Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
SharePoint Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-5059)
CVE-2013-5059
CWE-94
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4940)
CVE-2013-4940
CWE-707
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4939)
CVE-2013-4939
CWE-707
Medium
MediaWiki Other Vulnerability (CVE-2013-4570)
CVE-2013-4570
-
Medium
PHP Numeric Errors Vulnerability (CVE-2013-4635)
CVE-2013-4635
-
Medium
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4196)
CVE-2013-4196
CWE-264
Medium
Plone CMS Improper Input Validation Vulnerability (CVE-2013-4195)
CVE-2013-4195
CWE-20
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4573)
CVE-2013-4573
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4574)
CVE-2013-4574
CWE-707
Medium
Oracle JRE Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2013-4578)
CVE-2013-4578
CWE-138
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4590)
CVE-2013-4590
CWE-200
Medium
PHP Improper Input Validation Vulnerability (CVE-2013-4636)
CVE-2013-4636
CWE-20
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4939)
CVE-2013-4939
CWE-707
Medium
MongoDb Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4650)
CVE-2013-4650
CWE-264
Medium
phpMyAdmin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4729)
CVE-2013-4729
CWE-264
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4791)
CVE-2013-4791
CWE-707
Medium
PrestaShop Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-4792)
CVE-2013-4792
CWE-352
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4194)
CVE-2013-4194
CWE-200
Medium
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4193)
CVE-2013-4193
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4938)
CVE-2013-4938
CWE-264
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6388)
CVE-2013-6388
CWE-707
Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-6403)
CVE-2013-6403
CWE-264
Medium
Oracle JRE CVE-2014-0464 Vulnerability (CVE-2014-0464)
CVE-2014-0464
-
Medium
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-0195)
CVE-2014-0195
CWE-119
Medium
Ruby on Rails Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-0130)
CVE-2014-0130
CWE-22
Medium
MySQL CVE-2013-3783 Vulnerability (CVE-2013-3783)
CVE-2013-3783
-
Medium
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0165)
CVE-2014-0165
CWE-264
Medium
WordPress Improper Authentication Vulnerability (CVE-2014-0166)
CVE-2014-0166
CWE-287
Medium
Jolokia Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-0168)
CVE-2014-0168
CWE-352
Medium
Jboss EAP Incorrect Authorization Vulnerability (CVE-2014-0169)
CVE-2014-0169
CWE-863
Medium
OpenSSL Other Vulnerability (CVE-2014-0198)
CVE-2014-0198
-
Medium
Squid Improper Input Validation Vulnerability (CVE-2014-0128)
CVE-2014-0128
CWE-20
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-0207)
CVE-2014-0207
CWE-119
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-0213)
CVE-2014-0213
CWE-352
Medium
Moodle Improper Authentication Vulnerability (CVE-2014-0214)
CVE-2014-0214
CWE-287
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-0215)
CVE-2014-0215
CWE-200
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0216)
CVE-2014-0216
CWE-264
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-0217)
CVE-2014-0217
CWE-200
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0129)
CVE-2014-0129
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0127)
CVE-2014-0127
CWE-264
Medium
OpenSSL Resource Management Errors Vulnerability (CVE-2014-0221)
CVE-2014-0221
-
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2014-0117)
CVE-2014-0117
CWE-20
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0093)
CVE-2014-0093
CWE-264
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2014-0095)
CVE-2014-0095
CWE-20
Medium
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0096)
CVE-2014-0096
CWE-264
Medium
Oracle HTTP Server CVE-2014-0098 Vulnerability (CVE-2014-0098)
CVE-2014-0098
-
Medium
Apache HTTP Server CVE-2014-0098 Vulnerability (CVE-2014-0098)
CVE-2014-0098
-
Medium
Apache Tomcat Numeric Errors Vulnerability (CVE-2014-0099)
CVE-2014-0099
-
Medium
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2014-0118)
CVE-2014-0118
CWE-400
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-0126)
CVE-2014-0126
CWE-352
Medium
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2014-0118)
CVE-2014-0118
CWE-400
Medium
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0119)
CVE-2014-0119
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0122)
CVE-2014-0122
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0123)
CVE-2014-0123
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0124)
CVE-2014-0124
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0125)
CVE-2014-0125
CWE-264
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-0218)
CVE-2014-0218
CWE-707
Medium
Oracle JRE CVE-2013-3744 Vulnerability (CVE-2013-3744)
CVE-2013-3744
-
Medium
Ruby on Rails Improper Input Validation Vulnerability (CVE-2014-0082)
CVE-2014-0082
CWE-20
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-3059)
CVE-2013-3059
CWE-707
Medium
Joomla Improper Input Validation Vulnerability (CVE-2013-3242)
CVE-2013-3242
CWE-20
Medium
Oracle JRE CVE-2014-0449 Vulnerability (CVE-2014-0449)
CVE-2014-0449
-
Medium
phpMyAdmin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-3239)
CVE-2013-3239
CWE-94
Medium
phpMyAdmin CVE-2013-3238 Vulnerability (CVE-2013-3238)
CVE-2013-3238
-
Medium
Oracle JRE CVE-2014-0453 Vulnerability (CVE-2014-0453)
CVE-2014-0453
-
Medium
Ruby on Rails Improper Input Validation Vulnerability (CVE-2013-3221)
CVE-2013-3221
CWE-20
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-3058)
CVE-2013-3058
CWE-707
Medium
MySQL CVE-2014-0433 Vulnerability (CVE-2014-0433)
CVE-2014-0433
-
Medium
Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-3057)
CVE-2013-3057
CWE-264
Medium
Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-3056)
CVE-2013-3056
CWE-264
Medium
Oracle JRE CVE-2014-0459 Vulnerability (CVE-2014-0459)
CVE-2014-0459
-
Medium
Oracle JRE CVE-2014-0460 Vulnerability (CVE-2014-0460)
CVE-2014-0460
-
Medium
b2evolution Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-2945)
CVE-2013-2945
CWE-138
Medium
Oracle JRE CVE-2014-0463 Vulnerability (CVE-2014-0463)
CVE-2014-0463
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-3267)
CVE-2013-3267
CWE-707
Medium