🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Invicti vs. Competitors
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
MSSP
Documentation
Vulnerability Database
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Known Vulnerabilities
This page lists
14981 vulnerabilities
in this category.
Critical: 1612
High: 4015
Medium: 8569
Low: 783
Information: 2
Vulnerability Name
CVE
CWE
Severity
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-11620)
CVE-2020-11620
CWE-502
High
Python CVE-2022-42919 Vulnerability (CVE-2022-42919)
CVE-2022-42919
-
High
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-11112)
CVE-2020-11112
CWE-502
High
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-11111)
CVE-2020-11111
CWE-502
High
MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2020-11080)
CVE-2020-11080
CWE-400
High
TYPO3 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-11069)
CVE-2020-11069
CWE-352
High
TYPO3 Deserialization of Untrusted Data Vulnerability (CVE-2020-11067)
CVE-2020-11067
CWE-502
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2020-11057)
CVE-2020-11057
CWE-94
High
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-11619)
CVE-2020-11619
CWE-502
High
Sqlite Improper Initialization Vulnerability (CVE-2020-11655)
CVE-2020-11655
CWE-665
High
WordPress Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2020-11027)
CVE-2020-11027
CWE-640
High
Oracle Database Server CVE-2019-2799 Vulnerability (CVE-2019-2799)
CVE-2019-2799
-
High
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2013-6358)
CVE-2013-6358
CWE-434
High
Roundcube Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-6172)
CVE-2013-6172
CWE-138
High
Liferay Portal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42121)
CVE-2022-42121
CWE-138
High
Liferay DXP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42121)
CVE-2022-42121
CWE-138
High
Dolibarr Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-11825)
CVE-2020-11825
CWE-352
High
Liferay Portal Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-42123)
CVE-2022-42123
CWE-22
High
Liferay DXP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-42123)
CVE-2022-42123
CWE-22
High
Liferay Portal Inefficient Regular Expression Complexity Vulnerability (CVE-2022-42124)
CVE-2022-42124
CWE-1333
High
MySQL Improper Initialization Vulnerability (CVE-2020-11655)
CVE-2020-11655
CWE-665
High
Oracle JRE CVE-2013-5852 Vulnerability (CVE-2013-5852)
CVE-2013-5852
-
High
MySQL CVE-2019-2800 Vulnerability (CVE-2019-2800)
CVE-2019-2800
-
High
Liferay DXP Inefficient Regular Expression Complexity Vulnerability (CVE-2022-42124)
CVE-2022-42124
CWE-1333
High
Liferay Portal Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-42125)
CVE-2022-42125
CWE-22
High
Rukovoditel Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-11818)
CVE-2020-11818
CWE-352
High
Open Resty Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-11724)
CVE-2020-11724
CWE-444
High
MySQL CVE-2019-2822 Vulnerability (CVE-2019-2822)
CVE-2019-2822
-
High
WordPress Missing Authentication for Critical Function Vulnerability (CVE-2020-11028)
CVE-2020-11028
CWE-306
High
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-10969)
CVE-2020-10969
CWE-502
High
OpenSSL Double Free Vulnerability (CVE-2022-4450)
CVE-2022-4450
CWE-415
High
MediaWiki Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-4571)
CVE-2013-4571
CWE-119
High
Apache Traffic Server CVE-2022-47185 Vulnerability (CVE-2022-47185)
CVE-2022-47185
-
High
PostgreSQL Untrusted Search Path Vulnerability (CVE-2020-10733)
CVE-2020-10733
CWE-426
High
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2020-10705)
CVE-2020-10705
CWE-770
High
jszip Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-48285)
CVE-2022-48285
CWE-22
High
Python Use After Free Vulnerability (CVE-2022-48560)
CVE-2022-48560
CWE-416
High
MediaWiki Session Fixation Vulnerability (CVE-2013-4572)
CVE-2013-4572
CWE-384
High
Undertow Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2020-10705)
CVE-2020-10705
CWE-119
High
PleskLin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4878)
CVE-2013-4878
CWE-264
High
Python Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2022-48566)
CVE-2022-48566
CWE-362
High
WebLogic Other Vulnerability (CVE-2020-10673)
CVE-2020-10673
-
High
WebLogic Other Vulnerability (CVE-2020-10672)
CVE-2020-10672
-
High
Lighttpd Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4559)
CVE-2013-4559
CWE-264
High
Nginx Improper Encoding or Escaping of Output Vulnerability (CVE-2013-4547)
CVE-2013-4547
CWE-116
High
phpMyFAQ Cleartext Transmission of Sensitive Information Vulnerability (CVE-2022-4409)
CVE-2022-4409
CWE-319
High
Lighttpd Inadequate Encryption Strength Vulnerability (CVE-2013-4508)
CVE-2013-4508
CWE-326
High
PleskWin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4878)
CVE-2013-4878
CWE-264
High
Apache Traffic Server CVE-2022-47184 Vulnerability (CVE-2022-47184)
CVE-2022-47184
-
High
Oracle JRE CVE-2013-5775 Vulnerability (CVE-2013-5775)
CVE-2013-5775
-
High
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-10804)
CVE-2020-10804
CWE-138
High
LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-43279)
CVE-2022-43279
CWE-138
High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-43288)
CVE-2022-43288
CWE-138
High
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-5674)
CVE-2013-5674
CWE-94
High
Magento CVE-2019-8229 Vulnerability (CVE-2019-8229)
CVE-2019-8229
-
High
SharePoint CVE-2022-44693 Vulnerability (CVE-2022-44693)
CVE-2022-44693
-
High
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-10968)
CVE-2020-10968
CWE-502
High
Perl Integer Overflow or Wraparound Vulnerability (CVE-2020-10878)
CVE-2020-10878
CWE-190
High
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-45020)
CVE-2022-45020
CWE-707
High
Python Incorrect Type Conversion or Cast Vulnerability (CVE-2020-10735)
CVE-2020-10735
CWE-704
High
Python Uncontrolled Resource Consumption Vulnerability (CVE-2022-45061)
CVE-2022-45061
CWE-400
High
Payara Files or Directories Accessible to External Parties Vulnerability (CVE-2022-45129)
CVE-2022-45129
CWE-552
High
Apache Tomcat Improper Encoding or Escaping of Output Vulnerability (CVE-2022-45143)
CVE-2022-45143
CWE-116
High
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-10802)
CVE-2020-10802
CWE-138
High
Dot CMS Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability (CVE-2022-45782)
CVE-2022-45782
CWE-338
High
MyBB Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-45867)
CVE-2022-45867
CWE-22
High
Moodle Improper Input Validation Vulnerability (CVE-2020-10738)
CVE-2020-10738
CWE-20
High
Osclass Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-8084)
CVE-2014-8084
CWE-22
High
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33926)
CVE-2021-33926
CWE-918
High
PHP Other Vulnerability (CVE-2015-6837)
CVE-2015-6837
-
High
WebLogic CVE-2018-3213 Vulnerability (CVE-2018-3213)
CVE-2018-3213
-
High
PHP-Fusion Improper Privilege Management Vulnerability (CVE-2020-24949)
CVE-2020-24949
CWE-269
High
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-21030)
CVE-2021-21030
CWE-707
High
jQuery Validation Uncontrolled Resource Consumption Vulnerability (CVE-2021-21252)
CVE-2021-21252
CWE-400
High
PrestaShop Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2021-21302)
CVE-2021-21302
CWE-1236
High
«
1
...
34
35
36
...
200
»