Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43770)
CVE-2023-43770
CWE-707
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-44796)
CVE-2023-44796
CWE-707
Medium
PHP Other Vulnerability (CVE-2004-1020)
CVE-2004-1020
-
Medium
phpMyAdmin Other Vulnerability (CVE-2004-1055)
CVE-2004-1055
-
Medium
phpMyAdmin Other Vulnerability (CVE-2004-1148)
CVE-2004-1148
-
Medium
Mailman Other Vulnerability (CVE-2004-1177)
CVE-2004-1177
-
Medium
SugarCRM Gain Sensitive Information Vulnerability (CVE-2004-1226)
CVE-2004-1226
-
Medium
Piwigo Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) Vulnerability (CVE-2023-44393)
CVE-2023-44393
CWE-707
Medium
Zope Web Application Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-44389)
CVE-2023-44389
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-44311)
CVE-2023-44311
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-44310)
CVE-2023-44310
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-44310)
CVE-2023-44310
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-44309)
CVE-2023-44309
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-44309)
CVE-2023-44309
CWE-707
Medium
Liferay DXP URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-44308)
CVE-2023-44308
CWE-601
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43735)
CVE-2023-43735
CWE-707
Medium
MySQL CVE-2004-0957 Vulnerability (CVE-2004-0957)
CVE-2004-0957
-
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43734)
CVE-2023-43734
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43733)
CVE-2023-43733
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43732)
CVE-2023-43732
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43731)
CVE-2023-43731
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43730)
CVE-2023-43730
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43729)
CVE-2023-43729
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43728)
CVE-2023-43728
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43727)
CVE-2023-43727
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43726)
CVE-2023-43726
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43725)
CVE-2023-43725
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43724)
CVE-2023-43724
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43723)
CVE-2023-43723
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43722)
CVE-2023-43722
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43721)
CVE-2023-43721
CWE-707
Medium
PHP Other Vulnerability (CVE-2004-0958)
CVE-2004-0958
-
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45137)
CVE-2023-45137
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43719)
CVE-2023-43719
CWE-707
Medium
axios Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-45857)
CVE-2023-45857
CWE-352
Medium
PostgreSQL Other Vulnerability (CVE-2004-0547)
CVE-2004-0547
-
Medium
EspoCRM Server-Side Request Forgery (SSRF) Vulnerability (CVE-2023-46736)
CVE-2023-46736
CWE-918
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-46732)
CVE-2023-46732
CWE-707
Medium
PHP Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2004-0594)
CVE-2004-0594
CWE-367
Medium
PHP Other Vulnerability (CVE-2004-0595)
CVE-2004-0595
-
Medium
Moodle Other Vulnerability (CVE-2004-0725)
CVE-2004-0725
-
Medium
Apache HTTP Server Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2004-0748)
CVE-2004-0748
CWE-835
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-46251)
CVE-2023-46251
CWE-707
Medium
Apache HTTP Server CVE-2004-0751 Vulnerability (CVE-2004-0751)
CVE-2004-0751
-
Medium
Apache HTTP Server CVE-2004-0786 Vulnerability (CVE-2004-0786)
CVE-2004-0786
-
Medium
Apache HTTP Server CVE-2004-0809 Vulnerability (CVE-2004-0809)
CVE-2004-0809
-
Medium
Twisted Web HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2023-46137)
CVE-2023-46137
-
Medium
GibbonEdu Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45881)
CVE-2023-45881
CWE-707
Medium
GibbonEdu Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45879)
CVE-2023-45879
CWE-707
Medium
TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45819)
CVE-2023-45819
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45360)
CVE-2023-45360
CWE-707
Medium
TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45818)
CVE-2023-45818
CWE-707
Medium
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-45802)
CVE-2023-45802
CWE-400
Medium
Apache Tomcat Other Vulnerability (CVE-2023-45648)
CVE-2023-45648
-
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45556)
CVE-2023-45556
CWE-707
Medium
MediaWiki CVE-2023-45374 Vulnerability (CVE-2023-45374)
CVE-2023-45374
-
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-45373)
CVE-2023-45373
CWE-707
Medium
MediaWiki CVE-2023-45372 Vulnerability (CVE-2023-45372)
CVE-2023-45372
-
Medium
Apache HTTP Server Other Vulnerability (CVE-2004-0942)
CVE-2004-0942
-
Medium
MediaWiki CVE-2023-45370 Vulnerability (CVE-2023-45370)
CVE-2023-45370
-
Medium
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2023-45369)
CVE-2023-45369
CWE-732
Medium
MediaWiki CVE-2023-45367 Vulnerability (CVE-2023-45367)
CVE-2023-45367
-
Medium
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2023-45364)
CVE-2023-45364
CWE-732
Medium
MySQL Other Vulnerability (CVE-2004-0956)
CVE-2004-0956
-
Medium
MediaWiki CVE-2023-45362 Vulnerability (CVE-2023-45362)
CVE-2023-45362
-
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43720)
CVE-2023-43720
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43718)
CVE-2023-43718
CWE-707
Medium
OpenSSL Excessive Iteration Vulnerability (CVE-2023-3817)
CVE-2023-3817
CWE-834
Medium
Apache Tomcat URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-41080)
CVE-2023-41080
CWE-601
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-42498)
CVE-2023-42498
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-42497)
CVE-2023-42497
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-42497)
CVE-2023-42497
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-42496)
CVE-2023-42496
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-42496)
CVE-2023-42496
CWE-707
Medium
Zope Web Application Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-42458)
CVE-2023-42458
CWE-707
Medium