Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
WordPress CVE-2011-3122 Vulnerability (CVE-2011-3122)
CVE-2011-3122
-
Critical
WordPress CVE-2011-3125 Vulnerability (CVE-2011-3125)
CVE-2011-3125
-
Critical
Apache HTTP Server Improper Authentication Vulnerability (CVE-2018-1312)
CVE-2018-1312
CWE-287
Critical
PostgreSQL Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-1115)
CVE-2018-1115
CWE-732
Critical
CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-20716)
CVE-2018-20716
CWE-138
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2011-3268)
CVE-2011-3268
CWE-119
Critical
Artifactory Insufficient Verification of Data Authenticity Vulnerability (CVE-2018-19971)
CVE-2018-19971
CWE-345
Critical
Oracle JRE CVE-2011-3544 Vulnerability (CVE-2011-3544)
CVE-2011-3544
-
Critical
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-19355)
CVE-2018-19355
CWE-434
Critical
TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-3583)
CVE-2011-3583
CWE-138
Critical
Plone CMS CVE-2011-3587 Vulnerability (CVE-2011-3587)
CVE-2011-3587
-
Critical
Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-2715)
CVE-2011-2715
CWE-138
Critical
WP Plugin Contact Form 7 CVE-2018-20979 Vulnerability (CVE-2018-20979)
CVE-2018-20979
-
Critical
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-19126)
CVE-2018-19126
CWE-434
Critical
SharePoint Improper Input Validation Vulnerability (CVE-2011-1989)
CVE-2011-1989
CWE-20
Critical
Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-6376)
CVE-2018-6376
CWE-138
Critical
SugarCRM Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-6308)
CVE-2018-6308
CWE-138
Critical
PHP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-1939)
CVE-2011-1939
CWE-138
Critical
Oracle Database Server CVE-2018-3259 Vulnerability (CVE-2018-3259)
CVE-2018-3259
-
Critical
WebLogic CVE-2018-3252 Vulnerability (CVE-2018-3252)
CVE-2018-3252
-
Critical
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2018-3245)
CVE-2018-3245
CWE-502
Critical
WebLogic CVE-2018-3201 Vulnerability (CVE-2018-3201)
CVE-2018-3201
-
Critical
Caddy Web Server Improper Authentication Vulnerability (CVE-2018-21246)
CVE-2018-21246
CWE-287
Critical
WebLogic CVE-2018-3197 Vulnerability (CVE-2018-3197)
CVE-2018-3197
-
Critical
WebLogic CVE-2018-3191 Vulnerability (CVE-2018-3191)
CVE-2018-3191
-
Critical
Java Unspesificed Vulnerability (CVE-2018-3183)
CVE-2018-3183
-
Critical
Oracle Database Server CVE-2018-3110 Vulnerability (CVE-2018-3110)
CVE-2018-3110
-
Critical
WebLogic CVE-2018-2894 Vulnerability (CVE-2018-2894)
CVE-2018-2894
-
Critical
WebLogic CVE-2018-2893 Vulnerability (CVE-2018-2893)
CVE-2018-2893
-
Critical
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2018-2628)
CVE-2018-2628
CWE-502
Critical
Zope Web Application Server CVE-2011-3587 Vulnerability (CVE-2011-3587)
CVE-2011-3587
-
Critical
Chamilo Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-1999019)
CVE-2018-1999019
CWE-94
Critical
Perl Out-of-bounds Write Vulnerability (CVE-2018-6913)
CVE-2018-6913
CWE-787
Critical
Phusion Passenger Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2018-12026)
CVE-2018-12026
CWE-59
Critical
PrestaShop CVE-2018-13784 Vulnerability (CVE-2018-13784)
CVE-2018-13784
-
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-13450)
CVE-2018-13450
CWE-138
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-13449)
CVE-2018-13449
CWE-138
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-13448)
CVE-2018-13448
CWE-138
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-13447)
CVE-2018-13447
CWE-138
Critical
PHP Use After Free Vulnerability (CVE-2018-12882)
CVE-2018-12882
CWE-416
Critical
Joomla Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2018-11325)
CVE-2018-11325
CWE-209
Critical
Ruby Inadequate Encryption Strength Vulnerability (CVE-2011-4121)
CVE-2011-4121
CWE-326
Critical
Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2018-1000861)
CVE-2018-1000861
CWE-502
Critical
Python Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2018-1000802)
CVE-2018-1000802
CWE-138
Critical
WebLogic Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') Vulnerability (CVE-2018-1000613)
CVE-2018-1000613
CWE-470
Critical
RubyGems Improper Verification of Cryptographic Signature Vulnerability (CVE-2018-1000076)
CVE-2018-1000076
CWE-347
Critical
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2017-9788)
CVE-2017-9788
CWE-20
Critical
ProjectSend Improper Input Validation Vulnerability (CVE-2017-9741)
CVE-2017-9741
CWE-20
Critical
GlassFish Use of Hard-coded Credentials Vulnerability (CVE-2018-14324)
CVE-2018-14324
CWE-798
Critical
OpenSSL Resource Management Errors Vulnerability (CVE-2011-4109)
CVE-2011-4109
-
Critical
Vanilla Forums Other Vulnerability (CVE-2011-3614)
CVE-2011-3614
-
Critical
LimeSurvey Deserialization of Untrusted Data Vulnerability (CVE-2018-17057)
CVE-2018-17057
CWE-502
Critical
FluxBB CVE-2011-3621 Vulnerability (CVE-2011-3621)
CVE-2011-3621
-
Critical
Vanilla Forums Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-18903)
CVE-2018-18903
CWE-94
Critical
Perl Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2018-18314)
CVE-2018-18314
CWE-119
Critical
Perl Out-of-bounds Read Vulnerability (CVE-2018-18313)
CVE-2018-18313
CWE-125
Critical
Perl Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2018-18312)
CVE-2018-18312
CWE-119
Critical
Perl Out-of-bounds Write Vulnerability (CVE-2018-18311)
CVE-2018-18311
CWE-787
Critical
PostgreSQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-16850)
CVE-2018-16850
CWE-138
Critical
Oracle Database Server Deserialization of Untrusted Data Vulnerability (CVE-2018-14719)
CVE-2018-14719
CWE-502
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-16809)
CVE-2018-16809
CWE-138
Critical
Ruby CVE-2018-16395 Vulnerability (CVE-2018-16395)
CVE-2018-16395
-
Critical
Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-15882)
CVE-2018-15882
CWE-434
Critical
Grafana Improper Authentication Vulnerability (CVE-2018-15727)
CVE-2018-15727
CWE-287
Critical
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4030)
CVE-2011-4030
CWE-264
Critical
Jboss EAP Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-14721)
CVE-2018-14721
CWE-918
Critical
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2018-14720)
CVE-2018-14720
CWE-502
Critical
Perl Out-of-bounds Write Vulnerability (CVE-2018-6797)
CVE-2018-6797
CWE-787
Critical
Jboss EAP Incomplete List of Disallowed Inputs Vulnerability (CVE-2018-7489)
CVE-2018-7489
CWE-184
Critical
Telerik Web UI Insufficiently Protected Credentials Vulnerability (CVE-2017-9248)
CVE-2017-9248
CWE-522
Critical
Squid CVE-2019-12523 Vulnerability (CVE-2019-12523)
CVE-2019-12523
-
Critical
Python Out-of-bounds Write Vulnerability (CVE-2019-12900)
CVE-2019-12900
CWE-787
Critical
Joomla Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2019-12765)
CVE-2019-12765
CWE-1236
Critical
TYPO3 Deserialization of Untrusted Data Vulnerability (CVE-2019-12747)
CVE-2019-12747
CWE-502
Critical
Squid Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2019-12526)
CVE-2019-12526
CWE-120
Critical