Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Oracle HTTP Server Improper Initialization Vulnerability (CVE-2022-22719)
CVE-2022-22719
CWE-665
High
SharePoint CVE-2022-21837 Vulnerability (CVE-2022-21837)
CVE-2022-21837
-
High
Next.js CVE-2022-21721 Vulnerability (CVE-2022-21721)
CVE-2022-21721
-
High
Twisted Web HTTP Server Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2022-21716)
CVE-2022-21716
CWE-120
High
Oracle HTTP Server Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2022-21716)
CVE-2022-21716
CWE-120
High
Twisted Web HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-21712)
CVE-2022-21712
CWE-200
High
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-21664)
CVE-2022-21664
CWE-138
High
Oracle HTTP Server CVE-2022-21593 Vulnerability (CVE-2022-21593)
CVE-2022-21593
-
High
WordPress Deserialization of Untrusted Data Vulnerability (CVE-2022-21663)
CVE-2022-21663
CWE-502
High
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-21661)
CVE-2022-21661
CWE-138
High
Envoy Proxy Always-Incorrect Control Flow Implementation Vulnerability (CVE-2022-21655)
CVE-2022-21655
CWE-670
High
Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-12872)
CVE-2019-12872
CWE-138
High
Twisted Web HTTP Server Improper Certificate Validation Vulnerability (CVE-2019-12855)
CVE-2019-12855
CWE-295
High
phpList Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-3953)
CVE-2012-3953
CWE-138
High
Chamilo Improper Input Validation Vulnerability (CVE-2012-4030)
CVE-2012-4030
CWE-20
High
MediaWiki Improper Access Control Vulnerability (CVE-2012-4380)
CVE-2012-4380
CWE-284
High
MediaWiki Use of Hard-coded Credentials Vulnerability (CVE-2012-4381)
CVE-2012-4381
CWE-798
High
Contao Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-4383)
CVE-2012-4383
CWE-138
High
MySQL CVE-2022-21600 Vulnerability (CVE-2022-21600)
CVE-2022-21600
-
High
ownCloud Improper Authentication Vulnerability (CVE-2012-4392)
CVE-2012-4392
CWE-287
High
Atlassian Jira Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2021-41307)
CVE-2021-41307
CWE-639
High
Squid Improper Input Validation Vulnerability (CVE-2013-1839)
CVE-2013-1839
CWE-20
High
MySQL CVE-2021-2144 Vulnerability (CVE-2021-2144)
CVE-2021-2144
-
High
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10384)
CVE-2019-10384
CWE-352
High
Liferay Portal Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-33323)
CVE-2021-33323
CWE-312
High
AngularJS Improper Input Validation Vulnerability (CVE-2019-10768)
CVE-2019-10768
CWE-20
High
axios Improper Input Validation Vulnerability (CVE-2019-10742)
CVE-2019-10742
CWE-20
High
Liferay Portal Insufficient Session Expiration Vulnerability (CVE-2021-33322)
CVE-2021-33322
CWE-613
High
Liferay Portal Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-33321)
CVE-2021-33321
CWE-640
High
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-33203)
CVE-2021-33203
CWE-22
High
Apache HTTP Server Other Vulnerability (CVE-2021-33193)
CVE-2021-33193
-
High
WordPress Ultimate Member Plugin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10673)
CVE-2019-10673
CWE-352
High
Contao Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10642)
CVE-2019-10642
CWE-352
High
Play Framework Inadequate Encryption Strength Vulnerability (CVE-2019-17598)
CVE-2019-17598
CWE-326
High
Zope Web Application Server Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2021-32811)
CVE-2021-32811
CWE-915
High
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10353)
CVE-2019-10353
CWE-352
High
Oracle JRE CVE-2013-5802 Vulnerability (CVE-2013-5802)
CVE-2013-5802
-
High
Envoy Proxy Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2021-32781)
CVE-2021-32781
CWE-119
High
Oracle JRE CVE-2013-5852 Vulnerability (CVE-2013-5852)
CVE-2013-5852
-
High
Envoy Proxy Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2021-32780)
CVE-2021-32780
CWE-754
High
Envoy Proxy Incorrect Authorization Vulnerability (CVE-2021-32779)
CVE-2021-32779
CWE-863
High
Envoy Proxy Excessive Iteration Vulnerability (CVE-2021-32778)
CVE-2021-32778
CWE-834
High
Envoy Proxy Incorrect Authorization Vulnerability (CVE-2021-32777)
CVE-2021-32777
CWE-863
High
Zope Web Application Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-32674)
CVE-2021-32674
CWE-22
High
Roundcube Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-6172)
CVE-2013-6172
CWE-138
High
WordPress CVE-2019-17673 Vulnerability (CVE-2019-17673)
CVE-2019-17673
-
High
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2013-6358)
CVE-2013-6358
CWE-434
High
Plone CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-32633)
CVE-2021-32633
CWE-22
High
Zope Web Application Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-32633)
CVE-2021-32633
CWE-22
High
Drupal Improper Authentication Vulnerability (CVE-2019-10911)
CVE-2019-10911
CWE-287
High
Joomla Missing Authentication for Critical Function Vulnerability (CVE-2019-10946)
CVE-2019-10946
CWE-306
High
WordPress Ultimate Member Plugin Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2019-10270)
CVE-2019-10270
CWE-640
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2021-34520)
CVE-2021-34520
CWE-502
High
WebLogic CVE-2021-35620 Vulnerability (CVE-2021-35620)
CVE-2021-35620
-
High
MySQL CVE-2021-35610 Vulnerability (CVE-2021-35610)
CVE-2021-35610
-
High
MediaWiki Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-4571)
CVE-2013-4571
CWE-119
High
MediaWiki Session Fixation Vulnerability (CVE-2013-4572)
CVE-2013-4572
CWE-384
High
PleskWin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4878)
CVE-2013-4878
CWE-264
High
PleskLin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4878)
CVE-2013-4878
CWE-264
High
PHP Out-of-bounds Read Vulnerability (CVE-2019-11046)
CVE-2019-11046
CWE-125
High
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35413)
CVE-2021-35413
CWE-707
High
MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-35197)
CVE-2021-35197
CWE-668
High
Apache Tomcat Session Fixation Vulnerability (CVE-2019-17563)
CVE-2019-17563
CWE-384
High
PHP Other Vulnerability (CVE-2019-11044)
CVE-2019-11044
-
High
Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2021-34798)
CVE-2021-34798
CWE-476
High
SharePoint CVE-2021-34468 Vulnerability (CVE-2021-34468)
CVE-2021-34468
-
High
Liferay Portal Incorrect Authorization Vulnerability (CVE-2021-33335)
CVE-2021-33335
CWE-863
High
SharePoint CVE-2021-34467 Vulnerability (CVE-2021-34467)
CVE-2021-34467
-
High
Seo Panel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-34117)
CVE-2021-34117
CWE-138
High
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33926)
CVE-2021-33926
CWE-918
High
PHP Out-of-bounds Read Vulnerability (CVE-2019-11042)
CVE-2019-11042
CWE-125
High
PHP Out-of-bounds Read Vulnerability (CVE-2019-11041)
CVE-2019-11041
CWE-125
High
Ruby Interpretation Conflict Vulnerability (CVE-2021-33621)
CVE-2021-33621
CWE-436
High
Django Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33571)
CVE-2021-33571
CWE-918
High
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33511)
CVE-2021-33511
CWE-918
High
«
1
...
27
28
29
...
181
»
