Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
EspoCRM Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7986)
CVE-2014-7986
CWE-264
Medium
EspoCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7987)
CVE-2014-7987
CWE-707
Medium
Ruby Other Vulnerability (CVE-2014-8080)
CVE-2014-8080
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2081)
CVE-2013-2081
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2080)
CVE-2013-2080
CWE-264
Medium
Osclass Other Vulnerability (CVE-2014-8085)
CVE-2014-8085
-
Medium
Ruby Other Vulnerability (CVE-2014-8090)
CVE-2014-8090
-
Medium
Django DEPRECATED: Code Vulnerability (CVE-2015-0219)
CVE-2015-0219
-
Medium
Django Resource Management Errors Vulnerability (CVE-2015-0221)
CVE-2015-0221
-
Medium
ownCloud Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2015-3013)
CVE-2015-3013
CWE-138
Medium
Apache HTTP Server CVE-2013-1862 Vulnerability (CVE-2013-1862)
CVE-2013-1862
-
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2266)
CVE-2015-2266
CWE-200
Medium
Moodle Improper Access Control Vulnerability (CVE-2015-2267)
CVE-2015-2267
CWE-284
Medium
Moodle Resource Management Errors Vulnerability (CVE-2015-2268)
CVE-2015-2268
-
Medium
Moodle DEPRECATED: Code Vulnerability (CVE-2015-2270)
CVE-2015-2270
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-2271)
CVE-2015-2271
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-2272)
CVE-2015-2272
CWE-264
Medium
PHP Integer Overflow or Wraparound Vulnerability (CVE-2015-2305)
CVE-2015-2305
CWE-190
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2241)
CVE-2015-2241
CWE-707
Medium
Django Resource Management Errors Vulnerability (CVE-2015-2316)
CVE-2015-2316
-
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2317)
CVE-2015-2317
CWE-707
Medium
Jboss EAP CVE-2013-1862 Vulnerability (CVE-2013-1862)
CVE-2013-1862
-
Medium
PHP Out-of-bounds Read Vulnerability (CVE-2015-2326)
CVE-2015-2326
CWE-125
Medium
MySQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-1861)
CVE-2013-1861
CWE-119
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2332)
CVE-2015-2332
CWE-707
Medium
concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2250)
CVE-2015-2250
CWE-707
Medium
Oracle HTTP Server CVE-2013-1862 Vulnerability (CVE-2013-1862)
CVE-2013-1862
-
Medium
MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-2334)
CVE-2015-2334
CWE-352
Medium
IBM RTC Improper Input Validation Vulnerability (CVE-2015-1928)
CVE-2015-1928
CWE-20
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1812)
CVE-2015-1812
CWE-707
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1813)
CVE-2015-1813
CWE-707
Medium
Apache HTTP Server CVE-2013-1896 Vulnerability (CVE-2013-1896)
CVE-2013-1896
-
Medium
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-1849)
CVE-2015-1849
CWE-200
Medium
Ruby Improper Input Validation Vulnerability (CVE-2015-1855)
CVE-2015-1855
CWE-20
Medium
Ember.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1866)
CVE-2015-1866
CWE-707
Medium
IBM RTC CVE-2015-1971 Vulnerability (CVE-2015-1971)
CVE-2015-1971
-
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2206)
CVE-2015-2206
CWE-200
Medium
ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-1893)
CVE-2013-1893
CWE-138
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2034)
CVE-2015-2034
CWE-707
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-2035)
CVE-2015-2035
CWE-138
Medium
MongoDb Improper Input Validation Vulnerability (CVE-2013-1892)
CVE-2013-1892
CWE-20
Medium
Opencart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-1891)
CVE-2013-1891
CWE-22
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1890)
CVE-2013-1890
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2333)
CVE-2015-2333
CWE-707
Medium
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2335)
CVE-2015-2335
CWE-200
Medium
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-1806)
CVE-2015-1806
CWE-264
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2935)
CVE-2015-2935
CWE-200
Medium
Ruby on Rails Improper Input Validation Vulnerability (CVE-2013-1854)
CVE-2013-1854
CWE-20
Medium
Oracle HTTP Server Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2015-2808)
CVE-2015-2808
CWE-327
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2931)
CVE-2015-2931
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2932)
CVE-2015-2932
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2933)
CVE-2015-2933
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2934)
CVE-2015-2934
CWE-707
Medium
ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-1850)
CVE-2013-1850
CWE-94
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1855)
CVE-2013-1855
CWE-707
Medium
TYPO3 Resource Management Errors Vulnerability (CVE-2013-1843)
CVE-2013-1843
-
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2938)
CVE-2015-2938
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2941)
CVE-2015-2941
CWE-707
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2948)
CVE-2015-2948
CWE-707
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2949)
CVE-2015-2949
CWE-707
Medium
osCommerce Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-2965)
CVE-2015-2965
CWE-22
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-2783)
CVE-2015-2783
CWE-119
Medium
Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2015-2750)
CVE-2015-2750
CWE-601
Medium
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-2348)
CVE-2015-2348
CWE-264
Medium
Oracle Database Server CVE-2015-2595 Vulnerability (CVE-2015-2595)
CVE-2015-2595
-
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1857)
CVE-2013-1857
CWE-707
Medium
MySQL CVE-2015-2568 Vulnerability (CVE-2015-2568)
CVE-2015-2568
-
Medium
MySQL CVE-2015-2571 Vulnerability (CVE-2015-2571)
CVE-2015-2571
-
Medium
MySQL CVE-2015-2573 Vulnerability (CVE-2015-2573)
CVE-2015-2573
-
Medium
MySQL CVE-2015-2582 Vulnerability (CVE-2015-2582)
CVE-2015-2582
-
Medium
Oracle Database Server CVE-2015-2586 Vulnerability (CVE-2015-2586)
CVE-2015-2586
-
Medium
Oracle Database Server CVE-2015-2599 Vulnerability (CVE-2015-2599)
CVE-2015-2599
-
Medium
Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2015-2749)
CVE-2015-2749
CWE-601
Medium
MySQL CVE-2015-2611 Vulnerability (CVE-2015-2611)
CVE-2015-2611
-
Medium
MySQL CVE-2015-2617 Vulnerability (CVE-2015-2617)
CVE-2015-2617
-
Medium