🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Invicti vs. Competitors
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
MSSP
Documentation
Vulnerability Database
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Known Vulnerabilities
This page lists
14981 vulnerabilities
in this category.
Critical: 1612
High: 4015
Medium: 8569
Low: 783
Information: 2
Vulnerability Name
CVE
CWE
Severity
PostgreSQL CVE-2023-2454 Vulnerability (CVE-2023-2454)
CVE-2023-2454
-
High
Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9511)
CVE-2019-9511
CWE-770
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29211)
CVE-2023-29211
CWE-94
High
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-7930)
CVE-2019-7930
CWE-434
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29212)
CVE-2023-29212
CWE-94
High
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-29213)
CVE-2023-29213
CWE-352
High
Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-7932)
CVE-2019-7932
CWE-94
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29214)
CVE-2023-29214
CWE-94
High
Microsoft SQL Server CVE-2023-29349 Vulnerability (CVE-2023-29349)
CVE-2023-29349
-
High
Microsoft SQL Server CVE-2023-29356 Vulnerability (CVE-2023-29356)
CVE-2023-29356
-
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29516)
CVE-2023-29516
CWE-138
High
PostgreSQL Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2019-9193)
CVE-2019-9193
CWE-138
High
XWiki Other Vulnerability (CVE-2023-29507)
CVE-2023-29507
-
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29509)
CVE-2023-29509
CWE-94
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29510)
CVE-2023-29510
CWE-138
High
XWiki Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') Vulnerability (CVE-2023-29511)
CVE-2023-29511
CWE-707
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29512)
CVE-2023-29512
CWE-138
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29514)
CVE-2023-29514
CWE-138
High
PHP Out-of-bounds Read Vulnerability (CVE-2019-9022)
CVE-2019-9022
CWE-125
High
Ruby on Rails Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-6496)
CVE-2012-6496
CWE-138
High
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5629)
CVE-2012-5629
CWE-264
High
Magento Insufficient Verification of Data Authenticity Vulnerability (CVE-2019-8112)
CVE-2019-8112
CWE-345
High
MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-5909)
CVE-2012-5909
CWE-138
High
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-8093)
CVE-2019-8093
CWE-434
High
Perl Improper Certificate Validation Vulnerability (CVE-2023-31486)
CVE-2023-31486
CWE-295
High
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-8109)
CVE-2019-8109
CWE-352
High
Magento CVE-2019-8110 Vulnerability (CVE-2019-8110)
CVE-2019-8110
-
High
Magento CVE-2019-8111 Vulnerability (CVE-2019-8111)
CVE-2019-8111
-
High
ClipBucket Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-5849)
CVE-2012-5849
CWE-138
High
WordPress Ultimate Member Plugin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-31216)
CVE-2023-31216
CWE-352
High
Microsoft SQL Server CVE-2023-32025 Vulnerability (CVE-2023-32025)
CVE-2023-32025
-
High
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-8114)
CVE-2019-8114
CWE-434
High
Magento Session Fixation Vulnerability (CVE-2019-8116)
CVE-2019-8116
CWE-384
High
Magento CVE-2019-8119 Vulnerability (CVE-2019-8119)
CVE-2019-8119
-
High
Magento CVE-2019-8122 Vulnerability (CVE-2019-8122)
CVE-2019-8122
-
High
Magento Insufficient Verification of Data Authenticity Vulnerability (CVE-2019-8124)
CVE-2019-8124
CWE-345
High
Microsoft SQL Server CVE-2023-32026 Vulnerability (CVE-2023-32026)
CVE-2023-32026
-
High
Perl Improper Certificate Validation Vulnerability (CVE-2023-31484)
CVE-2023-31484
CWE-295
High
NuSOAP Improper Certificate Validation Vulnerability (CVE-2012-6071)
CVE-2012-6071
CWE-295
High
Perl Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-6329)
CVE-2012-6329
CWE-94
High
Apache Traffic Server CVE-2023-30631 Vulnerability (CVE-2023-30631)
CVE-2023-30631
-
High
osTicket Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-30082)
CVE-2023-30082
CWE-1284
High
Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-7942)
CVE-2019-7942
CWE-94
High
Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-30130)
CVE-2023-30130
CWE-94
High
PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30151)
CVE-2023-30151
CWE-138
High
Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-30179)
CVE-2023-30179
CWE-94
High
Dolibarr Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2023-30253)
CVE-2023-30253
CWE-138
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-30537)
CVE-2023-30537
CWE-94
High
WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-8942)
CVE-2019-8942
CWE-94
High
Magento CVE-2019-8091 Vulnerability (CVE-2019-8091)
CVE-2019-8091
-
High
PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30839)
CVE-2023-30839
CWE-138
High
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7950)
CVE-2019-7950
CWE-639
High
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30944)
CVE-2023-30944
CWE-138
High
IBM WebSEAL Other Vulnerability (CVE-2023-30997)
CVE-2023-30997
-
High
IBM WebSEAL Other Vulnerability (CVE-2023-30998)
CVE-2023-30998
-
High
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-7951)
CVE-2019-7951
CWE-200
High
Apache HTTP Server Out-of-bounds Read Vulnerability (CVE-2023-31122)
CVE-2023-31122
CWE-125
High
WebLogic CVE-2023-21931 Vulnerability (CVE-2023-21931)
CVE-2023-21931
-
High
Ruby on Rails CVE-2019-5418 Vulnerability (CVE-2019-5418)
CVE-2019-5418
-
High
Oracle Database Server CVE-2014-2406 Vulnerability (CVE-2014-2406)
CVE-2014-2406
-
High
Envoy Proxy Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2020-12604)
CVE-2020-12604
CWE-119
High
SharePoint CVE-2022-38009 Vulnerability (CVE-2022-38009)
CVE-2022-38009
-
High
OpenSSL Out-of-bounds Read Vulnerability (CVE-2014-0160)
CVE-2014-0160
CWE-125
High
Nginx Out-of-bounds Write Vulnerability (CVE-2014-0133)
CVE-2014-0133
CWE-787
High
SharePoint CVE-2022-38053 Vulnerability (CVE-2022-38053)
CVE-2022-38053
-
High
EspoCRM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-38843)
CVE-2022-38843
CWE-434
High
Envoy Proxy Uncontrolled Resource Consumption Vulnerability (CVE-2020-12605)
CVE-2020-12605
CWE-400
High
EspoCRM Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2022-38844)
CVE-2022-38844
CWE-1236
High
SharePoint CVE-2022-38008 Vulnerability (CVE-2022-38008)
CVE-2022-38008
-
High
Nginx Out-of-bounds Read Vulnerability (CVE-2022-38890)
CVE-2022-38890
CWE-125
High
Grafana CVE-2022-39201 Vulnerability (CVE-2022-39201)
CVE-2022-39201
-
High
Drupal Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-39261)
CVE-2022-39261
CWE-22
High
MyBB Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2022-39265)
CVE-2022-39265
CWE-138
High
Grafana Improper Input Validation Vulnerability (CVE-2022-39306)
CVE-2022-39306
CWE-20
High
Nginx Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-0088)
CVE-2014-0088
CWE-119
High
«
1
...
30
31
32
...
200
»