Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
Roundcube Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') Vulnerability (CVE-2026-35538)
CVE-2026-35538
CWE-707
Low
Python Other Vulnerability (CVE-2006-1542)
CVE-2006-1542
-
Low
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2091)
CVE-2014-2091
CWE-707
Low
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-5256)
CVE-2011-5256
CWE-707
Low
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-3742)
CVE-2013-3742
CWE-707
Low
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2011-4415)
CVE-2011-4415
CWE-20
Low
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1844)
CVE-2009-1844
CWE-707
Low
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5250)
CVE-2008-5250
CWE-707
Low
Opencart Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-28838)
CVE-2020-28838
CWE-352
Low
Oracle Database Server CVE-2023-21949 Vulnerability (CVE-2023-21949)
CVE-2023-21949
-
Low
Oracle JRE CVE-2023-21938 Vulnerability (CVE-2023-21938)
CVE-2023-21938
-
Low
Oracle JRE CVE-2023-21937 Vulnerability (CVE-2023-21937)
CVE-2023-21937
-
Low
PHP Other Vulnerability (CVE-2006-1014)
CVE-2006-1014
-
Low
Mailman Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2006-4624)
CVE-2006-4624
CWE-94
Low
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6387)
CVE-2013-6387
CWE-707
Low
MySQL CVE-2023-21882 Vulnerability (CVE-2023-21882)
CVE-2023-21882
-
Low
PHP Other Vulnerability (CVE-2006-4625)
CVE-2006-4625
-
Low
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-14634)
CVE-2020-14634
CWE-200
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5519)
CVE-2008-5519
CWE-200
Low
MySQL CVE-2020-14633 Vulnerability (CVE-2020-14633)
CVE-2020-14633
-
Low
Oracle JRE CVE-2023-21843 Vulnerability (CVE-2023-21843)
CVE-2023-21843
-
Low
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-0287)
CVE-2012-0287
CWE-707
Low
Magento Improper Authorization Vulnerability (CVE-2020-24403)
CVE-2020-24403
CWE-285
Low
Drupal Other Vulnerability (CVE-2006-5477)
CVE-2006-5477
-
Low
Oracle Database Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-3240)
CVE-2017-3240
CWE-200
Low
PHP Numeric Errors Vulnerability (CVE-2006-4486)
CVE-2006-4486
-
Low
Magento Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-24406)
CVE-2020-24406
CWE-22
Low
phpMyAdmin Other Vulnerability (CVE-2006-2031)
CVE-2006-2031
-
Low
Oracle JRE CVE-2023-22025 Vulnerability (CVE-2023-22025)
CVE-2023-22025
-
Low
Oracle JRE CVE-2020-14779 Vulnerability (CVE-2020-14779)
CVE-2020-14779
-
Low
Oracle JRE CVE-2013-5854 Vulnerability (CVE-2013-5854)
CVE-2013-5854
-
Low
Oracle JRE CVE-2023-22006 Vulnerability (CVE-2023-22006)
CVE-2023-22006
-
Low
MySQL CVE-2020-14771 Vulnerability (CVE-2020-14771)
CVE-2020-14771
-
Low
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5026)
CVE-2008-5026
CWE-707
Low
MySQL CVE-2012-0112 Vulnerability (CVE-2012-0112)
CVE-2012-0112
-
Low
MySQL CVE-2013-5908 Vulnerability (CVE-2013-5908)
CVE-2013-5908
-
Low
MySQL CVE-2012-0114 Vulnerability (CVE-2012-0114)
CVE-2012-0114
-
Low
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2025-67639)
CVE-2025-67639
CWE-352
Low
MySQL CVE-2014-0393 Vulnerability (CVE-2014-0393)
CVE-2014-0393
-
Low
MySQL CVE-2014-0437 Vulnerability (CVE-2014-0437)
CVE-2014-0437
-
Low
Oracle JRE CVE-2023-21968 Vulnerability (CVE-2023-21968)
CVE-2023-21968
-
Low
MySQL CVE-2014-0431 Vulnerability (CVE-2014-0431)
CVE-2014-0431
-
Low
MySQL CVE-2014-0430 Vulnerability (CVE-2014-0430)
CVE-2014-0430
-
Low
MySQL CVE-2014-0427 Vulnerability (CVE-2014-0427)
CVE-2014-0427
-
Low
MySQL CVE-2014-0420 Vulnerability (CVE-2014-0420)
CVE-2014-0420
-
Low
MySQL CVE-2012-0117 Vulnerability (CVE-2012-0117)
CVE-2012-0117
-
Low
PHP Other Vulnerability (CVE-2006-4484)
CVE-2006-4484
-
Low
Play Framework Data Amplification Vulnerability (CVE-2020-28923)
CVE-2020-28923
-
Low
Magento Improper Authorization Vulnerability (CVE-2020-24404)
CVE-2020-24404
CWE-285
Low
Web Server Cache Poisoning (CMS Made Simple) v1.x
CVE-2016-2784
CWE-20
Low
Oracle JRE CVE-2020-14782 Vulnerability (CVE-2020-14782)
CVE-2020-14782
-
Low
Grafana Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2026-21725)
CVE-2026-21725
CWE-367
Low
Oracle JRE CVE-2020-14581 Vulnerability (CVE-2020-14581)
CVE-2020-14581
-
Low
Jboss EAP Cryptographic Issues Vulnerability (CVE-2014-0058)
CVE-2014-0058
-
Low
Oracle Database Server CVE-2013-3790 Vulnerability (CVE-2013-3790)
CVE-2013-3790
-
Low
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-7078)
CVE-2013-7078
CWE-707
Low
Ember.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-0046)
CVE-2014-0046
CWE-707
Low
Oracle JRE CVE-2020-14577 Vulnerability (CVE-2020-14577)
CVE-2020-14577
-
Low
PHP Other Vulnerability (CVE-2006-1608)
CVE-2006-1608
-
Low
MySQL CVE-2017-3653 Vulnerability (CVE-2017-3653)
CVE-2017-3653
-
Low
Grafana Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2026-21727)
CVE-2026-21727
CWE-732
Low
MySQL CVE-2012-0492 Vulnerability (CVE-2012-0492)
CVE-2012-0492
-
Low
Apache Tomcat CVE-2026-24733 Vulnerability (CVE-2026-24733)
CVE-2026-24733
-
Low
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0018)
CVE-2014-0018
CWE-264
Low
MySQL CVE-2017-3650 Vulnerability (CVE-2017-3650)
CVE-2017-3650
-
Low
GlassFish CVE-2017-3626 Vulnerability (CVE-2017-3626)
CVE-2017-3626
-
Low
TYPO3 Other Vulnerability (CVE-2006-5069)
CVE-2006-5069
-
Low
PHP Resource Management Errors Vulnerability (CVE-2006-1549)
CVE-2006-1549
-
Low
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0005)
CVE-2014-0005
CWE-264
Low
Oracle JRE Execution with Unnecessary Privileges Vulnerability (CVE-2026-22008)
CVE-2026-22008
CWE-250
Low
Oracle JRE Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-22018)
CVE-2026-22018
CWE-770
Low
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-0059)
CVE-2014-0059
CWE-200
Low
Oracle Database Server CVE-2009-1969 Vulnerability (CVE-2009-1969)
CVE-2009-1969
-
Low
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-3319)
CVE-2017-3319
CWE-200
Low
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4344)
CVE-2011-4344
CWE-707
Low