Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Oracle Application Server Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-0735)
CVE-2018-0735
CWE-327
Medium
Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-8831)
CVE-2015-8831
CWE-707
Medium
Dolphin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4333)
CVE-2014-4333
CWE-352
Medium
Oracle Database Server CVE-2014-4296 Vulnerability (CVE-2014-4296)
CVE-2014-4296
-
Medium
Oracle Database Server CVE-2014-4297 Vulnerability (CVE-2014-4297)
CVE-2014-4297
-
Medium
Oracle Database Server CVE-2014-4298 Vulnerability (CVE-2014-4298)
CVE-2014-4298
-
Medium
Oracle Database Server CVE-2014-4299 Vulnerability (CVE-2014-4299)
CVE-2014-4299
-
Medium
Oracle Database Server CVE-2014-4300 Vulnerability (CVE-2014-4300)
CVE-2014-4300
-
Medium
Oracle Database Server CVE-2014-4310 Vulnerability (CVE-2014-4310)
CVE-2014-4310
-
Medium
Coppermine Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-4612)
CVE-2014-4612
CWE-707
Medium
Oracle Database Server CVE-2014-4294 Vulnerability (CVE-2014-4294)
CVE-2014-4294
-
Medium
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4613)
CVE-2014-4613
CWE-352
Medium
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4614)
CVE-2014-4614
CWE-352
Medium
Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-4616)
CVE-2014-4616
CWE-119
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-4649)
CVE-2014-4649
CWE-138
Medium
Cherokee Improper Authentication Vulnerability (CVE-2014-4668)
CVE-2014-4668
CWE-287
Medium
PHP Other Vulnerability (CVE-2014-4670)
CVE-2014-4670
-
Medium
Oracle Database Server CVE-2014-4295 Vulnerability (CVE-2014-4295)
CVE-2014-4295
-
Medium
Oracle Database Server CVE-2014-4293 Vulnerability (CVE-2014-4293)
CVE-2014-4293
-
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-4744)
CVE-2014-4744
CWE-707
Medium
Oracle Database Server CVE-2014-4237 Vulnerability (CVE-2014-4237)
CVE-2014-4237
-
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-4049)
CVE-2014-4049
CWE-119
Medium
ASP.NET MVC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-4075)
CVE-2014-4075
CWE-707
Medium
Internet Information Services Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-4078)
CVE-2014-4078
CWE-264
Medium
MySQL CVE-2014-4207 Vulnerability (CVE-2014-4207)
CVE-2014-4207
-
Medium
MySQL CVE-2014-4233 Vulnerability (CVE-2014-4233)
CVE-2014-4233
-
Medium
Oracle Database Server CVE-2014-4236 Vulnerability (CVE-2014-4236)
CVE-2014-4236
-
Medium
MySQL CVE-2014-4238 Vulnerability (CVE-2014-4238)
CVE-2014-4238
-
Medium
Oracle Database Server CVE-2014-4292 Vulnerability (CVE-2014-4292)
CVE-2014-4292
-
Medium
MySQL CVE-2014-4258 Vulnerability (CVE-2014-4258)
CVE-2014-4258
-
Medium
MySQL CVE-2014-4260 Vulnerability (CVE-2014-4260)
CVE-2014-4260
-
Medium
MySQL CVE-2014-4274 Vulnerability (CVE-2014-4274)
CVE-2014-4274
-
Medium
MySQL CVE-2014-4287 Vulnerability (CVE-2014-4287)
CVE-2014-4287
-
Medium
Oracle Database Server CVE-2014-4290 Vulnerability (CVE-2014-4290)
CVE-2014-4290
-
Medium
Oracle Database Server CVE-2014-4291 Vulnerability (CVE-2014-4291)
CVE-2014-4291
-
Medium
PHP Other Vulnerability (CVE-2014-4698)
CVE-2014-4698
-
Medium
ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-4929)
CVE-2014-4929
CWE-22
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-3991)
CVE-2014-3991
CWE-707
Medium
DWR Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-5325)
CVE-2014-5325
CWE-200
Medium
Drupal Resource Management Errors Vulnerability (CVE-2014-5265)
CVE-2014-5265
-
Medium
WordPress Resource Management Errors Vulnerability (CVE-2014-5265)
CVE-2014-5265
-
Medium
Drupal Resource Management Errors Vulnerability (CVE-2014-5266)
CVE-2014-5266
-
Medium
WordPress Resource Management Errors Vulnerability (CVE-2014-5266)
CVE-2014-5266
-
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-5267)
CVE-2014-5267
CWE-264
Medium
Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5316)
CVE-2014-5316
CWE-707
Medium
DWR Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5326)
CVE-2014-5326
CWE-707
Medium
MediaWiki Improper Input Validation Vulnerability (CVE-2014-5243)
CVE-2014-5243
CWE-20
Medium
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-5341)
CVE-2014-5341
CWE-200
Medium
phpMyFAQ Permission Issues Vulnerability (CVE-2014-6047)
CVE-2014-6047
-
Medium
phpMyFAQ Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6048)
CVE-2014-6048
CWE-200
Medium
phpMyFAQ 7PK - Security Features Vulnerability (CVE-2014-6050)
CVE-2014-6050
-
Medium
jQuery Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-6071)
CVE-2014-6071
CWE-707
Medium
IBM RTC Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-6129)
CVE-2014-6129
CWE-264
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5248)
CVE-2014-5248
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5242)
CVE-2014-5242
CWE-707
Medium
Ruby Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-4975)
CVE-2014-4975
CWE-119
Medium
Omeka Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5100)
CVE-2014-5100
CWE-352
Medium
phpMyAdmin Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-4987)
CVE-2014-4987
CWE-264
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5016)
CVE-2014-5016
CWE-707
Medium
LimeSurvey Other Vulnerability (CVE-2014-5018)
CVE-2014-5018
-
Medium
Drupal Improper Input Validation Vulnerability (CVE-2014-5019)
CVE-2014-5019
CWE-20
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-5020)
CVE-2014-5020
CWE-264
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5022)
CVE-2014-5022
CWE-707
Medium
WeBid Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5101)
CVE-2014-5101
CWE-707
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5241)
CVE-2014-5241
CWE-352
Medium
concrete5 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-5107)
CVE-2014-5107
CWE-200
Medium
concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5108)
CVE-2014-5108
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2014-5120)
CVE-2014-5120
CWE-20
Medium
OpenSSL Other Vulnerability (CVE-2014-5139)
CVE-2014-5139
-
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5191)
CVE-2014-5191
CWE-707
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5204)
CVE-2014-5204
CWE-352
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5205)
CVE-2014-5205
CWE-352
Medium
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-3992)
CVE-2014-3992
CWE-138
Medium
MongoDb Improper Input Validation Vulnerability (CVE-2014-3971)
CVE-2014-3971
CWE-20
Medium
Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-6270)
CVE-2014-6270
CWE-119
Medium
«
1
...
158
159
160
...
181
»
