Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Oracle HTTP Server CVE-2021-35666 Vulnerability (CVE-2021-35666)
CVE-2021-35666
-
High
MediaWiki Improper Authentication Vulnerability (CVE-2013-4304)
CVE-2013-4304
CWE-287
High
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-4313)
CVE-2013-4313
CWE-138
High
WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-4338)
CVE-2013-4338
CWE-94
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37148)
CVE-2021-37148
CWE-20
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37150)
CVE-2021-37150
CWE-20
High
Atlassian Jira Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-39128)
CVE-2021-39128
CWE-138
High
Liferay Portal CVE-2021-38266 Vulnerability (CVE-2021-38266)
CVE-2021-38266
-
High
Oracle JRE CVE-2013-2448 Vulnerability (CVE-2013-2448)
CVE-2013-2448
-
High
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-39126)
CVE-2021-39126
CWE-352
High
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-39124)
CVE-2021-39124
CWE-352
High
Atlassian Jira CVE-2021-39123 Vulnerability (CVE-2021-39123)
CVE-2021-39123
-
High
SugarCRM Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2019-17316)
CVE-2019-17316
CWE-915
High
Oracle JRE CVE-2013-2461 Vulnerability (CVE-2013-2461)
CVE-2013-2461
-
High
SugarCRM Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2019-17317)
CVE-2019-17317
CWE-915
High
SugarCRM Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-17318)
CVE-2019-17318
CWE-138
High
Atlassian Confluence Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-39114)
CVE-2021-39114
CWE-138
High
Atlassian Jira Insufficient Session Expiration Vulnerability (CVE-2021-39113)
CVE-2021-39113
CWE-613
High
PHP Address Book Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-2778)
CVE-2013-2778
CWE-352
High
Liferay DXP CVE-2021-38266 Vulnerability (CVE-2021-38266)
CVE-2021-38266
-
High
Vanilla Forums Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-3527)
CVE-2013-3527
CWE-138
High
Dolibarr Incorrect Authorization Vulnerability (CVE-2021-37517)
CVE-2021-37517
CWE-863
High
Vanilla Forums CVE-2013-3528 Vulnerability (CVE-2013-3528)
CVE-2013-3528
-
High
Dolphin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-3638)
CVE-2013-3638
CWE-138
High
Apache Traffic Server Improper Authentication Vulnerability (CVE-2021-38161)
CVE-2021-38161
CWE-287
High
ProjectSend Insertion of Sensitive Information into Log File Vulnerability (CVE-2019-11492)
CVE-2019-11492
CWE-532
High
Oracle Database Server CVE-2013-3760 Vulnerability (CVE-2013-3760)
CVE-2013-3760
-
High
CakePHP Deserialization of Untrusted Data Vulnerability (CVE-2019-11458)
CVE-2019-11458
CWE-502
High
ATutor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-11446)
CVE-2019-11446
CWE-434
High
Liferay Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2019-11444)
CVE-2019-11444
CWE-138
High
Oracle Database Server CVE-2013-3771 Vulnerability (CVE-2013-3771)
CVE-2013-3771
-
High
Oracle Database Server CVE-2013-3774 Vulnerability (CVE-2013-3774)
CVE-2013-3774
-
High
Contao Improper Privilege Management Vulnerability (CVE-2021-37627)
CVE-2021-37627
CWE-269
High
Contao Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-37626)
CVE-2021-37626
CWE-94
High
Lighttpd Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2015-3200)
CVE-2015-3200
CWE-138
High
Sqlite Integer Overflow or Wraparound Vulnerability (CVE-2018-20346)
CVE-2018-20346
CWE-190
High
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-35626)
CVE-2020-35626
CWE-352
High
MySQL CVE-2016-9842 Vulnerability (CVE-2016-9842)
CVE-2016-9842
-
High
WebLogic CVE-2020-14639 Vulnerability (CVE-2020-14639)
CVE-2020-14639
-
High
IBM RTC Improper Restriction of XML External Entity Reference Vulnerability (CVE-2016-9707)
CVE-2016-9707
CWE-611
High
Apache HTTP Server Use After Free Vulnerability (CVE-2017-9798)
CVE-2017-9798
CWE-416
High
Apache HTTP Server Use After Free Vulnerability (CVE-2017-9789)
CVE-2017-9789
CWE-416
High
Serendipity Server-Side Request Forgery (SSRF) Vulnerability (CVE-2016-9752)
CVE-2016-9752
CWE-918
High
Apache Tomcat Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2016-9774)
CVE-2016-9774
CWE-59
High
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9775)
CVE-2016-9775
CWE-264
High
Magento CVE-2019-8119 Vulnerability (CVE-2019-8119)
CVE-2019-8119
-
High
Jetty Observable Discrepancy Vulnerability (CVE-2017-9735)
CVE-2017-9735
CWE-203
High
Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9837)
CVE-2016-9837
CWE-264
High
Joomla Improper Access Control Vulnerability (CVE-2016-9838)
CVE-2016-9838
CWE-284
High
MySQL CVE-2016-9840 Vulnerability (CVE-2016-9840)
CVE-2016-9840
-
High
Magento CVE-2019-8122 Vulnerability (CVE-2019-8122)
CVE-2019-8122
-
High
Magento Insufficient Verification of Data Authenticity Vulnerability (CVE-2019-8124)
CVE-2019-8124
CWE-345
High
WildFly Application Server Uncontrolled Resource Consumption Vulnerability (CVE-2016-9589)
CVE-2016-9589
CWE-400
High
Oracle JRE CVE-2020-14593 Vulnerability (CVE-2020-14593)
CVE-2020-14593
-
High
WebLogic CVE-2020-14589 Vulnerability (CVE-2020-14589)
CVE-2020-14589
-
High
WebLogic CVE-2020-14588 Vulnerability (CVE-2020-14588)
CVE-2020-14588
-
High
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-9861)
CVE-2016-9861
-
High
phpMyAdmin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2016-9862)
CVE-2016-9862
CWE-94
High
phpMyAdmin Improper Input Validation Vulnerability (CVE-2016-9863)
CVE-2016-9863
CWE-20
High
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-9864)
CVE-2016-9864
CWE-138
High
Magento CVE-2019-8125 Vulnerability (CVE-2019-8125)
CVE-2019-8125
-
High
Magento Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-8127)
CVE-2019-8127
CWE-138
High
Oracle JRE CVE-2020-14583 Vulnerability (CVE-2020-14583)
CVE-2020-14583
-
High
Roundcube Improper Access Control Vulnerability (CVE-2016-9920)
CVE-2016-9920
CWE-284
High
PHP NULL Pointer Dereference Vulnerability (CVE-2016-9934)
CVE-2016-9934
CWE-476
High
Python Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-9233)
CVE-2017-9233
CWE-611
High
Magento Session Fixation Vulnerability (CVE-2019-8116)
CVE-2019-8116
CWE-384
High
b2evolution Credentials Management Errors Vulnerability (CVE-2016-9479)
CVE-2016-9479
-
High
ASP.NET MVC Improper Input Validation Vulnerability (CVE-2017-0249)
CVE-2017-0249
CWE-20
High
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9418)
CVE-2016-9418
CWE-200
High
Moodle Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-9187)
CVE-2016-9187
CWE-434
High
Squid NULL Pointer Dereference Vulnerability (CVE-2018-1000027)
CVE-2018-1000027
CWE-476
High
Squid CVE-2018-1000024 Vulnerability (CVE-2018-1000024)
CVE-2018-1000024
-
High
Dotclear Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-9268)
CVE-2016-9268
CWE-434
High
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-7951)
CVE-2019-7951
CWE-200
High
«
1
...
30
31
32
...
181
»
