 8626
Low: 784
Information: 2
Vulnerability Name
CVE
CWE
Severity
WebLogic Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2025-61764)
CVE-2025-61764
CWE-200
Medium
Liferay DXP Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2025-62242)
CVE-2025-62242
CWE-639
Medium
CKEditor Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2021-26272)
CVE-2021-26272
CWE-829
Medium
Liferay Portal Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2025-62242)
CVE-2025-62242
CWE-639
Medium
Liferay DXP Incorrect Authorization Vulnerability (CVE-2025-62243)
CVE-2025-62243
CWE-863
Medium
Liferay Portal Incorrect Authorization Vulnerability (CVE-2025-62243)
CVE-2025-62243
CWE-863
Medium
CKEditor Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2021-26271)
CVE-2021-26271
CWE-829
Medium
Liferay Portal Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2025-62244)
CVE-2025-62244
CWE-639
Medium
Atlassian Jira Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-26086)
CVE-2021-26086
CWE-22
Medium
Liferay DXP Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2025-62244)
CVE-2025-62244
CWE-639
Medium
Atlassian Confluence Missing Authorization Vulnerability (CVE-2021-26085)
CVE-2021-26085
CWE-862
Medium
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2025-62245)
CVE-2025-62245
CWE-352
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26083)
CVE-2021-26083
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26082)
CVE-2021-26082
CWE-707
Medium
Atlassian Jira CVE-2021-26081 Vulnerability (CVE-2021-26081)
CVE-2021-26081
-
Medium
Apache Tomcat Improper Resource Shutdown or Release Vulnerability (CVE-2025-61795)
CVE-2025-61795
CWE-404
Medium
MediaWiki Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2025-61646)
CVE-2025-61646
CWE-22
Medium
Grafana Other Vulnerability (CVE-2021-28147)
CVE-2021-28147
-
Medium
Chamilo Missing Authorization Vulnerability (CVE-2025-59544)
CVE-2025-59544
CWE-862
Medium
Grafana Incorrect Authorization Vulnerability (CVE-2021-28146)
CVE-2021-28146
CWE-863
Medium
Squid Stack-based Buffer Overflow Vulnerability (CVE-2025-59362)
CVE-2025-59362
CWE-121
Medium
Squid Out-of-bounds Read Vulnerability (CVE-2021-28116)
CVE-2021-28116
CWE-125
Medium
CubeCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-59411)
CVE-2025-59411
CWE-707
Medium
Dolphin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27969)
CVE-2021-27969
CWE-707
Medium
CubeCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-59412)
CVE-2025-59412
CWE-707
Medium
CubeCart Missing Authorization Vulnerability (CVE-2025-59413)
CVE-2025-59413
CWE-862
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27949)
CVE-2021-27949
CWE-707
Medium
EspoCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-59428)
CVE-2025-59428
CWE-707
Medium
Jenkins Missing Authorization Vulnerability (CVE-2025-59474)
CVE-2025-59474
CWE-862
Medium
Jenkins Missing Authorization Vulnerability (CVE-2025-59475)
CVE-2025-59475
CWE-862
Medium
Jenkins Improper Output Neutralization for Logs Vulnerability (CVE-2025-59476)
CVE-2025-59476
CWE-117
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-59540)
CVE-2025-59540
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27902)
CVE-2021-27902
CWE-707
Medium
Django Relative Path Traversal Vulnerability (CVE-2025-59682)
CVE-2025-59682
CWE-23
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-61645)
CVE-2025-61645
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-61638)
CVE-2025-61638
CWE-707
Medium
MediaWiki Improper Removal of Sensitive Information Before Storage or Transfer Vulnerability (CVE-2025-61643)
CVE-2025-61643
CWE-212
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-61642)
CVE-2025-61642
CWE-707
Medium
MediaWiki Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2025-61641)
CVE-2025-61641
CWE-22
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-61640)
CVE-2025-61640
CWE-707
Medium
WebLogic Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2021-27568)
CVE-2021-27568
CWE-754
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2025-61639)
CVE-2025-61639
CWE-200
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-61637)
CVE-2025-61637
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27889)
CVE-2021-27889
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-61636)
CVE-2025-61636
CWE-707
Medium
Pega Infinity CVE-2021-27653 Vulnerability (CVE-2021-27653)
CVE-2021-27653
-
Medium
e107 Deserialization of Untrusted Data Vulnerability (CVE-2025-61505)
CVE-2025-61505
CWE-502
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-61261)
CVE-2025-61261
CWE-707
Medium
Angular Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-61261)
CVE-2025-61261
CWE-707
Medium
Jboss EAP Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2025-5731)
CVE-2025-5731
CWE-209
Medium
SharePoint Buffer Over-read Vulnerability (CVE-2025-53736)
CVE-2025-53736
CWE-126
Medium
MySQL CVE-2021-2002 Vulnerability (CVE-2021-2002)
CVE-2021-2002
-
Medium
Oracle HTTP Server CVE-2021-2315 Vulnerability (CVE-2021-2315)
CVE-2021-2315
-
Medium
MySQL CVE-2021-2196 Vulnerability (CVE-2021-2196)
CVE-2021-2196
-
Medium
MySQL CVE-2021-2213 Vulnerability (CVE-2021-2213)
CVE-2021-2213
-
Medium
MySQL CVE-2021-2212 Vulnerability (CVE-2021-2212)
CVE-2021-2212
-
Medium
MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50079)
CVE-2025-50079
CWE-400
Medium
WebLogic CVE-2021-2211 Vulnerability (CVE-2021-2211)
CVE-2021-2211
-
Medium
MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50080)
CVE-2025-50080
CWE-400
Medium
MySQL CVE-2021-2208 Vulnerability (CVE-2021-2208)
CVE-2021-2208
-
Medium
MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50082)
CVE-2025-50082
CWE-400
Medium
MySQL CVE-2025-50083 Vulnerability (CVE-2025-50083)
CVE-2025-50083
-
Medium
WebLogic CVE-2021-2204 Vulnerability (CVE-2021-2204)
CVE-2021-2204
-
Medium
MySQL Incorrect Authorization Vulnerability (CVE-2025-50084)
CVE-2025-50084
CWE-863
Medium
MySQL CVE-2021-2203 Vulnerability (CVE-2021-2203)
CVE-2021-2203
-
Medium
MySQL CVE-2021-2202 Vulnerability (CVE-2021-2202)
CVE-2021-2202
-
Medium
MySQL Incorrect Authorization Vulnerability (CVE-2025-50085)
CVE-2025-50085
CWE-863
Medium
MySQL CVE-2021-2201 Vulnerability (CVE-2021-2201)
CVE-2021-2201
-
Medium
MySQL CVE-2021-2194 Vulnerability (CVE-2021-2194)
CVE-2021-2194
-
Medium
MySQL CVE-2021-2215 Vulnerability (CVE-2021-2215)
CVE-2021-2215
-
Medium
MySQL Incorrect Authorization Vulnerability (CVE-2025-50086)
CVE-2025-50086
CWE-863
Medium
MySQL CVE-2025-50087 Vulnerability (CVE-2025-50087)
CVE-2025-50087
-
Medium
MySQL CVE-2021-2193 Vulnerability (CVE-2021-2193)
CVE-2021-2193
-
Medium
MySQL CVE-2021-2180 Vulnerability (CVE-2021-2180)
CVE-2021-2180
-
Medium
MySQL CVE-2021-2179 Vulnerability (CVE-2021-2179)
CVE-2021-2179
-
Medium
«
1
...
111
112
113
...
201
»