Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
Oracle Database Server CVE-2009-1970 Vulnerability (CVE-2009-1970)
CVE-2009-1970
-
Medium
Atlassian Jira CVE-2020-14168 Vulnerability (CVE-2020-14168)
CVE-2020-14168
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14169)
CVE-2020-14169
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14173)
CVE-2020-14173
CWE-707
Medium
Atlassian Jira Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2020-14174)
CVE-2020-14174
CWE-639
Medium
Apache Tomcat CVE-2020-13943 Vulnerability (CVE-2020-13943)
CVE-2020-13943
-
Medium
Oracle Database Server CVE-2009-1973 Vulnerability (CVE-2009-1973)
CVE-2009-1973
-
Medium
Oracle Database Server CVE-2009-1968 Vulnerability (CVE-2009-1968)
CVE-2009-1968
-
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13688)
CVE-2020-13688
CWE-707
Medium
Oracle Database Server CVE-2009-1997 Vulnerability (CVE-2009-1997)
CVE-2009-1997
-
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13672)
CVE-2020-13672
CWE-707
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-13674)
CVE-2020-13674
CWE-352
Medium
Oracle Database Server CVE-2009-1996 Vulnerability (CVE-2009-1996)
CVE-2009-1996
-
Medium
Drupal Incorrect Authorization Vulnerability (CVE-2020-13676)
CVE-2020-13676
CWE-863
Medium
Oracle Database Server CVE-2009-1995 Vulnerability (CVE-2009-1995)
CVE-2009-1995
-
Medium
Oracle Database Server CVE-2009-1994 Vulnerability (CVE-2009-1994)
CVE-2009-1994
-
Medium
Oracle Application Server CVE-2009-1976 Vulnerability (CVE-2009-1976)
CVE-2009-1976
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13761)
CVE-2020-13761
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13762)
CVE-2020-13762
CWE-707
Medium
Oracle Database Server CVE-2009-1993 Vulnerability (CVE-2009-1993)
CVE-2009-1993
-
Medium
phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13827)
CVE-2020-13827
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13828)
CVE-2020-13828
CWE-707
Medium
Hesk Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13897)
CVE-2020-13897
CWE-707
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14175)
CVE-2020-14175
CWE-707
Medium
Atlassian Jira Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-14181)
CVE-2020-14181
CWE-200
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13669)
CVE-2020-13669
CWE-707
Medium
MySQL CVE-2020-14576 Vulnerability (CVE-2020-14576)
CVE-2020-14576
-
Medium
WebLogic CVE-2020-14557 Vulnerability (CVE-2020-14557)
CVE-2020-14557
-
Medium
MySQL CVE-2020-14559 Vulnerability (CVE-2020-14559)
CVE-2020-14559
-
Medium
MySQL CVE-2020-14567 Vulnerability (CVE-2020-14567)
CVE-2020-14567
-
Medium
MySQL CVE-2020-14568 Vulnerability (CVE-2020-14568)
CVE-2020-14568
-
Medium
WebLogic Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14572)
CVE-2020-14572
CWE-707
Medium
MySQL CVE-2020-14575 Vulnerability (CVE-2020-14575)
CVE-2020-14575
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1940)
CVE-2009-1940
CWE-707
Medium
MySQL CVE-2020-14553 Vulnerability (CVE-2020-14553)
CVE-2020-14553
-
Medium
MySQL CVE-2020-14586 Vulnerability (CVE-2020-14586)
CVE-2020-14586
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1939)
CVE-2009-1939
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1938)
CVE-2009-1938
CWE-707
Medium
MySQL CVE-2020-14591 Vulnerability (CVE-2020-14591)
CVE-2020-14591
-
Medium
Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1907)
CVE-2009-1907
CWE-707
Medium
MySQL CVE-2020-14597 Vulnerability (CVE-2020-14597)
CVE-2020-14597
-
Medium
Oracle JRE CVE-2020-14556 Vulnerability (CVE-2020-14556)
CVE-2020-14556
-
Medium
MySQL CVE-2020-14550 Vulnerability (CVE-2020-14550)
CVE-2020-14550
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14184)
CVE-2020-14184
CWE-707
Medium
Oracle Database Server CVE-2009-1966 Vulnerability (CVE-2009-1966)
CVE-2009-1966
-
Medium
Atlassian Jira Missing Authorization Vulnerability (CVE-2020-14185)
CVE-2020-14185
CWE-862
Medium
Atlassian Jira Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2020-14193)
CVE-2020-14193
CWE-138
Medium
Dolibarr Improper Privilege Management Vulnerability (CVE-2020-14201)
CVE-2020-14201
CWE-269
Medium
Oracle Database Server CVE-2009-1967 Vulnerability (CVE-2009-1967)
CVE-2009-1967
-
Medium
Jboss EAP Improper Authentication Vulnerability (CVE-2020-14299)
CVE-2020-14299
CWE-287
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14320)
CVE-2020-14320
CWE-707
Medium
Oracle Database Server CVE-2009-1965 Vulnerability (CVE-2009-1965)
CVE-2009-1965
-
Medium
MySQL CVE-2020-14547 Vulnerability (CVE-2020-14547)
CVE-2020-14547
-
Medium
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2020-14340)
CVE-2020-14340
CWE-400
Medium
Oracle Database Server CVE-2009-1964 Vulnerability (CVE-2009-1964)
CVE-2009-1964
-
Medium
Apache HTTP Server Numeric Errors Vulnerability (CVE-2009-1956)
CVE-2009-1956
-
Medium
Python Uncontrolled Resource Consumption Vulnerability (CVE-2020-14422)
CVE-2020-14422
CWE-400
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14475)
CVE-2020-14475
CWE-707
Medium
MySQL CVE-2020-14539 Vulnerability (CVE-2020-14539)
CVE-2020-14539
-
Medium
MySQL CVE-2020-14540 Vulnerability (CVE-2020-14540)
CVE-2020-14540
-
Medium
Oracle Application Server CVE-2009-1999 Vulnerability (CVE-2009-1999)
CVE-2009-1999
-
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13668)
CVE-2020-13668
CWE-707
Medium
MySQL CVE-2020-14619 Vulnerability (CVE-2020-14619)
CVE-2020-14619
-
Medium
Grafana Cleartext Storage of Sensitive Information Vulnerability (CVE-2020-12458)
CVE-2020-12458
CWE-312
Medium
PHP Other Vulnerability (CVE-2009-2626)
CVE-2009-2626
-
Medium
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-12052)
CVE-2020-12052
CWE-707
Medium
Mailman Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2020-12108)
CVE-2020-12108
CWE-138
Medium
Mailman Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-12137)
CVE-2020-12137
CWE-707
Medium
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-12245)
CVE-2020-12245
CWE-707
Medium
PHP-Fusion Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-12438)
CVE-2020-12438
CWE-707
Medium
Grafana Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-12459)
CVE-2020-12459
CWE-200
Medium
Apache HTTP Server Insufficient Verification of Data Authenticity Vulnerability (CVE-2020-11985)
CVE-2020-11985
CWE-345
Medium
Squid Improper Input Validation Vulnerability (CVE-2009-2622)
CVE-2009-2622
CWE-20
Medium
Play Framework Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-12480)
CVE-2020-12480
CWE-352
Medium
Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-2621)
CVE-2009-2621
CWE-119
Medium