Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-1593)
CVE-2010-1593
CWE-707
Medium
ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-5433)
CVE-2019-5433
CWE-601
Medium
Apache HTTP Server Other Vulnerability (CVE-2010-1452)
CVE-2010-1452
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6261)
CVE-2019-6261
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6262)
CVE-2019-6262
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6264)
CVE-2019-6264
CWE-707
Medium
phpMyAdmin CVE-2019-6799 Vulnerability (CVE-2019-6799)
CVE-2019-6799
-
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1429)
CVE-2010-1429
CWE-264
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1428)
CVE-2010-1428
CWE-264
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6341)
CVE-2019-6341
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6588)
CVE-2019-6588
CWE-707
Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1190)
CVE-2010-1190
CWE-264
Medium
MediaWiki Improper Input Validation Vulnerability (CVE-2010-1189)
CVE-2010-1189
CWE-20
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7853)
CVE-2019-7853
CWE-707
Medium
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7857)
CVE-2019-7857
CWE-352
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7926)
CVE-2019-7926
CWE-707
Medium
Magento Improper Input Validation Vulnerability (CVE-2019-7899)
CVE-2019-7899
CWE-20
Medium
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-7888)
CVE-2019-7888
CWE-200
Medium
Magento Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-7889)
CVE-2019-7889
CWE-138
Medium
Oracle Database Server CVE-2010-0902 Vulnerability (CVE-2010-0902)
CVE-2010-0902
-
Medium
Oracle Database Server CVE-2010-0892 Vulnerability (CVE-2010-0892)
CVE-2010-0892
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7897)
CVE-2019-7897
CWE-707
Medium
Magento Improper Input Validation Vulnerability (CVE-2019-7898)
CVE-2019-7898
CWE-20
Medium
Magento CVE-2019-7904 Vulnerability (CVE-2019-7904)
CVE-2019-7904
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7882)
CVE-2019-7882
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7908)
CVE-2019-7908
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7909)
CVE-2019-7909
CWE-707
Medium
Oracle Database Server CVE-2010-0867 Vulnerability (CVE-2010-0867)
CVE-2010-0867
-
Medium
Oracle Database Server CVE-2010-0866 Vulnerability (CVE-2010-0866)
CVE-2010-0866
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7921)
CVE-2019-7921
CWE-707
Medium
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7925)
CVE-2019-7925
CWE-639
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7887)
CVE-2019-7887
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7881)
CVE-2019-7881
CWE-707
Medium
PHP Cryptographic Issues Vulnerability (CVE-2010-1128)
CVE-2010-1128
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7867)
CVE-2019-7867
CWE-707
Medium
Zope Web Application Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-1104)
CVE-2010-1104
CWE-707
Medium
e107 Other Vulnerability (CVE-2010-0996)
CVE-2010-0996
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7862)
CVE-2019-7862
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7863)
CVE-2019-7863
CWE-707
Medium
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7864)
CVE-2019-7864
CWE-639
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7866)
CVE-2019-7866
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7868)
CVE-2019-7868
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7880)
CVE-2019-7880
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7869)
CVE-2019-7869
CWE-707
Medium
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7872)
CVE-2019-7872
CWE-639
Medium
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7873)
CVE-2019-7873
CWE-352
Medium
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7874)
CVE-2019-7874
CWE-352
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7875)
CVE-2019-7875
CWE-707
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2010-0928)
CVE-2010-0928
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7877)
CVE-2019-7877
CWE-707
Medium
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-8235)
CVE-2019-8235
CWE-639
Medium
Zenphoto Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-4564)
CVE-2009-4564
CWE-138
Medium
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11584)
CVE-2020-11584
CWE-707
Medium
Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-10687)
CVE-2020-10687
CWE-444
Medium
Perl Other Vulnerability (CVE-2009-3626)
CVE-2009-3626
-
Medium
ownCloud Improper Authentication Vulnerability (CVE-2020-10254)
CVE-2020-10254
CWE-287
Medium
WordPress Cryptographic Issues Vulnerability (CVE-2009-3622)
CVE-2009-3622
-
Medium
Opencart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-10596)
CVE-2020-10596
CWE-707
Medium
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-3560)
CVE-2009-3560
CWE-119
Medium
Undertow Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-10687)
CVE-2020-10687
CWE-444
Medium
Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-10688)
CVE-2020-10688
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-10242)
CVE-2020-10242
CWE-707
Medium
Jboss EAP Improper Input Validation Vulnerability (CVE-2020-10693)
CVE-2020-10693
CWE-20
Medium
WebLogic Improper Input Validation Vulnerability (CVE-2020-10693)
CVE-2020-10693
CWE-20
Medium
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-3558)
CVE-2009-3558
CWE-264
Medium
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-3557)
CVE-2009-3557
CWE-264
Medium
Undertow Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-10719)
CVE-2020-10719
CWE-444
Medium
Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-10719)
CVE-2020-10719
CWE-444
Medium
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-3628)
CVE-2009-3628
CWE-200
Medium
Joomla Improper Input Validation Vulnerability (CVE-2020-10240)
CVE-2020-10240
CWE-20
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2009-3555)
CVE-2009-3555
-
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-0973)
CVE-2020-0973
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3696)
CVE-2009-3696
CWE-707
Medium
Django Other Vulnerability (CVE-2009-3695)
CVE-2009-3695
-
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-0933)
CVE-2020-0933
CWE-707
Medium