Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9128)
CVE-2016-9128
CWE-707
Medium
MySQL CVE-2016-8290 Vulnerability (CVE-2016-8290)
CVE-2016-8290
-
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7571)
CVE-2016-7571
CWE-707
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-7572)
CVE-2016-7572
CWE-264
Medium
GlassFish CVE-2012-3155 Vulnerability (CVE-2012-3155)
CVE-2012-3155
-
Medium
MySQL CVE-2016-8283 Vulnerability (CVE-2016-8283)
CVE-2016-8283
-
Medium
MySQL CVE-2016-8287 Vulnerability (CVE-2016-8287)
CVE-2016-8287
-
Medium
MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8289)
CVE-2016-8289
CWE-264
Medium
MySQL CVE-2016-8318 Vulnerability (CVE-2016-8318)
CVE-2016-8318
-
Medium
Moodle Improper Access Control Vulnerability (CVE-2016-8643)
CVE-2016-8643
CWE-284
Medium
MySQL CVE-2016-8327 Vulnerability (CVE-2016-8327)
CVE-2016-8327
-
Medium
MySQL CVE-2012-3150 Vulnerability (CVE-2012-3150)
CVE-2012-3150
-
Medium
MySQL CVE-2012-3147 Vulnerability (CVE-2012-3147)
CVE-2012-3147
-
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2016-8612)
CVE-2016-8612
CWE-20
Medium
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2016-8627)
CVE-2016-8627
CWE-400
Medium
Moodle Improper Access Control Vulnerability (CVE-2016-8642)
CVE-2016-8642
CWE-284
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9126)
CVE-2016-9126
CWE-707
Medium
ReviveAdserver Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9129)
CVE-2016-9129
CWE-200
Medium
MySQL CVE-2012-3166 Vulnerability (CVE-2012-3166)
CVE-2012-3166
-
Medium
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9449)
CVE-2016-9449
CWE-200
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2404)
CVE-2012-2404
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2403)
CVE-2012-2403
CWE-707
Medium
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2402)
CVE-2012-2402
CWE-264
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9419)
CVE-2016-9419
CWE-707
Medium
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2401)
CVE-2012-2401
CWE-264
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9421)
CVE-2016-9421
CWE-707
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2398)
CVE-2012-2398
CWE-707
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2517)
CVE-2012-2517
CWE-707
Medium
Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-9451)
CVE-2016-9451
CWE-601
Medium
Drupal Improper Input Validation Vulnerability (CVE-2016-9452)
CVE-2016-9452
CWE-20
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9454)
CVE-2016-9454
CWE-707
Medium
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-2397)
CVE-2012-2397
CWE-352
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9457)
CVE-2016-9457
CWE-707
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9459)
CVE-2016-9459
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2413)
CVE-2012-2413
CWE-707
Medium
MyBB Improper Access Control Vulnerability (CVE-2016-9413)
CVE-2016-9413
CWE-284
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9130)
CVE-2016-9130
CWE-707
Medium
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2660)
CVE-2012-2660
CWE-264
Medium
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2694)
CVE-2012-2694
CWE-264
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2012-2686)
CVE-2012-2686
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9188)
CVE-2016-9188
CWE-707
Medium
WordPress Improper Input Validation Vulnerability (CVE-2016-9263)
CVE-2016-9263
CWE-20
Medium
Collabtive Improper Input Validation Vulnerability (CVE-2012-2670)
CVE-2012-2670
CWE-20
Medium
Ruby on Rails Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-2661)
CVE-2012-2661
CWE-138
Medium
PostgreSQL Resource Management Errors Vulnerability (CVE-2012-2655)
CVE-2012-2655
-
Medium
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9411)
CVE-2016-9411
CWE-200
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9404)
CVE-2016-9404
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9405)
CVE-2016-9405
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9406)
CVE-2016-9406
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9407)
CVE-2016-9407
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9408)
CVE-2016-9408
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9409)
CVE-2016-9409
CWE-707
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2641)
CVE-2012-2641
CWE-707
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-7570)
CVE-2016-7570
CWE-264
Medium
MySQL CVE-2016-7440 Vulnerability (CVE-2016-7440)
CVE-2016-7440
-
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6608)
CVE-2016-6608
CWE-707
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3465)
CVE-2012-3465
CWE-707
Medium
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-3502)
CVE-2012-3502
CWE-200
Medium
phpMyAdmin Resource Management Errors Vulnerability (CVE-2016-6632)
CVE-2016-6632
-
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3499)
CVE-2012-3499
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6634)
CVE-2016-6634
CWE-707
Medium
PostgreSQL Improper Input Validation Vulnerability (CVE-2012-3489)
CVE-2012-3489
CWE-20
Medium
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3488)
CVE-2012-3488
CWE-264
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3464)
CVE-2012-3464
CWE-707
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6628)
CVE-2016-6628
-
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3463)
CVE-2012-3463
CWE-707
Medium
Apache Tomcat CVE-2016-6794 Vulnerability (CVE-2016-6794)
CVE-2016-6794
-
Medium
Django Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-3444)
CVE-2012-3444
CWE-119
Medium
Django Improper Input Validation Vulnerability (CVE-2012-3443)
CVE-2012-3443
CWE-20
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3442)
CVE-2012-3442
CWE-707
Medium
Ruby on Rails Improper Authentication Vulnerability (CVE-2012-3424)
CVE-2012-3424
CWE-287
Medium
phpMyAdmin Improper Input Validation Vulnerability (CVE-2016-6630)
CVE-2016-6630
CWE-20
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6627)
CVE-2016-6627
CWE-200
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3414)
CVE-2012-3414
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6615)
CVE-2016-6615
CWE-707
Medium