Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
PHP Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2011-0441)
CVE-2011-0441
CWE-59
Medium
PHP Improper Input Validation Vulnerability (CVE-2011-1470)
CVE-2011-1470
CWE-20
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4780)
CVE-2011-4780
CWE-707
Medium
Ext JS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-8046)
CVE-2018-8046
CWE-707
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2011-1475)
CVE-2011-1475
CWE-20
Medium
PHP Out-of-bounds Read Vulnerability (CVE-2019-11050)
CVE-2019-11050
CWE-125
Medium
RubyGems Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1000078)
CVE-2018-1000078
CWE-707
Medium
Jboss EAP CVE-2011-1483 Vulnerability (CVE-2011-1483)
CVE-2011-1483
-
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4782)
CVE-2011-4782
CWE-707
Medium
Apache Tomcat Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2018-8037)
CVE-2018-8037
CWE-362
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1484)
CVE-2011-1484
CWE-264
Medium
Perl Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1487)
CVE-2011-1487
CWE-264
Medium
PHP Numeric Errors Vulnerability (CVE-2011-1471)
CVE-2011-1471
-
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-8252)
CVE-2018-8252
CWE-707
Medium
Vanilla Forums Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-0526)
CVE-2011-0526
CWE-707
Medium
Ruby on Rails Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-0447)
CVE-2011-0447
CWE-352
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-1340)
CVE-2011-1340
CWE-707
Medium
IBMHttpServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-1360)
CVE-2011-1360
CWE-707
Medium
Contao Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-0508)
CVE-2011-0508
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2011-1398)
CVE-2011-1398
CWE-20
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2011-4576)
CVE-2011-4576
-
Medium
Apache Tomcat Other Vulnerability (CVE-2011-1419)
CVE-2011-1419
-
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2011-1464)
CVE-2011-1464
CWE-119
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-0457)
CVE-2011-0457
CWE-707
Medium
PHP Numeric Errors Vulnerability (CVE-2011-1466)
CVE-2011-1466
-
Medium
PHP CVE-2011-1467 Vulnerability (CVE-2011-1467)
CVE-2011-1467
-
Medium
PHP Resource Management Errors Vulnerability (CVE-2011-1468)
CVE-2011-1468
-
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4634)
CVE-2011-4634
CWE-707
Medium
PHP CVE-2011-1469 Vulnerability (CVE-2011-1469)
CVE-2011-1469
-
Medium
SharePoint Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-8580)
CVE-2018-8580
CWE-200
Medium
Jboss EAP Improper Input Validation Vulnerability (CVE-2011-4575)
CVE-2011-4575
CWE-20
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-8572)
CVE-2018-8572
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-8568)
CVE-2018-8568
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-8254)
CVE-2018-8254
CWE-707
Medium
ZenCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4567)
CVE-2011-4567
CWE-707
Medium
PHP Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-11045)
CVE-2019-11045
CWE-138
Medium
PHP Numeric Errors Vulnerability (CVE-2011-4566)
CVE-2011-4566
-
Medium
RubyGems Improper Input Validation Vulnerability (CVE-2018-1000077)
CVE-2018-1000077
CWE-20
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10403)
CVE-2019-10403
CWE-707
Medium
Ruby Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2011-1004)
CVE-2011-1004
CWE-59
Medium
Roundcube Improper Input Validation Vulnerability (CVE-2011-1492)
CVE-2011-1492
CWE-20
Medium
Moodle URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-10133)
CVE-2019-10133
CWE-601
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9838)
CVE-2017-9838
CWE-707
Medium
Oracle Database Server CVE-2011-0811 Vulnerability (CVE-2011-0811)
CVE-2011-0811
-
Medium
Oracle Database Server CVE-2011-0816 Vulnerability (CVE-2011-0816)
CVE-2011-0816
-
Medium
Oracle Database Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10219)
CVE-2019-10219
CWE-707
Medium
WebLogic Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10219)
CVE-2019-10219
CWE-707
Medium
Oracle Database Server CVE-2011-0822 Vulnerability (CVE-2011-0822)
CVE-2011-0822
-
Medium
PHP Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2011-0754)
CVE-2011-0754
CWE-59
Medium
Oracle Database Server CVE-2011-0830 Vulnerability (CVE-2011-0830)
CVE-2011-0830
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4588)
CVE-2011-4588
CWE-264
Medium
WordPress Ultimate Member Plugin CVE-2019-10271 Vulnerability (CVE-2019-10271)
CVE-2019-10271
-
Medium
Moodle Credentials Management Errors Vulnerability (CVE-2011-4587)
CVE-2011-4587
-
Medium
Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10219)
CVE-2019-10219
CWE-707
Medium
PostgreSQL Improper Access Control Vulnerability (CVE-2019-10130)
CVE-2019-10130
CWE-284
Medium
PostgreSQL Out-of-bounds Read Vulnerability (CVE-2019-10129)
CVE-2019-10129
CWE-125
Medium
Oracle Database Server CVE-2011-0831 Vulnerability (CVE-2011-0831)
CVE-2011-0831
-
Medium
Oracle Database Server CVE-2011-0832 Vulnerability (CVE-2011-0832)
CVE-2011-0832
-
Medium
Apache HTTP Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-10098)
CVE-2019-10098
CWE-601
Medium
Moodle Other Vulnerability (CVE-2011-4586)
CVE-2011-4586
-
Medium
Oracle Database Server CVE-2011-0835 Vulnerability (CVE-2011-0835)
CVE-2011-0835
-
Medium
Artifactory Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10321)
CVE-2019-10321
CWE-352
Medium
Oracle Database Server CVE-2011-0838 Vulnerability (CVE-2011-0838)
CVE-2011-0838
-
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10092)
CVE-2019-10092
CWE-707
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9836)
CVE-2017-9836
CWE-707
Medium
Oracle Database Server CVE-2011-0806 Vulnerability (CVE-2011-0806)
CVE-2011-0806
-
Medium
Oracle Database Server CVE-2011-0852 Vulnerability (CVE-2011-0852)
CVE-2011-0852
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4591)
CVE-2011-4591
CWE-707
Medium
Atlassian Confluence Incorrect Default Permissions Vulnerability (CVE-2017-9505)
CVE-2017-9505
CWE-276
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9516)
CVE-2017-9516
CWE-707
Medium
Piwigo URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-9464)
CVE-2017-9464
CWE-601
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4593)
CVE-2011-4593
CWE-200
Medium
ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9783)
CVE-2017-9783
CWE-707
Medium
ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9786)
CVE-2017-9786
CWE-707
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4592)
CVE-2011-4592
CWE-264
Medium