Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
Apache Tomcat Improper Input Validation Vulnerability (CVE-2012-3544)
CVE-2012-3544
CWE-20
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6610)
CVE-2016-6610
CWE-200
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3531)
CVE-2012-3531
CWE-707
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6612)
CVE-2016-6612
CWE-200
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6613)
CVE-2016-6613
CWE-200
Medium
phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-6614)
CVE-2016-6614
CWE-22
Medium
TYPO3 Other Vulnerability (CVE-2012-3530)
CVE-2012-3530
-
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6626)
CVE-2016-6626
-
Medium
phpMyAdmin CVE-2016-6618 Vulnerability (CVE-2016-6618)
CVE-2016-6618
-
Medium
TYPO3 Cryptographic Issues Vulnerability (CVE-2012-3527)
CVE-2012-3527
-
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3508)
CVE-2012-3508
CWE-707
Medium
phpMyAdmin Resource Management Errors Vulnerability (CVE-2016-6622)
CVE-2016-6622
-
Medium
phpMyAdmin Improper Input Validation Vulnerability (CVE-2016-6623)
CVE-2016-6623
CWE-20
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6624)
CVE-2016-6624
-
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6625)
CVE-2016-6625
CWE-200
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-6897)
CVE-2016-6897
CWE-352
Medium
Jboss EAP Resource Management Errors Vulnerability (CVE-2016-7046)
CVE-2016-7046
-
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7419)
CVE-2016-7419
CWE-707
Medium
b2evolution Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7150)
CVE-2016-7150
CWE-707
Medium
Plone CMS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-7137)
CVE-2016-7137
CWE-601
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7138)
CVE-2016-7138
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7139)
CVE-2016-7139
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7140)
CVE-2016-7140
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7147)
CVE-2016-7147
CWE-707
Medium
b2evolution Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7149)
CVE-2016-7149
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7168)
CVE-2016-7168
CWE-707
Medium
Plone CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-7135)
CVE-2016-7135
CWE-22
Medium
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-7169)
CVE-2016-7169
CWE-22
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3369)
CVE-2012-3369
CWE-264
Medium
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3365)
CVE-2012-3365
CWE-264
Medium
MySQL CVE-2012-3180 Vulnerability (CVE-2012-3180)
CVE-2012-3180
-
Medium
MySQL CVE-2012-3177 Vulnerability (CVE-2012-3177)
CVE-2012-3177
-
Medium
MySQL CVE-2012-3173 Vulnerability (CVE-2012-3173)
CVE-2012-3173
-
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7136)
CVE-2016-7136
CWE-707
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3370)
CVE-2012-3370
CWE-264
Medium
Moodle Other Vulnerability (CVE-2012-3398)
CVE-2012-3398
-
Medium
JQuery UI Cross-site Scripting (XSS) Vulnerability (CVE-2016-7103)
CVE-2016-7103
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3397)
CVE-2012-3397
CWE-264
Medium
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-3395)
CVE-2012-3395
CWE-138
Medium
OpenSSL Key Management Errors Vulnerability (CVE-2016-7055)
CVE-2016-7055
-
Medium
OpenSSL Key Management Errors Vulnerability (CVE-2016-7056)
CVE-2016-7056
-
Medium
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-7061)
CVE-2016-7061
CWE-200
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-3394)
CVE-2012-3394
CWE-200
Medium
WebLogic Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7103)
CVE-2016-7103
CWE-707
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-3384)
CVE-2012-3384
CWE-352
Medium
Moodle Configuration Vulnerability (CVE-2012-3392)
CVE-2012-3392
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3391)
CVE-2012-3391
CWE-264
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3389)
CVE-2012-3389
CWE-707
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-7128)
CVE-2016-7128
CWE-200
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3388)
CVE-2012-3388
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3387)
CVE-2012-3387
CWE-264
Medium
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3385)
CVE-2012-3385
CWE-264
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4317)
CVE-2016-4317
CWE-707
Medium
Oracle JRE CVE-2012-5072 Vulnerability (CVE-2012-5072)
CVE-2012-5072
-
Medium
ownCloud Improper Access Control Vulnerability (CVE-2016-9461)
CVE-2016-9461
CWE-284
Medium
Ruby on Rails Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-6497)
CVE-2012-6497
CWE-200
Medium
Elgg Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6563)
CVE-2012-6563
CWE-264
Medium
Jenkins Improper Input Validation Vulnerability (CVE-2016-0789)
CVE-2016-0789
CWE-20
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0790)
CVE-2016-0790
CWE-200
Medium
Elgg Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6562)
CVE-2012-6562
CWE-264
Medium
Elgg Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6561)
CVE-2012-6561
CWE-707
Medium
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6528)
CVE-2012-6528
CWE-707
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6458)
CVE-2012-6458
CWE-707
Medium
Python Protection Mechanism Failure Vulnerability (CVE-2016-0772)
CVE-2016-0772
CWE-693
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2016-0800)
CVE-2016-0800
-
Medium
Python URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-1000110)
CVE-2016-1000110
CWE-601
Medium
Twisted Web HTTP Server Direct Request ('Forced Browsing') Vulnerability (CVE-2016-1000111)
CVE-2016-1000111
CWE-425
Medium
ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-1000307)
CVE-2016-1000307
CWE-707
Medium
e107 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-6434)
CVE-2012-6434
CWE-352
Medium
e107 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-6433)
CVE-2012-6433
CWE-352
Medium
MongoDb Improper Input Validation Vulnerability (CVE-2012-6619)
CVE-2012-6619
CWE-20
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6633)
CVE-2012-6633
CWE-707
Medium
TYPO3 Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6146)
CVE-2012-6146
CWE-264
Medium
ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6644)
CVE-2012-6644
CWE-707
Medium
jQuery Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6708)
CVE-2012-6708
CWE-707
Medium