Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
silverstripeCMS Other Vulnerability (CVE-2015-5062)
CVE-2015-5062
-
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5063)
CVE-2015-5063
CWE-707
Medium
LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-5078)
CVE-2015-5078
CWE-138
Medium
Oracle Database Server CVE-2013-1519 Vulnerability (CVE-2013-1519)
CVE-2013-1519
-
Medium
Django Improper Input Validation Vulnerability (CVE-2015-5144)
CVE-2015-5144
CWE-20
Medium
MySQL CVE-2013-1512 Vulnerability (CVE-2013-1512)
CVE-2013-1512
-
Medium
Jboss EAP 7PK - Security Features Vulnerability (CVE-2015-5178)
CVE-2015-5178
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5269)
CVE-2015-5269
CWE-707
Medium
Jboss EAP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5188)
CVE-2015-5188
CWE-352
Medium
GlassFish CVE-2013-1508 Vulnerability (CVE-2013-1508)
CVE-2013-1508
-
Medium
Jboss EAP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-5220)
CVE-2015-5220
CWE-119
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5264)
CVE-2015-5264
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5265)
CVE-2015-5265
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5266)
CVE-2015-5266
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5268)
CVE-2015-5268
CWE-264
Medium
Oracle Database Server CVE-2013-1554 Vulnerability (CVE-2013-1554)
CVE-2013-1554
-
Medium
ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-4673)
CVE-2015-4673
CWE-707
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5340)
CVE-2015-5340
CWE-200
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3275)
CVE-2015-3275
CWE-707
Medium
Drupal Improper Input Validation Vulnerability (CVE-2015-3234)
CVE-2015-3234
CWE-20
Medium
GlassFish Improper Input Validation Vulnerability (CVE-2015-3237)
CVE-2015-3237
CWE-20
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1832)
CVE-2013-1832
CWE-200
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1831)
CVE-2013-1831
CWE-200
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-3273)
CVE-2015-3273
CWE-264
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3274)
CVE-2015-3274
CWE-707
Medium
markdown-it Improper Access Control Vulnerability (CVE-2015-3295)
CVE-2015-3295
CWE-284
Medium
Drupal Other Vulnerability (CVE-2015-3232)
CVE-2015-3232
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1830)
CVE-2013-1830
CWE-264
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1829)
CVE-2013-1829
CWE-200
Medium
PHP Improper Input Validation Vulnerability (CVE-2015-3330)
CVE-2015-3330
CWE-20
Medium
PHP Improper Input Validation Vulnerability (CVE-2015-3411)
CVE-2015-3411
CWE-20
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3412)
CVE-2015-3412
CWE-200
Medium
PHP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2013-1824)
CVE-2013-1824
CWE-611
Medium
Drupal Other Vulnerability (CVE-2015-3233)
CVE-2015-3233
-
Medium
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3231)
CVE-2015-3231
CWE-200
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1818)
CVE-2013-1818
CWE-200
Medium
Apache HTTP Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-3185)
CVE-2015-3185
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1836)
CVE-2013-1836
CWE-264
Medium
Moodle Other Vulnerability (CVE-2015-3175)
CVE-2015-3175
-
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3176)
CVE-2015-3176
CWE-200
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3180)
CVE-2015-3180
CWE-200
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-3181)
CVE-2015-3181
CWE-264
Medium
Apache HTTP Server DEPRECATED: Code Vulnerability (CVE-2015-3183)
CVE-2015-3183
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1834)
CVE-2013-1834
CWE-264
Medium
Ruby on Rails CVE-2015-3227 Vulnerability (CVE-2015-3227)
CVE-2015-3227
-
Medium
Oracle HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3195)
CVE-2015-3195
CWE-200
Medium
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3195)
CVE-2015-3195
CWE-200
Medium
OpenSSL Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2015-3196)
CVE-2015-3196
CWE-362
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2015-3197)
CVE-2015-3197
-
Medium
OpenSSL Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2015-3216)
CVE-2015-3216
CWE-362
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3226)
CVE-2015-3226
CWE-707
Medium
Ruby Improper Input Validation Vulnerability (CVE-2013-1821)
CVE-2013-1821
CWE-20
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3438)
CVE-2015-3438
CWE-707
Medium
Opencart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-4671)
CVE-2015-4671
CWE-707
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1643)
CVE-2013-1643
CWE-200
Medium
PHP Numeric Errors Vulnerability (CVE-2015-4021)
CVE-2015-4021
-
Medium
PHP Resource Management Errors Vulnerability (CVE-2015-4024)
CVE-2015-4024
-
Medium
PHP Address Book Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1749)
CVE-2013-1749
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2015-4148)
CVE-2015-4148
CWE-20
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-4552)
CVE-2015-4552
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2015-4598)
CVE-2015-4598
CWE-20
Medium
GlassFish Observable Discrepancy Vulnerability (CVE-2013-1620)
CVE-2013-1620
CWE-203
Medium
concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3989)
CVE-2015-3989
CWE-707
Medium
Oracle JRE CVE-2013-1571 Vulnerability (CVE-2013-1571)
CVE-2013-1571
-
Medium
MySQL CVE-2013-1570 Vulnerability (CVE-2013-1570)
CVE-2013-1570
-
Medium
LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-4628)
CVE-2015-4628
CWE-138
Medium
Oracle JRE CVE-2013-1564 Vulnerability (CVE-2013-1564)
CVE-2013-1564
-
Medium
Oracle JRE CVE-2013-1561 Vulnerability (CVE-2013-1561)
CVE-2013-1561
-
Medium
MySQL CVE-2013-1555 Vulnerability (CVE-2013-1555)
CVE-2013-1555
-
Medium
RubyGems Improper Input Validation Vulnerability (CVE-2015-4020)
CVE-2015-4020
CWE-20
Medium
Django Other Vulnerability (CVE-2015-3982)
CVE-2015-3982
-
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3439)
CVE-2015-3439
CWE-707
Medium
qdPM Sensitive Information Disclosure Vulnerability (CVE-2015-3882)
CVE-2015-3882
-
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3440)
CVE-2015-3440
CWE-707
Medium
Magento Improper Authentication Vulnerability (CVE-2015-3457)
CVE-2015-3457
CWE-287
Medium