Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
TCExam Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-4601)
CVE-2012-4601
CWE-138
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4668)
CVE-2012-4668
CWE-707
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4549)
CVE-2012-4549
CWE-264
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-4412)
CVE-2016-4412
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4318)
CVE-2016-4318
CWE-707
Medium
Oracle JRE CVE-2012-5070 Vulnerability (CVE-2012-5070)
CVE-2012-5070
-
Medium
Oracle JRE CVE-2012-5069 Vulnerability (CVE-2012-5069)
CVE-2012-5069
-
Medium
Oracle JRE CVE-2012-5067 Vulnerability (CVE-2012-5067)
CVE-2012-5067
-
Medium
MySQL CVE-2012-5060 Vulnerability (CVE-2012-5060)
CVE-2012-5060
-
Medium
ownCloud Other Vulnerability (CVE-2012-5057)
CVE-2012-5057
-
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5056)
CVE-2012-5056
CWE-707
Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4752)
CVE-2012-4752
CWE-264
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4995)
CVE-2012-4995
CWE-707
Medium
LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-4994)
CVE-2012-4994
CWE-138
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4968)
CVE-2012-4968
CWE-707
Medium
MediaWiki CVE-2012-4885 Vulnerability (CVE-2012-4885)
CVE-2012-4885
-
Medium
LiteSpeed Web Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4871)
CVE-2012-4871
CWE-707
Medium
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-4753)
CVE-2012-4753
CWE-352
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5014)
CVE-2016-5014
CWE-200
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4532)
CVE-2012-4532
CWE-707
Medium
MySQL CVE-2016-5624 Vulnerability (CVE-2016-5624)
CVE-2016-5624
-
Medium
Oracle Database Server CVE-2016-5516 Vulnerability (CVE-2016-5516)
CVE-2016-5516
-
Medium
MySQL CVE-2016-5442 Vulnerability (CVE-2016-5442)
CVE-2016-5442
-
Medium
MySQL CVE-2016-5443 Vulnerability (CVE-2016-5443)
CVE-2016-5443
-
Medium
GlassFish CVE-2016-5477 Vulnerability (CVE-2016-5477)
CVE-2016-5477
-
Medium
WebLogic CVE-2016-5488 Vulnerability (CVE-2016-5488)
CVE-2016-5488
-
Medium
Oracle Database Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5505)
CVE-2016-5505
CWE-200
Medium
MySQL CVE-2016-5507 Vulnerability (CVE-2016-5507)
CVE-2016-5507
-
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4440)
CVE-2012-4440
CWE-707
Medium
MySQL CVE-2016-5440 Vulnerability (CVE-2016-5440)
CVE-2016-5440
-
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4439)
CVE-2012-4439
CWE-707
Medium
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4431)
CVE-2012-4431
CWE-264
Medium
MySQL CVE-2016-5584 Vulnerability (CVE-2016-5584)
CVE-2016-5584
-
Medium
WebLogic Improper Access Control Vulnerability (CVE-2016-5601)
CVE-2016-5601
CWE-284
Medium
MySQL CVE-2016-5609 Vulnerability (CVE-2016-5609)
CVE-2016-5609
-
Medium
MySQL CVE-2016-5612 Vulnerability (CVE-2016-5612)
CVE-2016-5612
-
Medium
MySQL CVE-2016-5441 Vulnerability (CVE-2016-5441)
CVE-2016-5441
-
Medium
MySQL CVE-2016-5439 Vulnerability (CVE-2016-5439)
CVE-2016-5439
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4531)
CVE-2012-4531
CWE-707
Medium
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4522)
CVE-2012-4522
CWE-264
Medium
Jboss EAP CVE-2012-4529 Vulnerability (CVE-2012-4529)
CVE-2012-4529
-
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4526)
CVE-2012-4526
CWE-707
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5097)
CVE-2016-5097
CWE-200
Medium
phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-5098)
CVE-2016-5098
CWE-22
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5099)
CVE-2016-5099
CWE-707
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4525)
CVE-2012-4525
CWE-707
Medium
Django Improper Input Validation Vulnerability (CVE-2012-4520)
CVE-2012-4520
CWE-20
Medium
MySQL CVE-2016-5437 Vulnerability (CVE-2016-5437)
CVE-2016-5437
-
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4519)
CVE-2012-4519
CWE-707
Medium
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4481)
CVE-2012-4481
CWE-264
Medium
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4466)
CVE-2012-4466
CWE-264
Medium
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4464)
CVE-2012-4464
CWE-264
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-4448)
CVE-2012-4448
CWE-352
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4441)
CVE-2012-4441
CWE-707
Medium
MySQL CVE-2016-5436 Vulnerability (CVE-2016-5436)
CVE-2016-5436
-
Medium
Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6523)
CVE-2016-6523
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6607)
CVE-2016-6607
CWE-707
Medium
Oracle JRE CVE-2012-5071 Vulnerability (CVE-2012-5071)
CVE-2012-5071
-
Medium
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-2922)
CVE-2012-2922
CWE-200
Medium
Oracle Database Server CVE-2012-3134 Vulnerability (CVE-2012-3134)
CVE-2012-3134
-
Medium
Oracle Database Server Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-3132)
CVE-2012-3132
CWE-138
Medium
Resin Application Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2969)
CVE-2012-2969
CWE-264
Medium
Resin Application Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2012-2968)
CVE-2012-2968
CWE-22
Medium
Atlassian Confluence Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2928)
CVE-2012-2928
CWE-264
Medium
Atlassian Jira Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2928)
CVE-2012-2928
CWE-264
Medium
PHP Address Book Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2903)
CVE-2012-2903
CWE-707
Medium
MySQL CVE-2012-3144 Vulnerability (CVE-2012-3144)
CVE-2012-3144
-
Medium
Oracle HTTP Server Other Vulnerability (CVE-2012-2751)
CVE-2012-2751
-
Medium
MySQL Resource Management Errors Vulnerability (CVE-2012-2749)
CVE-2012-2749
-
Medium
Joomla CVE-2012-2748 Vulnerability (CVE-2012-2748)
CVE-2012-2748
-
Medium
phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2741)
CVE-2012-2741
CWE-707
Medium
Oracle JRE Cryptographic Issues Vulnerability (CVE-2012-2739)
CVE-2012-2739
-
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2012-2733)
CVE-2012-2733
CWE-20
Medium
Oracle Database Server Improper Authentication Vulnerability (CVE-2012-3137)
CVE-2012-3137
CWE-287
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8644)
CVE-2016-8644
CWE-264
Medium