Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Known Vulnerabilities

This page lists 13509 vulnerabilities in this category.

Critical: 1465 High: 3387 Medium: 7907 Low: 748 Information: 2
Vulnerability Name
CVE
CWE
Severity
Moodle Improper Access Control Vulnerability (CVE-2016-8643)
CVE-2016-8643
CWE-284
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8644)
CVE-2016-8644
CWE-264
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9126)
CVE-2016-9126
CWE-707
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9128)
CVE-2016-9128
CWE-707
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9130)
CVE-2016-9130
CWE-707
Medium
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9411)
CVE-2016-9411
CWE-200
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9188)
CVE-2016-9188
CWE-707
Medium
WordPress Improper Input Validation Vulnerability (CVE-2016-9263)
CVE-2016-9263
CWE-20
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9404)
CVE-2016-9404
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9405)
CVE-2016-9405
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9406)
CVE-2016-9406
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9407)
CVE-2016-9407
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9408)
CVE-2016-9408
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9409)
CVE-2016-9409
CWE-707
Medium
phpMyAdmin CVE-2016-6618 Vulnerability (CVE-2016-6618)
CVE-2016-6618
-
Medium
phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-6614)
CVE-2016-6614
CWE-22
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4317)
CVE-2016-4317
CWE-707
Medium
WebLogic Improper Access Control Vulnerability (CVE-2016-5601)
CVE-2016-5601
CWE-284
Medium
MySQL CVE-2016-5443 Vulnerability (CVE-2016-5443)
CVE-2016-5443
-
Medium
GlassFish CVE-2016-5477 Vulnerability (CVE-2016-5477)
CVE-2016-5477
-
Medium
WebLogic CVE-2016-5488 Vulnerability (CVE-2016-5488)
CVE-2016-5488
-
Medium
Oracle Database Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5505)
CVE-2016-5505
CWE-200
Medium
MySQL CVE-2016-5507 Vulnerability (CVE-2016-5507)
CVE-2016-5507
-
Medium
Oracle Database Server CVE-2016-5516 Vulnerability (CVE-2016-5516)
CVE-2016-5516
-
Medium
MySQL CVE-2016-5584 Vulnerability (CVE-2016-5584)
CVE-2016-5584
-
Medium
MySQL CVE-2016-5609 Vulnerability (CVE-2016-5609)
CVE-2016-5609
-
Medium
MySQL CVE-2016-5441 Vulnerability (CVE-2016-5441)
CVE-2016-5441
-
Medium
MySQL CVE-2016-5612 Vulnerability (CVE-2016-5612)
CVE-2016-5612
-
Medium
MySQL CVE-2016-5624 Vulnerability (CVE-2016-5624)
CVE-2016-5624
-
Medium
MySQL CVE-2016-5626 Vulnerability (CVE-2016-5626)
CVE-2016-5626
-
Medium
MySQL CVE-2016-5627 Vulnerability (CVE-2016-5627)
CVE-2016-5627
-
Medium
MySQL CVE-2016-5628 Vulnerability (CVE-2016-5628)
CVE-2016-5628
-
Medium
MySQL CVE-2016-5629 Vulnerability (CVE-2016-5629)
CVE-2016-5629
-
Medium
MySQL CVE-2016-5630 Vulnerability (CVE-2016-5630)
CVE-2016-5630
-
Medium
MySQL CVE-2016-5442 Vulnerability (CVE-2016-5442)
CVE-2016-5442
-
Medium
MySQL CVE-2016-5440 Vulnerability (CVE-2016-5440)
CVE-2016-5440
-
Medium
MySQL CVE-2016-5632 Vulnerability (CVE-2016-5632)
CVE-2016-5632
-
Medium
Jboss EAP Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2016-4993)
CVE-2016-4993
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4318)
CVE-2016-4318
CWE-707
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-4412)
CVE-2016-4412
-
Medium
Plupload Cross-site Scripting (XSS) Vulnerability (CVE-2016-4566)
CVE-2016-4566
-
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4566)
CVE-2016-4566
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4567)
CVE-2016-4567
CWE-707
Medium
ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4848)
CVE-2016-4848
CWE-707
Medium
Apache HTTP Server Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2016-4975)
CVE-2016-4975
CWE-707
Medium
WildFly Application Server Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2016-4993)
CVE-2016-4993
CWE-113
Medium
MySQL CVE-2016-5439 Vulnerability (CVE-2016-5439)
CVE-2016-5439
-
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5012)
CVE-2016-5012
CWE-200
Medium
Moodle Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2016-5013)
CVE-2016-5013
CWE-138
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5014)
CVE-2016-5014
CWE-200
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5097)
CVE-2016-5097
CWE-200
Medium
phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-5098)
CVE-2016-5098
CWE-22
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5099)
CVE-2016-5099
CWE-707
Medium
MySQL CVE-2016-5436 Vulnerability (CVE-2016-5436)
CVE-2016-5436
-
Medium
MySQL CVE-2016-5437 Vulnerability (CVE-2016-5437)
CVE-2016-5437
-
Medium
MySQL CVE-2016-5631 Vulnerability (CVE-2016-5631)
CVE-2016-5631
-
Medium
MySQL CVE-2016-5633 Vulnerability (CVE-2016-5633)
CVE-2016-5633
-
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6613)
CVE-2016-6613
CWE-200
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6333)
CVE-2016-6333
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6285)
CVE-2016-6285
CWE-707
Medium
PHP NULL Pointer Dereference Vulnerability (CVE-2016-6292)
CVE-2016-6292
CWE-476
Medium
OpenSSL Out-of-bounds Read Vulnerability (CVE-2016-6306)
CVE-2016-6306
CWE-125
Medium
OpenSSL Uncontrolled Resource Consumption Vulnerability (CVE-2016-6307)
CVE-2016-6307
CWE-400
Medium
OpenSSL Resource Management Errors Vulnerability (CVE-2016-6308)
CVE-2016-6308
-
Medium
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6311)
CVE-2016-6311
CWE-200
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6316)
CVE-2016-6316
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6334)
CVE-2016-6334
CWE-707
Medium
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6212)
CVE-2016-6212
CWE-200
Medium
MediaWiki Improper Access Control Vulnerability (CVE-2016-6336)
CVE-2016-6336
CWE-284
Medium
MongoDb Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6494)
CVE-2016-6494
CWE-200
Medium
Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6523)
CVE-2016-6523
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6607)
CVE-2016-6607
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6608)
CVE-2016-6608
CWE-707
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6610)
CVE-2016-6610
CWE-200
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6612)
CVE-2016-6612
CWE-200
Medium