Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-7238)
CVE-2020-7238
CWE-444
High
qdPM Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-7246)
CVE-2020-7246
CWE-22
High
Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-21605)
CVE-2021-21605
CWE-22
High
PHP Out-of-bounds Write Vulnerability (CVE-2021-21703)
CVE-2021-21703
CWE-787
High
WeBid Other Vulnerability (CVE-2014-5114)
CVE-2014-5114
-
High
PHP NULL Pointer Dereference Vulnerability (CVE-2020-7062)
CVE-2020-7062
CWE-476
High
Cherokee Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2019-20799)
CVE-2019-20799
CWE-119
High
MySQL CVE-2015-0411 Vulnerability (CVE-2015-0411)
CVE-2015-0411
-
High
MySQL CVE-2018-3155 Vulnerability (CVE-2018-3155)
CVE-2018-3155
-
High
Apache HTTP Server CVE-2019-0190 Vulnerability (CVE-2019-0190)
CVE-2019-0190
-
High
SharePoint Improper Certificate Validation Vulnerability (CVE-2019-1006)
CVE-2019-1006
CWE-295
High
Ruby Resource Management Errors Vulnerability (CVE-2014-6438)
CVE-2014-6438
-
High
Open Resty Off-by-one Error Vulnerability (CVE-2021-23017)
CVE-2021-23017
CWE-193
High
markdown-it Inefficient Regular Expression Complexity Vulnerability (CVE-2015-10005)
CVE-2015-10005
CWE-1333
High
Nginx Off-by-one Error Vulnerability (CVE-2021-23017)
CVE-2021-23017
CWE-193
High
Roundcube Unspesificed Vulnerability (CVE-2018-9846)
CVE-2018-9846
-
High
silverstripeCMS CVE-2020-6164 Vulnerability (CVE-2020-6164)
CVE-2020-6164
-
High
ReviveAdserver Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2021-22948)
CVE-2021-22948
CWE-327
High
Atlassian Jira Uncontrolled Search Path Element Vulnerability (CVE-2019-20400)
CVE-2019-20400
CWE-427
High
WordPress Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2014-6412)
CVE-2014-6412
CWE-640
High
Jboss EAP Improper Handling of Exceptional Conditions Vulnerability (CVE-2018-8039)
CVE-2018-8039
CWE-755
High
IBM RTC Improper Restriction of XML External Entity Reference Vulnerability (CVE-2021-20502)
CVE-2021-20502
CWE-611
High
Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2021-21604)
CVE-2021-21604
CWE-502
High
Atlassian Jira CVE-2019-20898 Vulnerability (CVE-2019-20898)
CVE-2019-20898
-
High
Apache Tomcat Incorrect Default Permissions Vulnerability (CVE-2020-8022)
CVE-2020-8022
CWE-276
High
WebLogic CVE-2018-3246 Vulnerability (CVE-2018-3246)
CVE-2018-3246
-
High
Java Unspesificed Vulnerability (CVE-2018-3169)
CVE-2018-3169
-
High
PHP NULL Pointer Dereference Vulnerability (CVE-2021-21702)
CVE-2021-21702
CWE-476
High
Ruby Improper Input Validation Vulnerability (CVE-2018-8779)
CVE-2018-8779
CWE-20
High
Joomla Improper Input Validation Vulnerability (CVE-2021-23131)
CVE-2021-23131
CWE-20
High
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8419)
CVE-2020-8419
CWE-352
High
ASP.NET MVC Improper Authentication Vulnerability (CVE-2018-8171)
CVE-2018-8171
CWE-287
High
SharePoint CVE-2018-8161 Vulnerability (CVE-2018-8161)
CVE-2018-8161
-
High
Joomla Improper Authentication Vulnerability (CVE-2014-6632)
CVE-2014-6632
CWE-287
High
Collabtive Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2015-0258)
CVE-2015-0258
CWE-434
High
Sqlite Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-19925)
CVE-2019-19925
CWE-434
High
Plone CMS Weak Password Requirements Vulnerability (CVE-2020-7940)
CVE-2020-7940
CWE-521
High
TYPO3 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-19848)
CVE-2019-19848
CWE-22
High
Jenkins Missing Authorization Vulnerability (CVE-2021-21688)
CVE-2021-21688
CWE-862
High
Plone CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-7939)
CVE-2020-7939
CWE-138
High
phpMyFAQ Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-6045)
CVE-2014-6045
CWE-138
High
PostgreSQL Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2015-0243)
CVE-2015-0243
CWE-120
High
Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-8045)
CVE-2018-8045
CWE-138
High
PostgreSQL Out-of-bounds Write Vulnerability (CVE-2015-0242)
CVE-2015-0242
CWE-787
High
PostgreSQL Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2015-0241)
CVE-2015-0241
CWE-120
High
Atlassian Jira CVE-2019-20413 Vulnerability (CVE-2019-20413)
CVE-2019-20413
-
High
Moodle Other Vulnerability (CVE-2019-10154)
CVE-2019-10154
-
High
Jenkins Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2021-21686)
CVE-2021-21686
CWE-59
High
phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-6046)
CVE-2014-6046
CWE-352
High
Sqlite NULL Pointer Dereference Vulnerability (CVE-2019-19926)
CVE-2019-19926
CWE-476
High
Atlassian Jira Uncontrolled Search Path Element Vulnerability (CVE-2019-20419)
CVE-2019-20419
CWE-427
High
Sqlite NULL Pointer Dereference Vulnerability (CVE-2018-8740)
CVE-2018-8740
CWE-476
High
Ruby Use of Externally-Controlled Format String Vulnerability (CVE-2018-8778)
CVE-2018-8778
CWE-134
High
WordPress CVE-2014-5203 Vulnerability (CVE-2014-5203)
CVE-2014-5203
-
High
Ruby Uncontrolled Resource Consumption Vulnerability (CVE-2018-8777)
CVE-2018-8777
CWE-400
High
math.js Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2020-7743)
CVE-2020-7743
CWE-915
High
Chart.js Improper Input Validation Vulnerability (CVE-2020-7746)
CVE-2020-7746
CWE-20
High
MongoDb Improper Input Validation Vulnerability (CVE-2020-7925)
CVE-2020-7925
CWE-20
High
Jenkins Missing Authorization Vulnerability (CVE-2021-21695)
CVE-2021-21695
CWE-862
High
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-0292)
CVE-2015-0292
CWE-119
High
Artifactory CVE-2020-7931 Vulnerability (CVE-2020-7931)
CVE-2020-7931
-
High
Contao Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-19745)
CVE-2019-19745
CWE-434
High
Sqlite NULL Pointer Dereference Vulnerability (CVE-2019-19923)
CVE-2019-19923
CWE-476
High
SharePoint CVE-2018-8628 Vulnerability (CVE-2018-8628)
CVE-2018-8628
-
High
Plone CMS Improper Privilege Management Vulnerability (CVE-2020-7938)
CVE-2020-7938
CWE-269
High
PHP Other Vulnerability (CVE-2015-0273)
CVE-2015-0273
-
High
WebLogic CVE-2018-3213 Vulnerability (CVE-2018-3213)
CVE-2018-3213
-
High
Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-21015)
CVE-2021-21015
CWE-138
High
PHP Other Vulnerability (CVE-2015-0231)
CVE-2015-0231
-
High
PrestaShop Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2018-7491)
CVE-2018-7491
CWE-1021
High
Sqlite CVE-2019-19603 Vulnerability (CVE-2019-19603)
CVE-2019-19603
-
High
Joomla CVE-2021-23132 Vulnerability (CVE-2021-23132)
CVE-2021-23132
-
High
MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-27946)
CVE-2021-27946
CWE-138
High
Apache Tomcat Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2019-0232)
CVE-2019-0232
CWE-138
High
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2019-19343)
CVE-2019-19343
CWE-400
High
«
1
...
22
23
24
...
181
»
