🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Invicti vs. Competitors
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
MSSP
Documentation
Vulnerability Database
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Known Vulnerabilities
This page lists
15072 vulnerabilities
in this category.
Critical: 1617
High: 4043
Medium: 8626
Low: 784
Information: 2
Vulnerability Name
CVE
CWE
Severity
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5645)
CVE-2013-5645
CWE-707
Medium
ASP.NET SignalR Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5042)
CVE-2013-5042
CWE-707
Medium
SharePoint Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-5059)
CVE-2013-5059
CWE-94
Medium
easyXDM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5212)
CVE-2013-5212
CWE-707
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5314)
CVE-2013-5314
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5319)
CVE-2013-5319
CWE-707
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5573)
CVE-2013-5573
CWE-707
Medium
Joomla Improper Input Validation Vulnerability (CVE-2013-5576)
CVE-2013-5576
CWE-20
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5583)
CVE-2013-5583
CWE-707
Medium
Oracle JRE CVE-2013-5819 Vulnerability (CVE-2013-5819)
CVE-2013-5819
-
Medium
Oracle JRE CVE-2013-5823 Vulnerability (CVE-2013-5823)
CVE-2013-5823
-
Medium
silverstripeCMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-6789)
CVE-2013-6789
CWE-200
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6451)
CVE-2013-6451
CWE-707
Medium
Ruby on Rails Improper Input Validation Vulnerability (CVE-2013-6414)
CVE-2013-6414
CWE-20
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6415)
CVE-2013-6415
CWE-707
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6416)
CVE-2013-6416
CWE-707
Medium
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-6417)
CVE-2013-6417
CWE-264
Medium
Apache HTTP Server CVE-2013-6438 Vulnerability (CVE-2013-6438)
CVE-2013-6438
-
Medium
Oracle HTTP Server CVE-2013-6438 Vulnerability (CVE-2013-6438)
CVE-2013-6438
-
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2013-6449)
CVE-2013-6449
-
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2013-6450)
CVE-2013-6450
-
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6452)
CVE-2013-6452
CWE-707
Medium
Drupal Improper Input Validation Vulnerability (CVE-2013-6389)
CVE-2013-6389
CWE-20
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6454)
CVE-2013-6454
CWE-707
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-6455)
CVE-2013-6455
CWE-200
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-6472)
CVE-2013-6472
CWE-200
Medium
Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6495)
CVE-2013-6495
CWE-707
Medium
PHP Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2013-6501)
CVE-2013-6501
CWE-138
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-6712)
CVE-2013-6712
CWE-119
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6780)
CVE-2013-6780
CWE-707
Medium
Chamilo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-6787)
CVE-2013-6787
CWE-138
Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-6403)
CVE-2013-6403
CWE-264
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6388)
CVE-2013-6388
CWE-707
Medium
Oracle JRE CVE-2013-5825 Vulnerability (CVE-2013-5825)
CVE-2013-5825
-
Medium
MySQL CVE-2013-5881 Vulnerability (CVE-2013-5881)
CVE-2013-5881
-
Medium
Oracle JRE CVE-2013-5831 Vulnerability (CVE-2013-5831)
CVE-2013-5831
-
Medium
Oracle JRE CVE-2013-5840 Vulnerability (CVE-2013-5840)
CVE-2013-5840
-
Medium
Oracle JRE CVE-2013-5848 Vulnerability (CVE-2013-5848)
CVE-2013-5848
-
Medium
Oracle JRE CVE-2013-5849 Vulnerability (CVE-2013-5849)
CVE-2013-5849
-
Medium
Oracle JRE CVE-2013-5851 Vulnerability (CVE-2013-5851)
CVE-2013-5851
-
Medium
Oracle Database Server CVE-2013-5853 Vulnerability (CVE-2013-5853)
CVE-2013-5853
-
Medium
Oracle Database Server CVE-2013-5858 Vulnerability (CVE-2013-5858)
CVE-2013-5858
-
Medium
MySQL CVE-2013-5860 Vulnerability (CVE-2013-5860)
CVE-2013-5860
-
Medium
MySQL CVE-2013-5882 Vulnerability (CVE-2013-5882)
CVE-2013-5882
-
Medium
Drupal Cryptographic Issues Vulnerability (CVE-2013-6386)
CVE-2013-6386
-
Medium
MySQL CVE-2013-5891 Vulnerability (CVE-2013-5891)
CVE-2013-5891
-
Medium
MySQL CVE-2013-5894 Vulnerability (CVE-2013-5894)
CVE-2013-5894
-
Medium
ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-5954)
CVE-2013-5954
CWE-352
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6044)
CVE-2013-6044
CWE-707
Medium
Zikula Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6168)
CVE-2013-6168
CWE-707
Medium
Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6267)
CVE-2013-6267
CWE-707
Medium
Apache Tomcat Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-6357)
CVE-2013-6357
CWE-352
Medium
Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-6385)
CVE-2013-6385
CWE-94
Medium
ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-2045)
CVE-2013-2045
CWE-138
Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2043)
CVE-2013-2043
CWE-264
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-3384)
CVE-2012-3384
CWE-352
Medium
MediaWiki Other Vulnerability (CVE-2012-5395)
CVE-2012-5395
-
Medium
Ruby Cryptographic Issues Vulnerability (CVE-2012-5371)
CVE-2012-5371
-
Medium
Oracle JRE Cryptographic Issues Vulnerability (CVE-2012-5373)
CVE-2012-5373
-
Medium
Ruby Other Vulnerability (CVE-2012-5380)
CVE-2012-5380
-
Medium
PHP Other Vulnerability (CVE-2012-5381)
CVE-2012-5381
-
Medium
MySQL Other Vulnerability (CVE-2012-5383)
CVE-2012-5383
-
Medium
MediaWiki Other Vulnerability (CVE-2012-5391)
CVE-2012-5391
-
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-5394)
CVE-2012-5394
CWE-352
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5455)
CVE-2012-5455
CWE-707
Medium
ownCloud Improper Input Validation Vulnerability (CVE-2012-5336)
CVE-2012-5336
CWE-20
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5471)
CVE-2012-5471
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5472)
CVE-2012-5472
CWE-264
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5473)
CVE-2012-5473
CWE-200
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5478)
CVE-2012-5478
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5479)
CVE-2012-5479
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5480)
CVE-2012-5480
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5481)
CVE-2012-5481
CWE-264
Medium
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5485)
CVE-2012-5485
CWE-94
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5368)
CVE-2012-5368
CWE-707
Medium
«
1
...
134
135
136
...
201
»