Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
Oracle Database Server Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2006-1871)
CVE-2006-1871
CWE-138
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0306)
CVE-2023-0306
CWE-707
Medium
Joomla Other Vulnerability (CVE-2006-1956)
CVE-2006-1956
-
Medium
Joomla Improper Input Validation Vulnerability (CVE-2006-1957)
CVE-2006-1957
CWE-20
Medium
PHP Other Vulnerability (CVE-2006-1990)
CVE-2006-1990
-
Medium
PHP Resource Management Errors Vulnerability (CVE-2006-1991)
CVE-2006-1991
-
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-50906)
CVE-2022-50906
CWE-707
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-50905)
CVE-2022-50905
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0794)
CVE-2023-0794
CWE-707
Medium
Wordpress Plugin Backup Migration Missing Authorization Vulnerability (CVE-2023-0958)
CVE-2023-0958
CWE-862
Medium
PHP Out-of-bounds Write Vulnerability (CVE-2022-4900)
CVE-2022-4900
CWE-787
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1759)
CVE-2023-1759
CWE-707
Medium
Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1932)
CVE-2023-1932
CWE-707
Medium
phpMyFAQ Business Logic Errors Vulnerability (CVE-2023-1887)
CVE-2023-1887
-
Medium
MediaWiki Other Vulnerability (CVE-2006-1498)
CVE-2006-1498
-
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1885)
CVE-2023-1885
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1884)
CVE-2023-1884
CWE-707
Medium
phpMyFAQ Improper Access Control Vulnerability (CVE-2023-1883)
CVE-2023-1883
CWE-284
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1882)
CVE-2023-1882
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1880)
CVE-2023-1880
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1879)
CVE-2023-1879
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1878)
CVE-2023-1878
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1875)
CVE-2023-1875
CWE-707
Medium
MySQL Other Vulnerability (CVE-2006-1516)
CVE-2006-1516
-
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1761)
CVE-2023-1761
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1760)
CVE-2023-1760
CWE-707
Medium
phpMyFAQ Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) Vulnerability (CVE-2023-1758)
CVE-2023-1758
CWE-75
Medium
OpenSSL Out-of-bounds Read Vulnerability (CVE-2023-1255)
CVE-2023-1255
CWE-125
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1757)
CVE-2023-1757
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1756)
CVE-2023-1756
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1755)
CVE-2023-1755
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1754)
CVE-2023-1754
CWE-707
Medium
MySQL Other Vulnerability (CVE-2006-1517)
CVE-2006-1517
-
Medium
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1410)
CVE-2023-1410
CWE-707
Medium
MySQL Other Vulnerability (CVE-2006-1518)
CVE-2006-1518
-
Medium
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-1402)
CVE-2023-1402
CWE-668
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1320)
CVE-2023-1320
CWE-707
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1319)
CVE-2023-1319
CWE-707
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1318)
CVE-2023-1318
CWE-707
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1317)
CVE-2023-1317
CWE-707
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1316)
CVE-2023-1316
CWE-707
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1315)
CVE-2023-1315
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-4973)
CVE-2022-4973
CWE-707
Medium
Oracle Database Server Other Vulnerability (CVE-2006-2081)
CVE-2006-2081
-
Medium
Liferay DXP Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2022-42129)
CVE-2022-42129
CWE-639
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43170)
CVE-2022-43170
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44947)
CVE-2022-44947
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44946)
CVE-2022-44946
CWE-707
Medium
WordPress Other Vulnerability (CVE-2006-2702)
CVE-2006-2702
-
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44944)
CVE-2022-44944
CWE-707
Medium
Drupal Other Vulnerability (CVE-2006-2743)
CVE-2006-2743
-
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44449)
CVE-2022-44449
CWE-707
Medium
MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-43709)
CVE-2022-43709
CWE-138
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43708)
CVE-2022-43708
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43707)
CVE-2022-43707
CWE-707
Medium
ownCloud CVE-2022-43679 Vulnerability (CVE-2022-43679)
CVE-2022-43679
-
Medium
WordPress Improper Authentication Vulnerability (CVE-2022-43504)
CVE-2022-43504
CWE-287
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43500)
CVE-2022-43500
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43497)
CVE-2022-43497
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43185)
CVE-2022-43185
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43169)
CVE-2022-43169
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44949)
CVE-2022-44949
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43167)
CVE-2022-43167
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43166)
CVE-2022-43166
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43165)
CVE-2022-43165
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43164)
CVE-2022-43164
CWE-707
Medium
PmWiki Other Vulnerability (CVE-2006-2840)
CVE-2006-2840
-
Medium
Dotclear Other Vulnerability (CVE-2006-2866)
CVE-2006-2866
-
Medium
Claroline Other Vulnerability (CVE-2006-2868)
CVE-2006-2868
-
Medium
Liferay DXP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-42132)
CVE-2022-42132
CWE-200
Medium
Liferay Portal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-42132)
CVE-2022-42132
CWE-200
Medium
Liferay DXP Improper Certificate Validation Vulnerability (CVE-2022-42131)
CVE-2022-42131
CWE-295
Medium
Liferay Portal Improper Certificate Validation Vulnerability (CVE-2022-42131)
CVE-2022-42131
CWE-295
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-42130)
CVE-2022-42130
CWE-276
Medium
Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2022-42130)
CVE-2022-42130
CWE-276
Medium