Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.3.2229

Known Vulnerabilities

This page lists 14179 vulnerabilities in this category.

Critical: 1524 High: 3574 Medium: 8322 Low: 757 Information: 2
Vulnerability Name
CVE
CWE
Severity
Ember.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-0046)
CVE-2014-0046
CWE-707
Low
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5001)
CVE-2013-5001
CWE-707
Low
Oracle JRE Acceptance of Extraneous Untrusted Data With Trusted Data Vulnerability (CVE-2024-21094)
CVE-2024-21094
CWE-349
Low
MySQL CVE-2014-0437 Vulnerability (CVE-2014-0437)
CVE-2014-0437
-
Low
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-0059)
CVE-2014-0059
CWE-200
Low
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-14634)
CVE-2020-14634
CWE-200
Low
Oracle Application Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-0275)
CVE-2007-0275
CWE-707
Low
MySQL CVE-2012-0493 Vulnerability (CVE-2012-0493)
CVE-2012-0493
-
Low
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-39324)
CVE-2022-39324
CWE-707
Low
MySQL CVE-2017-3650 Vulnerability (CVE-2017-3650)
CVE-2017-3650
-
Low
Jboss EAP Credentials Management Errors Vulnerability (CVE-2012-0034)
CVE-2012-0034
-
Low
Oracle Database Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-0275)
CVE-2007-0275
CWE-707
Low
MySQL CVE-2012-0492 Vulnerability (CVE-2012-0492)
CVE-2012-0492
-
Low
PmWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-1481)
CVE-2010-1481
CWE-707
Low
MySQL CVE-2020-14633 Vulnerability (CVE-2020-14633)
CVE-2020-14633
-
Low
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4369)
CVE-2009-4369
CWE-707
Low
Drupal Resource Management Errors Vulnerability (CVE-2012-1588)
CVE-2012-1588
-
Low
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4371)
CVE-2009-4371
CWE-707
Low
Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4753)
CVE-2013-4753
CWE-707
Low
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4370)
CVE-2009-4370
CWE-707
Low
Oracle JRE CVE-2022-39399 Vulnerability (CVE-2022-39399)
CVE-2022-39399
-
Low
Oracle Database Server Incorrect Default Permissions Vulnerability (CVE-2024-21123)
CVE-2024-21123
CWE-276
Low
MySQL CVE-2022-39403 Vulnerability (CVE-2022-39403)
CVE-2022-39403
-
Low
MySQL CVE-2024-21101 Vulnerability (CVE-2024-21101)
CVE-2024-21101
-
Low
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5002)
CVE-2013-5002
CWE-707
Low
Jboss EAP Cryptographic Issues Vulnerability (CVE-2014-0058)
CVE-2014-0058
-
Low
OpenSSL Inadequate Encryption Strength Vulnerability (CVE-2020-1968)
CVE-2020-1968
CWE-326
Low
Oracle JRE CVE-2024-21131 Vulnerability (CVE-2024-21131)
CVE-2024-21131
-
Low
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-1029)
CVE-2011-1029
CWE-707
Low
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2025-67639)
CVE-2025-67639
CWE-352
Low
Oracle Database Server CVE-2011-2243 Vulnerability (CVE-2011-2243)
CVE-2011-2243
-
Low
Oracle Database Server CVE-2011-2242 Vulnerability (CVE-2011-2242)
CVE-2011-2242
-
Low
MySQL CVE-2012-0117 Vulnerability (CVE-2012-0117)
CVE-2012-0117
-
Low
Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4053)
CVE-2016-4053
CWE-119
Low
Drupal Other Vulnerability (CVE-2007-0124)
CVE-2007-0124
-
Low
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-1500)
CVE-2016-1500
CWE-200
Low
Moodle Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2012-1160)
CVE-2012-1160
CWE-732
Low
Oracle Database Server CVE-2011-2240 Vulnerability (CVE-2011-2240)
CVE-2011-2240
-
Low
Oracle JRE CVE-2020-14577 Vulnerability (CVE-2020-14577)
CVE-2020-14577
-
Low
Jetty Insufficient Session Expiration Vulnerability (CVE-2021-34428)
CVE-2021-34428
CWE-613
Low
Oracle JRE CVE-2024-20955 Vulnerability (CVE-2024-20955)
CVE-2024-20955
-
Low
OpenSSL Cryptographic Issues Vulnerability (CVE-2014-0076)
CVE-2014-0076
-
Low
Jetty Improper Input Validation Vulnerability (CVE-2022-2047)
CVE-2022-2047
CWE-20
Low
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-0287)
CVE-2012-0287
CWE-707
Low
PHP Other Vulnerability (CVE-2005-0596)
CVE-2005-0596
-
Low
Dot CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-3972)
CVE-2016-3972
CWE-22
Low
SharePoint CVE-2021-34519 Vulnerability (CVE-2021-34519)
CVE-2021-34519
-
Low
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0274)
CVE-2008-0274
CWE-707
Low
MySQL CVE-2012-0114 Vulnerability (CVE-2012-0114)
CVE-2012-0114
-
Low
Oracle JRE CVE-2020-14581 Vulnerability (CVE-2020-14581)
CVE-2020-14581
-
Low
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6145)
CVE-2012-6145
CWE-707
Low
Oracle JRE Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-21011)
CVE-2024-21011
CWE-770
Low
ZenCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-1413)
CVE-2012-1413
CWE-707
Low
Apache HTTP Server Other Vulnerability (CVE-2007-1742)
CVE-2007-1742
-
Low
Oracle Database Server CVE-2011-2322 Vulnerability (CVE-2011-2322)
CVE-2011-2322
-
Low
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6147)
CVE-2012-6147
CWE-707
Low
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-1253)
CVE-2012-1253
CWE-707
Low
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4995)
CVE-2013-4995
CWE-707
Low
Oracle JRE Incorrect Default Permissions Vulnerability (CVE-2024-21012)
CVE-2024-21012
CWE-276
Low
PostgreSQL CVE-2022-41862 Vulnerability (CVE-2022-41862)
CVE-2022-41862
-
Low
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-1732)
CVE-2007-1732
CWE-707
Low
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-5865)
CVE-2017-5865
CWE-200
Low
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6148)
CVE-2012-6148
CWE-707
Low
Moodle CVE-2024-1439 Vulnerability (CVE-2024-1439)
CVE-2024-1439
-
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-2204)
CVE-2011-2204
CWE-200
Low
Apache HTTP Server NULL Pointer Dereference Vulnerability (CVE-2009-3094)
CVE-2009-3094
CWE-476
Low
MySQL CVE-2012-0112 Vulnerability (CVE-2012-0112)
CVE-2012-0112
-
Low
Vulnerable package dependencies [low]
-
CWE-1104
Low
PHP Other Vulnerability (CVE-2006-7204)
CVE-2006-7204
-
Low
Oracle Database Server CVE-2024-20995 Vulnerability (CVE-2024-20995)
CVE-2024-20995
-
Low
MySQL Other Vulnerability (CVE-2005-0711)
CVE-2005-0711
-
Low
MySQL CVE-2012-0494 Vulnerability (CVE-2012-0494)
CVE-2012-0494
-
Low
Cherokee Cryptographic Issues Vulnerability (CVE-2011-2190)
CVE-2011-2190
-
Low
Envoy Proxy Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-11767)
CVE-2020-11767
CWE-200
Low
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-3319)
CVE-2017-3319
CWE-200
Low