Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Known Vulnerabilities

This page lists 13509 vulnerabilities in this category.

Critical: 1465 High: 3387 Medium: 7907 Low: 748 Information: 2
Vulnerability Name
CVE
CWE
Severity
SharePoint Out-of-bounds Write Vulnerability (CVE-2018-0792)
CVE-2018-0792
CWE-787
High
Magento CVE-2019-8091 Vulnerability (CVE-2019-8091)
CVE-2019-8091
-
High
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9410)
CVE-2016-9410
CWE-200
High
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-8093)
CVE-2019-8093
CWE-434
High
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9414)
CVE-2016-9414
CWE-200
High
MyBB Improper Access Control Vulnerability (CVE-2016-9415)
CVE-2016-9415
CWE-284
High
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-8109)
CVE-2019-8109
CWE-352
High
MyBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2016-9417)
CVE-2016-9417
CWE-918
High
OpenSSL Key Management Errors Vulnerability (CVE-2018-0732)
CVE-2018-0732
-
High
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-9839)
CVE-2017-9839
CWE-138
High
Magento CVE-2019-8110 Vulnerability (CVE-2019-8110)
CVE-2019-8110
-
High
Zenphoto Improper Privilege Management Vulnerability (CVE-2018-0610)
CVE-2018-0610
CWE-269
High
Magento CVE-2019-8111 Vulnerability (CVE-2019-8111)
CVE-2019-8111
-
High
Magento Insufficient Verification of Data Authenticity Vulnerability (CVE-2019-8112)
CVE-2019-8112
CWE-345
High
Drupal Insufficient Verification of Data Authenticity Vulnerability (CVE-2016-9450)
CVE-2016-9450
CWE-345
High
MySQL CVE-2020-14697 Vulnerability (CVE-2020-14697)
CVE-2020-14697
-
High
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-8114)
CVE-2019-8114
CWE-434
High
ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-9455)
CVE-2016-9455
CWE-352
High
ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-9456)
CVE-2016-9456
CWE-352
High
MySQL CVE-2020-14678 Vulnerability (CVE-2020-14678)
CVE-2020-14678
-
High
MySQL CVE-2020-14663 Vulnerability (CVE-2020-14663)
CVE-2020-14663
-
High
ownCloud Improper Authentication Vulnerability (CVE-2016-9463)
CVE-2016-9463
CWE-287
High
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-9933)
CVE-2017-9933
CWE-200
High
Dolibarr Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-9840)
CVE-2017-9840
CWE-434
High
ASP.NET MVC Improper Input Validation Vulnerability (CVE-2017-0247)
CVE-2017-0247
CWE-20
High
SharePoint Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-0254)
CVE-2017-0254
CWE-119
High
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7950)
CVE-2019-7950
CWE-639
High
MySQL CVE-2017-10155 Vulnerability (CVE-2017-10155)
CVE-2017-10155
-
High
Moodle Incorrect Authorization Vulnerability (CVE-2020-14321)
CVE-2020-14321
CWE-863
High
Dolibarr Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-14209)
CVE-2020-14209
CWE-434
High
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-1000499)
CVE-2017-1000499
CWE-352
High
WordPress Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-9066)
CVE-2017-9066
CWE-918
High
Jenkins Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2017-1000503)
CVE-2017-1000503
CWE-362
High
WordPress Improper Input Validation Vulnerability (CVE-2017-9065)
CVE-2017-9065
CWE-20
High
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-1000504)
CVE-2017-1000504
CWE-352
High
WordPress Improper Input Validation Vulnerability (CVE-2017-1000600)
CVE-2017-1000600
CWE-20
High
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-9064)
CVE-2017-9064
CWE-352
High
WordPress CVE-2017-1001000 Vulnerability (CVE-2017-1001000)
CVE-2017-1001000
-
High
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9062)
CVE-2017-9062
CWE-707
High
WebLogic CVE-2017-10147 Vulnerability (CVE-2017-10147)
CVE-2017-10147
-
High
Atlassian Jira CVE-2020-14178 Vulnerability (CVE-2020-14178)
CVE-2020-14178
-
High
Magento Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-8134)
CVE-2019-8134
CWE-138
High
Moodle Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2020-14322)
CVE-2020-14322
CWE-770
High
WebLogic CVE-2017-10271 Vulnerability (CVE-2017-10271)
CVE-2017-10271
-
High
Atlassian Jira CVE-2020-14167 Vulnerability (CVE-2020-14167)
CVE-2020-14167
-
High
MediaWiki Improper Input Validation Vulnerability (CVE-2017-8815)
CVE-2017-8815
CWE-20
High
Squid NULL Pointer Dereference Vulnerability (CVE-2020-14058)
CVE-2020-14058
CWE-476
High
Oracle JRE CVE-2017-10309 Vulnerability (CVE-2017-10309)
CVE-2017-10309
-
High
Apache HTTP Server NULL Pointer Dereference Vulnerability (CVE-2020-13950)
CVE-2020-13950
CWE-476
High
Apache Tomcat Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2020-13935)
CVE-2020-13935
CWE-835
High
Apache Tomcat Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2020-13934)
CVE-2020-13934
CWE-119
High
MediaWiki Improper Input Validation Vulnerability (CVE-2017-8814)
CVE-2017-8814
CWE-20
High
Sqlite Use After Free Vulnerability (CVE-2020-13871)
CVE-2020-13871
CWE-416
High
Joomla Improper Preservation of Permissions Vulnerability (CVE-2020-13763)
CVE-2020-13763
CWE-281
High
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-13760)
CVE-2020-13760
CWE-352
High
Drupal Improper Access Control Vulnerability (CVE-2020-13677)
CVE-2020-13677
CWE-284
High
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-8810)
CVE-2017-8810
CWE-200
High
Vanilla Forums Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-1000432)
CVE-2017-1000432
CWE-352
High
PHP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-9067)
CVE-2017-9067
CWE-22
High
SharePoint CVE-2017-0281 Vulnerability (CVE-2017-0281)
CVE-2017-0281
-
High
GlassFish Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1000029)
CVE-2017-1000029
CWE-200
High
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-0361)
CVE-2017-0361
CWE-200
High
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-0362)
CVE-2017-0362
CWE-352
High
MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2017-0367)
CVE-2017-0367
CWE-668
High
MediaWiki CVE-2017-0371 Vulnerability (CVE-2017-0371)
CVE-2017-0371
-
High
PHP NULL Pointer Dereference Vulnerability (CVE-2017-9229)
CVE-2017-9229
CWE-476
High
RubyGems Improper Input Validation Vulnerability (CVE-2017-0900)
CVE-2017-0900
CWE-20
High
RubyGems Improper Input Validation Vulnerability (CVE-2017-0901)
CVE-2017-0901
CWE-20
High
RubyGems Origin Validation Error Vulnerability (CVE-2017-0902)
CVE-2017-0902
CWE-346
High
phpMyAdmin Improper Input Validation Vulnerability (CVE-2017-1000014)
CVE-2017-1000014
CWE-20
High
phpMyAdmin Improper Input Validation Vulnerability (CVE-2017-1000016)
CVE-2017-1000016
CWE-20
High
phpMyAdmin Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-1000017)
CVE-2017-1000017
CWE-918
High
phpMyAdmin Improper Input Validation Vulnerability (CVE-2017-1000018)
CVE-2017-1000018
CWE-20
High
GlassFish Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-1000028)
CVE-2017-1000028
CWE-22
High
MODX Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-1000067)
CVE-2017-1000067
CWE-138
High