Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Known Vulnerabilities

This page lists 13509 vulnerabilities in this category.

Critical: 1465 High: 3387 Medium: 7907 Low: 748 Information: 2
Vulnerability Name
CVE
CWE
Severity
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1150)
CVE-2009-1150
CWE-707
Medium
Apache HTTP Server CVE-2009-1191 Vulnerability (CVE-2009-1191)
CVE-2009-1191
-
Medium
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2009-1387)
CVE-2009-1387
CWE-476
Medium
Apache HTTP Server Configuration Vulnerability (CVE-2009-1195)
CVE-2009-1195
-
Medium
PHP Other Vulnerability (CVE-2009-1271)
CVE-2009-1271
-
Medium
PHP Improper Input Validation Vulnerability (CVE-2009-1272)
CVE-2009-1272
CWE-20
Medium
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-1280)
CVE-2009-1280
CWE-352
Medium
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-1377)
CVE-2009-1377
CWE-119
Medium
OpenSSL Missing Release of Memory after Effective Lifetime Vulnerability (CVE-2009-1378)
CVE-2009-1378
CWE-401
Medium
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2009-1386)
CVE-2009-1386
CWE-476
Medium
Oracle Application Server CVE-2008-7237 Vulnerability (CVE-2008-7237)
CVE-2008-7237
-
Medium
Oracle Application Server CVE-2008-7235 Vulnerability (CVE-2008-7235)
CVE-2008-7235
-
Medium
Oracle Database Server CVE-2009-1993 Vulnerability (CVE-2009-1993)
CVE-2009-1993
-
Medium
OpenSSL Improper Input Validation Vulnerability (CVE-2008-5077)
CVE-2008-5077
CWE-20
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4789)
CVE-2008-4789
CWE-264
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4790)
CVE-2008-4790
CWE-264
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4791)
CVE-2008-4791
CWE-264
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4792)
CVE-2008-4792
CWE-264
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4928)
CVE-2008-4928
CWE-707
Medium
MyBB Cryptographic Issues Vulnerability (CVE-2008-4929)
CVE-2008-4929
-
Medium
MyBB Improper Input Validation Vulnerability (CVE-2008-4930)
CVE-2008-4930
CWE-20
Medium
Zope Web Application Server Resource Management Errors Vulnerability (CVE-2008-5102)
CVE-2008-5102
-
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4435)
CVE-2008-4435
CWE-707
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5113)
CVE-2008-5113
CWE-352
Medium
Moodle Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-5153)
CVE-2008-5153
CWE-59
Medium
Ruby on Rails Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5189)
CVE-2008-5189
CWE-352
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5249)
CVE-2008-5249
CWE-707
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5252)
CVE-2008-5252
CWE-352
Medium
GlassFish Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5266)
CVE-2008-5266
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5278)
CVE-2008-5278
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4571)
CVE-2008-4571
CWE-707
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4432)
CVE-2008-4432
CWE-707
Medium
PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5335)
CVE-2008-5335
CWE-138
Medium
MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4098)
CVE-2008-4098
CWE-59
Medium
MySQL Use of Externally-Controlled Format String Vulnerability (CVE-2008-3963)
CVE-2008-3963
CWE-134
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3966)
CVE-2008-3966
CWE-707
Medium
Oracle Application Server CVE-2008-3975 Vulnerability (CVE-2008-3975)
CVE-2008-3975
-
Medium
Oracle Application Server CVE-2008-3977 Vulnerability (CVE-2008-3977)
CVE-2008-3977
-
Medium
Oracle Application Server CVE-2008-4014 Vulnerability (CVE-2008-4014)
CVE-2008-4014
-
Medium
Oracle Application Server CVE-2008-4017 Vulnerability (CVE-2008-4017)
CVE-2008-4017
-
Medium
MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4097)
CVE-2008-4097
CWE-264
Medium
Joomla Improper Input Validation Vulnerability (CVE-2008-4103)
CVE-2008-4103
CWE-20
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4408)
CVE-2008-4408
CWE-707
Medium
Joomla Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4104)
CVE-2008-4104
CWE-59
Medium
WordPress Improper Input Validation Vulnerability (CVE-2008-4106)
CVE-2008-4106
CWE-20
Medium
PHP Numeric Errors Vulnerability (CVE-2008-4107)
CVE-2008-4107
-
Medium
Joomla Cryptographic Issues Vulnerability (CVE-2008-4122)
CVE-2008-4122
-
Medium
phpBB CVE-2008-4125 Vulnerability (CVE-2008-4125)
CVE-2008-4125
-
Medium
Lighttpd Resource Management Errors Vulnerability (CVE-2008-4298)
CVE-2008-4298
-
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4326)
CVE-2008-4326
CWE-707
Medium
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5320)
CVE-2008-5320
CWE-138
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5432)
CVE-2008-5432
CWE-707
Medium
Oracle Application Server CVE-2008-7234 Vulnerability (CVE-2008-7234)
CVE-2008-7234
-
Medium
ZenCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-6985)
CVE-2008-6985
CWE-138
Medium
WordPress Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-6762)
CVE-2008-6762
CWE-59
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6831)
CVE-2008-6831
CWE-707
Medium
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-6832)
CVE-2008-6832
CWE-352
Medium
PHP-Fusion Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6850)
CVE-2008-6850
CWE-707
Medium
XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-6884)
CVE-2008-6884
CWE-22
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6885)
CVE-2008-6885
CWE-707
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6925)
CVE-2008-6925
CWE-707
Medium
ZenCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-6986)
CVE-2008-6986
CWE-138
Medium
Sqlite Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-6590)
CVE-2008-6590
CWE-22
Medium
PHP Improper Input Validation Vulnerability (CVE-2008-7068)
CVE-2008-7068
CWE-20
Medium
WeBid Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7117)
CVE-2008-7117
CWE-264
Medium
WeBid Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7118)
CVE-2008-7118
CWE-264
Medium
phpBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-7143)
CVE-2008-7143
CWE-200
Medium
Coppermine Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7186)
CVE-2008-7186
CWE-264
Medium
Coppermine Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-7187)
CVE-2008-7187
CWE-200
Medium
GeoServer Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2008-7227)
CVE-2008-7227
CWE-119
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6699)
CVE-2008-6699
CWE-707
Medium
Sqlite Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6589)
CVE-2008-6589
CWE-707
Medium
Oracle Application Server CVE-2008-5438 Vulnerability (CVE-2008-5438)
CVE-2008-5438
-
Medium
Python Untrusted Search Path Vulnerability (CVE-2008-5983)
CVE-2008-5983
CWE-426
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5498)
CVE-2008-5498
CWE-200
Medium