Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
WordPress Incorrect Authorization Vulnerability (CVE-2018-20147)
CVE-2018-20147
CWE-863
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20149)
CVE-2018-20149
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20150)
CVE-2018-20150
CWE-707
Medium
WordPress Improper Input Validation Vulnerability (CVE-2018-20152)
CVE-2018-20152
CWE-20
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20153)
CVE-2018-20153
CWE-707
Medium
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1886)
CVE-2018-1886
CWE-200
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1827)
CVE-2018-1827
CWE-707
Medium
Atlassian Confluence Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-20237)
CVE-2018-20237
CWE-200
Medium
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1740)
CVE-2018-1740
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1521)
CVE-2018-1521
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1558)
CVE-2018-1558
CWE-707
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1606)
CVE-2018-1606
CWE-200
Medium
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1653)
CVE-2018-1653
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1688)
CVE-2018-1688
CWE-707
Medium
IBM RTC CVE-2018-1694 Vulnerability (CVE-2018-1694)
CVE-2018-1694
-
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1734)
CVE-2018-1734
CWE-200
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1758)
CVE-2018-1758
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1826)
CVE-2018-1826
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1760)
CVE-2018-1760
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1761)
CVE-2018-1761
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1762)
CVE-2018-1762
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1766)
CVE-2018-1766
CWE-707
Medium
IBM WebSEAL Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2018-1803)
CVE-2018-1803
CWE-1021
Medium
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1805)
CVE-2018-1805
CWE-200
Medium
IBM WebSEAL CVE-2018-1813 Vulnerability (CVE-2018-1813)
CVE-2018-1813
-
Medium
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1815)
CVE-2018-1815
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20232)
CVE-2018-20232
CWE-707
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20239)
CVE-2018-20239
CWE-707
Medium
IBM WebSEAL Improper Authentication Vulnerability (CVE-2018-1443)
CVE-2018-1443
CWE-287
Medium
MySQL CVE-2018-2583 Vulnerability (CVE-2018-2583)
CVE-2018-2583
-
Medium
MongoDb Improper Input Validation Vulnerability (CVE-2018-25004)
CVE-2018-25004
CWE-20
Medium
Oracle HTTP Server CVE-2018-2561 Vulnerability (CVE-2018-2561)
CVE-2018-2561
-
Medium
MySQL CVE-2018-2565 Vulnerability (CVE-2018-2565)
CVE-2018-2565
-
Medium
MySQL CVE-2018-2573 Vulnerability (CVE-2018-2573)
CVE-2018-2573
-
Medium
MySQL CVE-2018-2576 Vulnerability (CVE-2018-2576)
CVE-2018-2576
-
Medium
Oracle JRE CVE-2018-2581 Vulnerability (CVE-2018-2581)
CVE-2018-2581
-
Medium
Oracle JRE CVE-2018-2582 Vulnerability (CVE-2018-2582)
CVE-2018-2582
-
Medium
MySQL CVE-2018-2586 Vulnerability (CVE-2018-2586)
CVE-2018-2586
-
Medium
Python Improper Input Validation Vulnerability (CVE-2018-20852)
CVE-2018-20852
CWE-20
Medium
Oracle JRE CVE-2018-2588 Vulnerability (CVE-2018-2588)
CVE-2018-2588
-
Medium
MySQL CVE-2018-2590 Vulnerability (CVE-2018-2590)
CVE-2018-2590
-
Medium
MySQL CVE-2018-2591 Vulnerability (CVE-2018-2591)
CVE-2018-2591
-
Medium
Oracle JRE CVE-2018-2599 Vulnerability (CVE-2018-2599)
CVE-2018-2599
-
Medium
MySQL CVE-2018-2600 Vulnerability (CVE-2018-2600)
CVE-2018-2600
-
Medium
Oracle JRE CVE-2018-2602 Vulnerability (CVE-2018-2602)
CVE-2018-2602
-
Medium
Oracle JRE CVE-2018-2603 Vulnerability (CVE-2018-2603)
CVE-2018-2603
-
Medium
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20965)
CVE-2018-20965
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20827)
CVE-2018-20827
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20239)
CVE-2018-20239
CWE-707
Medium
CubeCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20703)
CVE-2018-20703
CWE-707
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20322)
CVE-2018-20322
CWE-707
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20327)
CVE-2018-20327
CWE-707
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20328)
CVE-2018-20328
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20418)
CVE-2018-20418
CWE-707
Medium
WebERP Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-20420)
CVE-2018-20420
CWE-732
Medium
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20676)
CVE-2018-20676
CWE-707
Medium
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20677)
CVE-2018-20677
CWE-707
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20755)
CVE-2018-20755
CWE-707
Medium
Atlassian Jira Incorrect Authorization Vulnerability (CVE-2018-20826)
CVE-2018-20826
CWE-863
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20756)
CVE-2018-20756
CWE-707
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20757)
CVE-2018-20757
CWE-707
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20758)
CVE-2018-20758
CWE-707
Medium
MongoDb Other Vulnerability (CVE-2018-20802)
CVE-2018-20802
-
Medium
MongoDb Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-20803)
CVE-2018-20803
CWE-835
Medium
MongoDb Improper Input Validation Vulnerability (CVE-2018-20804)
CVE-2018-20804
CWE-20
Medium
MongoDb Excessive Iteration Vulnerability (CVE-2018-20805)
CVE-2018-20805
CWE-834
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20824)
CVE-2018-20824
CWE-707
Medium
IBM RTC Session Fixation Vulnerability (CVE-2018-1492)
CVE-2018-1492
CWE-384
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1423)
CVE-2018-1423
CWE-200
Medium
Vanilla Forums Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-16410)
CVE-2018-16410
CWE-138
Medium
Jenkins Incorrect Authorization Vulnerability (CVE-2018-1999003)
CVE-2018-1999003
CWE-863
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-17960)
CVE-2018-17960
CWE-707
Medium
Next.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-18282)
CVE-2018-18282
CWE-707
Medium
CrushFTP Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-18288)
CVE-2018-18288
CWE-601
Medium
jQuery Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-18405)
CVE-2018-18405
CWE-707
Medium
«
1
...
156
157
158
...
181
»
