Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-5515)
CVE-2008-5515
CWE-22
Medium
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5621)
CVE-2008-5621
CWE-352
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5644)
CVE-2008-5644
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5656)
CVE-2008-5656
CWE-707
Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5687)
CVE-2008-5687
CWE-264
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5688)
CVE-2008-5688
CWE-200
Medium
Oracle Database Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6065)
CVE-2008-6065
CWE-264
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6533)
CVE-2008-6533
CWE-707
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6125)
CVE-2008-6125
CWE-264
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6208)
CVE-2008-6208
CWE-707
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6503)
CVE-2008-6503
CWE-707
Medium
phpBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6506)
CVE-2008-6506
CWE-264
Medium
phpBB CVE-2008-6507 Vulnerability (CVE-2008-6507)
CVE-2008-6507
-
Medium
Atlassian Jira Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-6531)
CVE-2008-6531
CWE-94
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-6532)
CVE-2008-6532
CWE-352
Medium
Oracle Application Server CVE-2009-1976 Vulnerability (CVE-2009-1976)
CVE-2009-1976
-
Medium
Oracle Database Server CVE-2009-1994 Vulnerability (CVE-2009-1994)
CVE-2009-1994
-
Medium
Ruby Improper Input Validation Vulnerability (CVE-2008-3790)
CVE-2008-3790
CWE-20
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4589)
CVE-2009-4589
CWE-707
Medium
Nginx CVE-2009-4487 Vulnerability (CVE-2009-4487)
CVE-2009-4487
-
Medium
Cherokee Improper Input Validation Vulnerability (CVE-2009-4489)
CVE-2009-4489
CWE-20
Medium
Ruby Improper Input Validation Vulnerability (CVE-2009-4492)
CVE-2009-4492
CWE-20
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4562)
CVE-2009-4562
CWE-707
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4563)
CVE-2009-4563
CWE-707
Medium
Zenphoto Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-4564)
CVE-2009-4564
CWE-138
Medium
phpMyAdmin Other Vulnerability (CVE-2009-4605)
CVE-2009-4605
-
Medium
Internet Information Services CVE-2009-4444 Vulnerability (CVE-2009-4444)
CVE-2009-4444
-
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4780)
CVE-2009-4780
CWE-707
Medium
XOOPS Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4851)
CVE-2009-4851
CWE-264
Medium
PHP Numeric Errors Vulnerability (CVE-2009-5016)
CVE-2009-5016
-
Medium
MySQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-5026)
CVE-2009-5026
CWE-138
Medium
Jetty Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-5046)
CVE-2009-5046
CWE-707
Medium
Zope Web Application Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-5145)
CVE-2009-5145
CWE-707
Medium
Apache HTTP Server Numeric Errors Vulnerability (CVE-2010-0010)
CVE-2010-0010
-
Medium
Internet Information Services Improper Input Validation Vulnerability (CVE-2009-4445)
CVE-2009-4445
CWE-20
Medium
PHP Numeric Errors Vulnerability (CVE-2009-4418)
CVE-2009-4418
-
Medium
Oracle Application Server CVE-2010-0067 Vulnerability (CVE-2010-0067)
CVE-2010-0067
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4299)
CVE-2009-4299
CWE-264
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4083)
CVE-2009-4083
CWE-707
Medium
Python Out-of-bounds Write Vulnerability (CVE-2009-4134)
CVE-2009-4134
CWE-787
Medium
PostgreSQL Other Vulnerability (CVE-2009-4136)
CVE-2009-4136
-
Medium
PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4142)
CVE-2009-4142
CWE-707
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4214)
CVE-2009-4214
CWE-707
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4297)
CVE-2009-4297
CWE-352
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-4298)
CVE-2009-4298
CWE-200
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-4300)
CVE-2009-4300
CWE-200
Medium
Serendipity Other Vulnerability (CVE-2009-4412)
CVE-2009-4412
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4301)
CVE-2009-4301
CWE-264
Medium
Moodle Cryptographic Issues Vulnerability (CVE-2009-4302)
CVE-2009-4302
-
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-4303)
CVE-2009-4303
CWE-200
Medium
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-4305)
CVE-2009-4305
CWE-138
Medium
ZenCart Improper Input Validation Vulnerability (CVE-2009-4321)
CVE-2009-4321
CWE-20
Medium
ZenCart Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-4322)
CVE-2009-4322
CWE-200
Medium
OpenSSL Resource Management Errors Vulnerability (CVE-2009-4355)
CVE-2009-4355
-
Medium
Oracle Application Server CVE-2010-0066 Vulnerability (CVE-2010-0066)
CVE-2010-0066
-
Medium
Oracle Application Server CVE-2010-0070 Vulnerability (CVE-2010-0070)
CVE-2010-0070
-
Medium
Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4076)
CVE-2009-4076
CWE-352
Medium
Perl Numeric Errors Vulnerability (CVE-2010-1158)
CVE-2010-1158
-
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2010-0928)
CVE-2010-0928
-
Medium
e107 Other Vulnerability (CVE-2010-0996)
CVE-2010-0996
-
Medium
Zope Web Application Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-1104)
CVE-2010-1104
CWE-707
Medium
PHP Cryptographic Issues Vulnerability (CVE-2010-1128)
CVE-2010-1128
-
Medium
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1130)
CVE-2010-1130
CWE-264
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2010-1150)
CVE-2010-1150
CWE-352
Medium
TYPO3 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-1153)
CVE-2010-1153
CWE-94
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-1164)
CVE-2010-1164
CWE-707
Medium
Oracle Database Server CVE-2010-0892 Vulnerability (CVE-2010-0892)
CVE-2010-0892
-
Medium
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1170)
CVE-2010-1170
CWE-264
Medium
MediaWiki Improper Input Validation Vulnerability (CVE-2010-1189)
CVE-2010-1189
CWE-20
Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1190)
CVE-2010-1190
CWE-264
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1428)
CVE-2010-1428
CWE-264
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1429)
CVE-2010-1429
CWE-264
Medium
Apache HTTP Server Other Vulnerability (CVE-2010-1452)
CVE-2010-1452
-
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-1593)
CVE-2010-1593
CWE-707
Medium
Oracle Database Server CVE-2010-0902 Vulnerability (CVE-2010-0902)
CVE-2010-0902
-
Medium
«
1
...
134
135
136
...
181
»
