Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.3.2229

Known Vulnerabilities

This page lists 14179 vulnerabilities in this category.

Critical: 1524 High: 3574 Medium: 8322 Low: 757 Information: 2
Vulnerability Name
CVE
CWE
Severity
Magento Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-24406)
CVE-2020-24406
CWE-22
Low
MySQL CVE-2017-3467 Vulnerability (CVE-2017-3467)
CVE-2017-3467
-
Low
Magento Improper Authorization Vulnerability (CVE-2020-24404)
CVE-2020-24404
CWE-285
Low
Oracle HTTP Server Other Vulnerability (CVE-2004-1877)
CVE-2004-1877
-
Low
Magento Improper Authorization Vulnerability (CVE-2020-24403)
CVE-2020-24403
CWE-285
Low
Phusion Passenger Other Vulnerability (CVE-2014-1832)
CVE-2014-1832
-
Low
Oracle JRE Improper Access Control Vulnerability (CVE-2025-61748)
CVE-2025-61748
CWE-284
Low
PostgreSQL Insufficient Verification of Data Authenticity Vulnerability (CVE-2024-10977)
CVE-2024-10977
CWE-345
Low
Oracle Database Server Improper Access Control Vulnerability (CVE-2025-61749)
CVE-2025-61749
CWE-284
Low
Phusion Passenger Other Vulnerability (CVE-2014-1831)
CVE-2014-1831
-
Low
MySQL CVE-2017-3468 Vulnerability (CVE-2017-3468)
CVE-2017-3468
-
Low
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-5256)
CVE-2011-5256
CWE-707
Low
MySQL CVE-2021-2308 Vulnerability (CVE-2021-2308)
CVE-2021-2308
-
Low
MySQL CVE-2017-3653 Vulnerability (CVE-2017-3653)
CVE-2017-3653
-
Low
Caddy Web Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-19148)
CVE-2018-19148
CWE-200
Low
Vanilla Forums Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-9889)
CVE-2019-9889
CWE-22
Low
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5622)
CVE-2015-5622
CWE-707
Low
Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-1807)
CVE-2015-1807
CWE-22
Low
Oracle Database Server CVE-2019-2940 Vulnerability (CVE-2019-2940)
CVE-2019-2940
-
Low
Oracle JRE CVE-2019-2945 Vulnerability (CVE-2019-2945)
CVE-2019-2945
-
Low
PHP Other Vulnerability (CVE-2006-1608)
CVE-2006-1608
-
Low
Mailman Other Vulnerability (CVE-2006-1712)
CVE-2006-1712
-
Low
Oracle Database Server CVE-2019-2954 Vulnerability (CVE-2019-2954)
CVE-2019-2954
-
Low
OpenSSL Improper Input Validation Vulnerability (CVE-2015-1787)
CVE-2015-1787
CWE-20
Low
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1636)
CVE-2015-1636
CWE-707
Low
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1633)
CVE-2015-1633
CWE-707
Low
Oracle Database Server CVE-2019-2955 Vulnerability (CVE-2019-2955)
CVE-2019-2955
-
Low
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3383)
CVE-2012-3383
CWE-264
Low
Oracle JRE CVE-2019-2933 Vulnerability (CVE-2019-2933)
CVE-2019-2933
-
Low
Oracle JRE CVE-2019-2962 Vulnerability (CVE-2019-2962)
CVE-2019-2962
-
Low
WordPress Other Vulnerability (CVE-2007-4153)
CVE-2007-4153
-
Low
Oracle JRE CVE-2019-2964 Vulnerability (CVE-2019-2964)
CVE-2019-2964
-
Low
Oracle JRE CVE-2018-2579 Vulnerability (CVE-2018-2579)
CVE-2018-2579
-
Low
Oracle Database Server CVE-2018-2575 Vulnerability (CVE-2018-2575)
CVE-2018-2575
-
Low
Oracle JRE CVE-2019-2973 Vulnerability (CVE-2019-2973)
CVE-2019-2973
-
Low
Moodle Incorrect Authorization Vulnerability (CVE-2022-0333)
CVE-2022-0333
CWE-863
Low
PHP Other Vulnerability (CVE-2024-9026)
CVE-2024-9026
-
Low
OpenSSL Missing Encryption of Sensitive Data Vulnerability (CVE-2019-1563)
CVE-2019-1563
CWE-311
Low
Apache HTTP Server Session Fixation Vulnerability (CVE-2001-1534)
CVE-2001-1534
CWE-384
Low
Jenkins Improper Input Validation Vulnerability (CVE-2017-1000401)
CVE-2017-1000401
CWE-20
Low
Jenkins Improper Input Validation Vulnerability (CVE-2015-1808)
CVE-2015-1808
CWE-20
Low
PHP Other Vulnerability (CVE-2002-0121)
CVE-2002-0121
-
Low
PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5814)
CVE-2008-5814
CWE-707
Low
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-2149)
CVE-2013-2149
CWE-707
Low
Moodle Other Vulnerability (CVE-2005-3649)
CVE-2005-3649
-
Low
WebLogic Improper Certificate Validation Vulnerability (CVE-2020-9488)
CVE-2020-9488
CWE-295
Low
Python Other Vulnerability (CVE-2006-1542)
CVE-2006-1542
-
Low
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2289)
CVE-2015-2289
CWE-707
Low
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2273)
CVE-2015-2273
CWE-707
Low
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3427)
CVE-2012-3427
CWE-264
Low
Mailman Other Vulnerability (CVE-2002-0389)
CVE-2002-0389
-
Low
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5250)
CVE-2008-5250
CWE-707
Low
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2269)
CVE-2015-2269
CWE-707
Low
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-2150)
CVE-2013-2150
CWE-707
Low
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3396)
CVE-2012-3396
CWE-707
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5519)
CVE-2008-5519
CWE-200
Low
WebLogic Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2020-8908)
CVE-2020-8908
CWE-732
Low
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2149)
CVE-2015-2149
CWE-707
Low
Oracle JRE CVE-2019-2894 Vulnerability (CVE-2019-2894)
CVE-2019-2894
-
Low
TYPO3 Improper Authentication Vulnerability (CVE-2015-2047)
CVE-2015-2047
CWE-287
Low
Vanilla Forums Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4954)
CVE-2012-4954
CWE-264
Low
MySQL CVE-2019-2910 Vulnerability (CVE-2019-2910)
CVE-2019-2910
-
Low
MySQL CVE-2019-2911 Vulnerability (CVE-2019-2911)
CVE-2019-2911
-
Low
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3393)
CVE-2012-3393
CWE-707
Low
PHP Resource Management Errors Vulnerability (CVE-2006-1549)
CVE-2006-1549
-
Low
OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2021-23839)
CVE-2021-23839
CWE-327
Low
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3390)
CVE-2012-3390
CWE-264
Low
Oracle JRE CVE-2019-2978 Vulnerability (CVE-2019-2978)
CVE-2019-2978
-
Low
Oracle JRE CVE-2019-2981 Vulnerability (CVE-2019-2981)
CVE-2019-2981
-
Low
Internet Information Services Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2002-0422)
CVE-2002-0422
CWE-200
Low
PHP Other Vulnerability (CVE-2005-3319)
CVE-2005-3319
-
Low
MySQL CVE-2012-3156 Vulnerability (CVE-2012-3156)
CVE-2012-3156
-
Low
PHP Interpretation Conflict Vulnerability (CVE-2025-1217)
CVE-2025-1217
CWE-436
Low
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-39061)
CVE-2023-39061
CWE-352
Low
SharePoint CVE-2021-40484 Vulnerability (CVE-2021-40484)
CVE-2021-40484
-
Low