Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
PrestaShop Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-4792)
CVE-2013-4792
CWE-352
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4938)
CVE-2013-4938
CWE-264
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4939)
CVE-2013-4939
CWE-707
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4590)
CVE-2013-4590
CWE-200
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4940)
CVE-2013-4940
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4940)
CVE-2013-4940
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4941)
CVE-2013-4941
CWE-707
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4941)
CVE-2013-4941
CWE-707
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4942)
CVE-2013-4942
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4942)
CVE-2013-4942
CWE-707
Medium
PHP Numeric Errors Vulnerability (CVE-2013-4635)
CVE-2013-4635
-
Medium
Oracle JRE Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2013-4578)
CVE-2013-4578
CWE-138
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4997)
CVE-2013-4997
CWE-707
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4491)
CVE-2013-4491
CWE-707
Medium
OpenSSL Improper Input Validation Vulnerability (CVE-2013-4353)
CVE-2013-4353
CWE-20
Medium
Ruby Cryptographic Issues Vulnerability (CVE-2013-4363)
CVE-2013-4363
-
Medium
RubyGems Cryptographic Issues Vulnerability (CVE-2013-4363)
CVE-2013-4363
-
Medium
Ruby on Rails Use of Externally-Controlled Format String Vulnerability (CVE-2013-4389)
CVE-2013-4389
CWE-134
Medium
Apache Tomcat Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-4444)
CVE-2013-4444
CWE-94
Medium
Varnish Cache Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-4484)
CVE-2013-4484
CWE-119
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4522)
CVE-2013-4522
CWE-200
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4574)
CVE-2013-4574
CWE-707
Medium
Moodle Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-4524)
CVE-2013-4524
CWE-22
Medium
Lighttpd Use After Free Vulnerability (CVE-2013-4560)
CVE-2013-4560
CWE-416
Medium
MediaWiki Other Vulnerability (CVE-2013-4567)
CVE-2013-4567
-
Medium
MediaWiki Other Vulnerability (CVE-2013-4568)
CVE-2013-4568
-
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4569)
CVE-2013-4569
CWE-200
Medium
MediaWiki Other Vulnerability (CVE-2013-4570)
CVE-2013-4570
-
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4573)
CVE-2013-4573
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4996)
CVE-2013-4996
CWE-707
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4998)
CVE-2013-4998
CWE-200
Medium
Oracle JRE CVE-2013-5820 Vulnerability (CVE-2013-5820)
CVE-2013-5820
-
Medium
Oracle JRE CVE-2013-5790 Vulnerability (CVE-2013-5790)
CVE-2013-5790
-
Medium
Oracle JRE CVE-2013-5776 Vulnerability (CVE-2013-5776)
CVE-2013-5776
-
Medium
Oracle JRE CVE-2013-5778 Vulnerability (CVE-2013-5778)
CVE-2013-5778
-
Medium
Oracle JRE CVE-2013-5780 Vulnerability (CVE-2013-5780)
CVE-2013-5780
-
Medium
Oracle JRE CVE-2013-5783 Vulnerability (CVE-2013-5783)
CVE-2013-5783
-
Medium
Oracle JRE CVE-2013-5784 Vulnerability (CVE-2013-5784)
CVE-2013-5784
-
Medium
MySQL CVE-2013-5786 Vulnerability (CVE-2013-5786)
CVE-2013-5786
-
Medium
Oracle JRE CVE-2013-5800 Vulnerability (CVE-2013-5800)
CVE-2013-5800
-
Medium
Oracle Database Server CVE-2013-5771 Vulnerability (CVE-2013-5771)
CVE-2013-5771
-
Medium
Oracle JRE CVE-2013-5801 Vulnerability (CVE-2013-5801)
CVE-2013-5801
-
Medium
Oracle JRE CVE-2013-5804 Vulnerability (CVE-2013-5804)
CVE-2013-5804
-
Medium
MySQL CVE-2013-5807 Vulnerability (CVE-2013-5807)
CVE-2013-5807
-
Medium
Oracle JRE CVE-2013-5812 Vulnerability (CVE-2013-5812)
CVE-2013-5812
-
Medium
Oracle JRE CVE-2013-5818 Vulnerability (CVE-2013-5818)
CVE-2013-5818
-
Medium
Oracle JRE CVE-2013-5819 Vulnerability (CVE-2013-5819)
CVE-2013-5819
-
Medium
Oracle JRE CVE-2013-5774 Vulnerability (CVE-2013-5774)
CVE-2013-5774
-
Medium
MySQL CVE-2013-5767 Vulnerability (CVE-2013-5767)
CVE-2013-5767
-
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4999)
CVE-2013-4999
CWE-200
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5314)
CVE-2013-5314
CWE-707
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-5000)
CVE-2013-5000
CWE-200
Medium
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-5003)
CVE-2013-5003
CWE-138
Medium
phpMyAdmin Improper Input Validation Vulnerability (CVE-2013-5029)
CVE-2013-5029
CWE-20
Medium
ASP.NET SignalR Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5042)
CVE-2013-5042
CWE-707
Medium
SharePoint Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-5059)
CVE-2013-5059
CWE-94
Medium
easyXDM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5212)
CVE-2013-5212
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5319)
CVE-2013-5319
CWE-707
Medium
WordPress Improper Input Validation Vulnerability (CVE-2013-5738)
CVE-2013-5738
CWE-20
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5573)
CVE-2013-5573
CWE-707
Medium
Joomla Improper Input Validation Vulnerability (CVE-2013-5576)
CVE-2013-5576
CWE-20
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5583)
CVE-2013-5583
CWE-707
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5645)
CVE-2013-5645
CWE-707
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5670)
CVE-2013-5670
CWE-707
Medium
Oracle HTTP Server CVE-2013-5704 Vulnerability (CVE-2013-5704)
CVE-2013-5704
-
Medium
Apache HTTP Server CVE-2013-5704 Vulnerability (CVE-2013-5704)
CVE-2013-5704
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0009)
CVE-2014-0009
CWE-264
Medium
Ember.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-0013)
CVE-2014-0013
CWE-707
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-3454)
CVE-2014-3454
CWE-352
Medium
Jenkins Cryptographic Issues Vulnerability (CVE-2014-2061)
CVE-2014-2061
-
Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2049)
CVE-2014-2049
CWE-264
Medium
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-2050)
CVE-2014-2050
CWE-352
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2057)
CVE-2014-2057
CWE-707
Medium
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2058)
CVE-2014-2058
CWE-264
Medium
Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-2059)
CVE-2014-2059
CWE-22
Medium
«
1
...
163
164
165
...
181
»
