Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5488)
CVE-2012-5488
CWE-94
Medium
Zope Web Application Server Other Vulnerability (CVE-2012-5486)
CVE-2012-5486
-
Medium
Drupal Other Vulnerability (CVE-2016-3166)
CVE-2016-3166
-
Medium
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5485)
CVE-2012-5485
CWE-94
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5481)
CVE-2012-5481
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5480)
CVE-2012-5480
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5479)
CVE-2012-5479
CWE-264
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5478)
CVE-2012-5478
CWE-264
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5473)
CVE-2012-5473
CWE-200
Medium
PHP Other Vulnerability (CVE-2012-5381)
CVE-2012-5381
-
Medium
Ruby Other Vulnerability (CVE-2012-5380)
CVE-2012-5380
-
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-3014)
CVE-2016-3014
CWE-707
Medium
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-4043)
CVE-2016-4043
CWE-264
Medium
Moodle Improper Access Control Vulnerability (CVE-2016-3733)
CVE-2016-3733
CWE-284
Medium
concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5181)
CVE-2012-5181
CWE-707
Medium
Osclass Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5163)
CVE-2012-5163
CWE-707
Medium
Osclass Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-5162)
CVE-2012-5162
CWE-138
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-3971)
CVE-2016-3971
CWE-707
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-4042)
CVE-2016-4042
CWE-200
Medium
Oracle JRE CVE-2012-5081 Vulnerability (CVE-2012-5081)
CVE-2012-5081
-
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3731)
CVE-2016-3731
CWE-200
Medium
Oracle JRE CVE-2012-5079 Vulnerability (CVE-2012-5079)
CVE-2012-5079
-
Medium
Moment.js Uncontrolled Resource Consumption Vulnerability (CVE-2016-4055)
CVE-2016-4055
CWE-400
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4056)
CVE-2016-4056
CWE-707
Medium
Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2016-4068)
CVE-2016-4068
-
Medium
Oracle JRE CVE-2012-5075 Vulnerability (CVE-2012-5075)
CVE-2012-5075
-
Medium
Oracle JRE CVE-2012-5074 Vulnerability (CVE-2012-5074)
CVE-2012-5074
-
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3732)
CVE-2016-3732
CWE-200
Medium
Moodle Improper Access Control Vulnerability (CVE-2016-3729)
CVE-2016-3729
CWE-284
Medium
Oracle JRE Cryptographic Issues Vulnerability (CVE-2012-5373)
CVE-2012-5373
-
Medium
MySQL CVE-2016-3614 Vulnerability (CVE-2016-3614)
CVE-2016-3614
-
Medium
MySQL CVE-2016-3518 Vulnerability (CVE-2016-3518)
CVE-2016-3518
-
Medium
MySQL CVE-2016-3521 Vulnerability (CVE-2016-3521)
CVE-2016-3521
-
Medium
Ruby Cryptographic Issues Vulnerability (CVE-2012-5371)
CVE-2012-5371
-
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5368)
CVE-2012-5368
CWE-707
Medium
MySQL CVE-2016-3588 Vulnerability (CVE-2016-3588)
CVE-2016-3588
-
Medium
GlassFish CVE-2016-3608 Vulnerability (CVE-2016-3608)
CVE-2016-3608
-
Medium
MySQL CVE-2016-3615 Vulnerability (CVE-2016-3615)
CVE-2016-3615
-
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3727)
CVE-2016-3727
CWE-200
Medium
Dot CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3688)
CVE-2016-3688
CWE-200
Medium
ownCloud Improper Input Validation Vulnerability (CVE-2012-5336)
CVE-2012-5336
CWE-20
Medium
Jenkins DEPRECATED: Code Vulnerability (CVE-2016-3721)
CVE-2016-3721
-
Medium
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-3722)
CVE-2016-3722
CWE-264
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3723)
CVE-2016-3723
CWE-200
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3724)
CVE-2016-3724
CWE-200
Medium
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-3725)
CVE-2016-3725
CWE-264
Medium
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-3018)
CVE-2016-3018
CWE-707
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2987)
CVE-2016-2987
CWE-200
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5881)
CVE-2012-5881
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2153)
CVE-2016-2153
CWE-707
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5651)
CVE-2012-5651
CWE-264
Medium
Squid Improper Input Validation Vulnerability (CVE-2012-5643)
CVE-2012-5643
CWE-20
Medium
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2107)
CVE-2016-2107
CWE-200
Medium
MySQL Insufficiently Protected Credentials Vulnerability (CVE-2012-5627)
CVE-2012-5627
CWE-522
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2151)
CVE-2016-2151
CWE-200
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2152)
CVE-2016-2152
CWE-707
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2154)
CVE-2016-2154
CWE-200
Medium
Drupal Improper Input Validation Vulnerability (CVE-2012-5653)
CVE-2012-5653
CWE-20
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-2155)
CVE-2016-2155
CWE-264
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2156)
CVE-2016-2156
CWE-200
Medium
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5615)
CVE-2012-5615
CWE-200
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2158)
CVE-2016-2158
CWE-200
Medium
Moodle Improper Access Control Vulnerability (CVE-2016-2159)
CVE-2016-2159
CWE-284
Medium
MySQL Improper Input Validation Vulnerability (CVE-2012-5614)
CVE-2012-5614
CWE-20
Medium
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5652)
CVE-2012-5652
CWE-200
Medium
Ruby on Rails Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-2097)
CVE-2016-2097
CWE-22
Medium
MySQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-5612)
CVE-2012-5612
CWE-119
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2038)
CVE-2016-2038
CWE-200
Medium
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-1501)
CVE-2016-1501
CWE-200
Medium
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2016-1546)
CVE-2016-1546
-
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-1564)
CVE-2016-1564
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-1912)
CVE-2016-1912
CWE-707
Medium
Joomla CVE-2012-5827 Vulnerability (CVE-2012-5827)
CVE-2012-5827
-
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5666)
CVE-2012-5666
CWE-707
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2039)
CVE-2016-2039
CWE-200
Medium