Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2949)
CVE-2015-2949
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2015-4598)
CVE-2015-4598
CWE-20
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2948)
CVE-2015-2948
CWE-707
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5335)
CVE-2015-5335
CWE-200
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6588)
CVE-2015-6588
CWE-707
Medium
Coppermine Multiple Cross-site Scripting (XSS) Vulnerabilities (CVE-2015-6528)
CVE-2015-6528
-
Medium
Coppermine Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3923)
CVE-2015-3923
CWE-200
Medium
concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3989)
CVE-2015-3989
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5337)
CVE-2015-5337
CWE-707
Medium
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5730)
CVE-2015-5730
CWE-200
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5731)
CVE-2015-5731
CWE-352
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5732)
CVE-2015-5732
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5733)
CVE-2015-5733
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3935)
CVE-2015-3935
CWE-707
Medium
Oracle HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3195)
CVE-2015-3195
CWE-200
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5734)
CVE-2015-5734
CWE-707
Medium
Django Other Vulnerability (CVE-2015-3982)
CVE-2015-3982
-
Medium
ownCloud Other Vulnerability (CVE-2015-5954)
CVE-2015-5954
-
Medium
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6521)
CVE-2015-6521
CWE-707
Medium
Apache HTTP Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-3185)
CVE-2015-3185
CWE-264
Medium
Apache HTTP Server DEPRECATED: Code Vulnerability (CVE-2015-3183)
CVE-2015-3183
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5336)
CVE-2015-5336
CWE-707
Medium
RubyGems Improper Input Validation Vulnerability (CVE-2015-4020)
CVE-2015-4020
CWE-20
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-3181)
CVE-2015-3181
CWE-264
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3180)
CVE-2015-3180
CWE-200
Medium
PHP Numeric Errors Vulnerability (CVE-2015-4021)
CVE-2015-4021
-
Medium
Django Resource Management Errors Vulnerability (CVE-2015-5963)
CVE-2015-5963
-
Medium
Django Resource Management Errors Vulnerability (CVE-2015-5964)
CVE-2015-5964
-
Medium
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-7711)
CVE-2015-7711
CWE-707
Medium
Magento Improper Authentication Vulnerability (CVE-2015-3457)
CVE-2015-3457
CWE-287
Medium
ATutor Other Vulnerability (CVE-2015-7712)
CVE-2015-7712
-
Medium
Jboss EAP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5188)
CVE-2015-5188
CWE-352
Medium
Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2015-1399)
CVE-2015-1399
CWE-94
Medium
MySQL CVE-2015-4862 Vulnerability (CVE-2015-4862)
CVE-2015-4862
-
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-8603)
CVE-2015-8603
CWE-707
Medium
Jboss EAP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-5220)
CVE-2015-5220
CWE-119
Medium
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-8563)
CVE-2015-8563
CWE-352
Medium
Magento Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-1398)
CVE-2015-1398
CWE-22
Medium
Magento Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-1397)
CVE-2015-1397
CWE-138
Medium
phpBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1431)
CVE-2015-1431
CWE-707
Medium
MySQL CVE-2015-0432 Vulnerability (CVE-2015-0432)
CVE-2015-0432
-
Medium
MySQL CVE-2015-4866 Vulnerability (CVE-2015-4866)
CVE-2015-4866
-
Medium
MySQL CVE-2015-0433 Vulnerability (CVE-2015-0433)
CVE-2015-0433
-
Medium
PHP Other Vulnerability (CVE-2015-1352)
CVE-2015-1352
-
Medium
MySQL CVE-2015-0438 Vulnerability (CVE-2015-0438)
CVE-2015-0438
-
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1347)
CVE-2015-1347
CWE-707
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5264)
CVE-2015-5264
CWE-264
Medium
phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-1432)
CVE-2015-1432
CWE-352
Medium
MySQL CVE-2015-4879 Vulnerability (CVE-2015-4879)
CVE-2015-4879
-
Medium
MySQL CVE-2015-0382 Vulnerability (CVE-2015-0382)
CVE-2015-0382
-
Medium
MongoDb Improper Input Validation Vulnerability (CVE-2015-1609)
CVE-2015-1609
CWE-20
Medium
MySQL CVE-2015-4858 Vulnerability (CVE-2015-4858)
CVE-2015-4858
-
Medium
MySQL CVE-2015-0381 Vulnerability (CVE-2015-0381)
CVE-2015-0381
-
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-1517)
CVE-2015-1517
CWE-138
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-8622)
CVE-2015-8622
CWE-707
Medium
fancybox Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1494)
CVE-2015-1494
CWE-707
Medium
silverstripeCMS Other Vulnerability (CVE-2015-5062)
CVE-2015-5062
-
Medium
Oracle Database Server CVE-2015-4921 Vulnerability (CVE-2015-4921)
CVE-2015-4921
-
Medium
MySQL CVE-2015-0391 Vulnerability (CVE-2015-0391)
CVE-2015-0391
-
Medium
Moodle Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-1493)
CVE-2015-1493
CWE-22
Medium
MySQL CVE-2015-0405 Vulnerability (CVE-2015-0405)
CVE-2015-0405
-
Medium
MySQL CVE-2015-0409 Vulnerability (CVE-2015-0409)
CVE-2015-0409
-
Medium
MySQL CVE-2015-0423 Vulnerability (CVE-2015-0423)
CVE-2015-0423
-
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-8606)
CVE-2015-8606
CWE-707
Medium
Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-1433)
CVE-2015-1433
-
Medium
MySQL CVE-2015-4870 Vulnerability (CVE-2015-4870)
CVE-2015-4870
-
Medium
Python Integer Overflow or Wraparound Vulnerability (CVE-2015-1283)
CVE-2015-1283
CWE-190
Medium
MediaWiki Improper Access Control Vulnerability (CVE-2015-8627)
CVE-2015-8627
CWE-284
Medium
PHP-Fusion Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-8375)
CVE-2015-8375
CWE-707
Medium
Oracle Database Server CVE-2015-0455 Vulnerability (CVE-2015-0455)
CVE-2015-0455
-
Medium
Oracle Database Server CVE-2015-4900 Vulnerability (CVE-2015-4900)
CVE-2015-4900
-
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-8398)
CVE-2015-8398
CWE-707
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8005)
CVE-2015-8005
CWE-200
Medium
MySQL CVE-2015-4904 Vulnerability (CVE-2015-4904)
CVE-2015-4904
-
Medium
MySQL CVE-2015-0501 Vulnerability (CVE-2015-0501)
CVE-2015-0501
-
Medium
«
1
...
168
169
170
...
181
»
