🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Invicti vs. Competitors
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
MSSP
Documentation
Vulnerability Database
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Known Vulnerabilities
This page lists
15072 vulnerabilities
in this category.
Critical: 1617
High: 4043
Medium: 8626
Low: 784
Information: 2
Vulnerability Name
CVE
CWE
Severity
MySQL CVE-2016-0599 Vulnerability (CVE-2016-0599)
CVE-2016-0599
-
Low
MySQL CVE-2016-0598 Vulnerability (CVE-2016-0598)
CVE-2016-0598
-
Low
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-0287)
CVE-2012-0287
CWE-707
Low
Oracle Database Server CVE-2009-1991 Vulnerability (CVE-2009-1991)
CVE-2009-1991
-
Low
PostgreSQL Insufficient Verification of Data Authenticity Vulnerability (CVE-2024-10977)
CVE-2024-10977
CWE-345
Low
Oracle Database Server CVE-2009-1972 Vulnerability (CVE-2009-1972)
CVE-2009-1972
-
Low
Oracle Database Server CVE-2009-1971 Vulnerability (CVE-2009-1971)
CVE-2009-1971
-
Low
Oracle Database Server CVE-2009-1969 Vulnerability (CVE-2009-1969)
CVE-2009-1969
-
Low
Oracle Database Server Incorrect Authorization Vulnerability (CVE-2025-30750)
CVE-2025-30750
CWE-863
Low
Oracle JRE Uncontrolled Resource Consumption Vulnerability (CVE-2025-30752)
CVE-2025-30752
CWE-400
Low
Grafana Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2024-10452)
CVE-2024-10452
CWE-639
Low
MySQL CVE-2012-0492 Vulnerability (CVE-2012-0492)
CVE-2012-0492
-
Low
MySQL CVE-2012-0493 Vulnerability (CVE-2012-0493)
CVE-2012-0493
-
Low
MySQL CVE-2012-0494 Vulnerability (CVE-2012-0494)
CVE-2012-0494
-
Low
GlassFish CVE-2012-0081 Vulnerability (CVE-2012-0081)
CVE-2012-0081
-
Low
MySQL CVE-2016-0643 Vulnerability (CVE-2016-0643)
CVE-2016-0643
-
Low
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1844)
CVE-2009-1844
CWE-707
Low
WebLogic CVE-2016-0688 Vulnerability (CVE-2016-0688)
CVE-2016-0688
-
Low
MySQL CVE-2017-3653 Vulnerability (CVE-2017-3653)
CVE-2017-3653
-
Low
Oracle JRE CVE-2024-21138 Vulnerability (CVE-2024-21138)
CVE-2024-21138
-
Low
Oracle JRE CVE-2024-21131 Vulnerability (CVE-2024-21131)
CVE-2024-21131
-
Low
Oracle Database Server Incorrect Default Permissions Vulnerability (CVE-2024-21123)
CVE-2024-21123
CWE-276
Low
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0701)
CVE-2016-0701
CWE-200
Low
PHP Interpretation Conflict Vulnerability (CVE-2025-1217)
CVE-2025-1217
CWE-436
Low
MySQL CVE-2024-21101 Vulnerability (CVE-2024-21101)
CVE-2024-21101
-
Low
Python Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4940)
CVE-2011-4940
CWE-707
Low
Oracle JRE Acceptance of Extraneous Untrusted Data With Trusted Data Vulnerability (CVE-2024-21094)
CVE-2024-21094
CWE-349
Low
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3891)
CVE-2009-3891
CWE-707
Low
Python Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4944)
CVE-2011-4944
CWE-264
Low
Oracle JRE CVE-2024-21085 Vulnerability (CVE-2024-21085)
CVE-2024-21085
-
Low
Oracle JRE CVE-2024-21068 Vulnerability (CVE-2024-21068)
CVE-2024-21068
-
Low
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-5865)
CVE-2017-5865
CWE-200
Low
Oracle HTTP Server CVE-2016-0671 Vulnerability (CVE-2016-0671)
CVE-2016-0671
-
Low
Oracle JRE CVE-2024-20955 Vulnerability (CVE-2024-20955)
CVE-2024-20955
-
Low
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3629)
CVE-2009-3629
CWE-707
Low
Oracle JRE Incorrect Default Permissions Vulnerability (CVE-2024-21012)
CVE-2024-21012
CWE-276
Low
Oracle JRE Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-21011)
CVE-2024-21011
CWE-770
Low
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-3554)
CVE-2009-3554
CWE-200
Low
Oracle Database Server CVE-2024-20995 Vulnerability (CVE-2024-20995)
CVE-2024-20995
-
Low
Oracle Database Server CVE-2009-3413 Vulnerability (CVE-2009-3413)
CVE-2009-3413
-
Low
Oracle Database Server CVE-2009-3412 Vulnerability (CVE-2009-3412)
CVE-2009-3412
-
Low
Oracle Application Server CVE-2009-3412 Vulnerability (CVE-2009-3412)
CVE-2009-3412
-
Low
Oracle Database Server CVE-2009-3410 Vulnerability (CVE-2009-3410)
CVE-2009-3410
-
Low
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-5256)
CVE-2011-5256
CWE-707
Low
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3156)
CVE-2009-3156
CWE-707
Low
Apache HTTP Server NULL Pointer Dereference Vulnerability (CVE-2009-3094)
CVE-2009-3094
CWE-476
Low
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2012-0021)
CVE-2012-0021
CWE-20
Low
Jboss EAP Credentials Management Errors Vulnerability (CVE-2012-0034)
CVE-2012-0034
-
Low
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0372)
CVE-2016-0372
CWE-200
Low
WebLogic Improper Certificate Validation Vulnerability (CVE-2020-9488)
CVE-2020-9488
CWE-295
Low
Oracle JRE CVE-2024-21144 Vulnerability (CVE-2024-21144)
CVE-2024-21144
-
Low
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3741)
CVE-2008-3741
CWE-707
Low
Coppermine Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-1613)
CVE-2012-1613
CWE-707
Low
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5250)
CVE-2008-5250
CWE-707
Low
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5026)
CVE-2008-5026
CWE-707
Low
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5956)
CVE-2015-5956
CWE-707
Low
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5953)
CVE-2015-5953
CWE-707
Low
Oracle JRE CVE-2012-1717 Vulnerability (CVE-2012-1717)
CVE-2012-1717
-
Low
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4775)
CVE-2008-4775
CWE-707
Low
MySQL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4456)
CVE-2008-4456
CWE-707
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-4308)
CVE-2008-4308
CWE-200
Low
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5622)
CVE-2015-5622
CWE-707
Low
Oracle Application Server CVE-2008-3987 Vulnerability (CVE-2008-3987)
CVE-2008-3987
-
Low
Oracle Application Server CVE-2008-3986 Vulnerability (CVE-2008-3986)
CVE-2008-3986
-
Low
MySQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-2102)
CVE-2012-2102
CWE-119
Low
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3457)
CVE-2008-3457
CWE-707
Low
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5519)
CVE-2008-5519
CWE-200
Low
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5304)
CVE-2015-5304
CWE-264
Low
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3326)
CVE-2008-3326
CWE-707
Low
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2360)
CVE-2012-2360
CWE-707
Low
WordPress Authentication Bypass Using an Alternate Path or Channel Vulnerability (CVE-2020-4050)
CVE-2020-4050
CWE-288
Low
WordPress Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) Vulnerability (CVE-2020-4049)
CVE-2020-4049
CWE-707
Low
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2361)
CVE-2012-2361
CWE-707
Low
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2362)
CVE-2012-2362
CWE-707
Low
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3197)
CVE-2008-3197
CWE-352
Low
«
1
...
194
195
196
...
201
»