Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-5492)
CVE-2017-5492
CWE-352
High
WordPress Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability (CVE-2017-5493)
CVE-2017-5493
CWE-338
High
Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9515)
CVE-2019-9515
CWE-770
High
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9515)
CVE-2019-9515
CWE-770
High
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9514)
CVE-2019-9514
CWE-770
High
Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9518)
CVE-2019-9518
CWE-770
High
Serendipity Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-5609)
CVE-2017-5609
CWE-138
High
Nginx Other Vulnerability (CVE-2019-9513)
CVE-2019-9513
-
High
Apache Traffic Server Other Vulnerability (CVE-2019-9513)
CVE-2019-9513
-
High
PHP Out-of-bounds Read Vulnerability (CVE-2019-9022)
CVE-2019-9022
CWE-125
High
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-5647)
CVE-2017-5647
CWE-200
High
PHP Out-of-bounds Read Vulnerability (CVE-2019-9024)
CVE-2019-9024
CWE-125
High
Apache Tomcat Improper Resource Shutdown or Release Vulnerability (CVE-2017-5650)
CVE-2017-5650
CWE-404
High
PostgreSQL Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2019-9193)
CVE-2019-9193
CWE-138
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2017-5659)
CVE-2017-5659
CWE-20
High
Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9511)
CVE-2019-9511
CWE-770
High
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9511)
CVE-2019-9511
CWE-770
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2017-5660)
CVE-2017-5660
CWE-20
High
Nginx Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9511)
CVE-2019-9511
CWE-770
High
Apache Tomcat Improper Handling of Exceptional Conditions Vulnerability (CVE-2017-5664)
CVE-2017-5664
CWE-755
High
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9518)
CVE-2019-9518
CWE-770
High
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-6379)
CVE-2017-6379
CWE-352
High
SharePoint Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-0931)
CVE-2020-0931
CWE-434
High
Envoy Proxy Improper Input Validation Vulnerability (CVE-2019-9900)
CVE-2019-9900
CWE-20
High
MySQL CVE-2017-3450 Vulnerability (CVE-2017-3450)
CVE-2017-3450
-
High
SharePoint Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-0929)
CVE-2020-0929
CWE-434
High
SharePoint Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-0920)
CVE-2020-0920
CWE-434
High
SharePoint CVE-2020-0892 Vulnerability (CVE-2020-0892)
CVE-2020-0892
-
High
SharePoint CVE-2020-0852 Vulnerability (CVE-2020-0852)
CVE-2020-0852
-
High
SharePoint CVE-2020-0850 Vulnerability (CVE-2020-0850)
CVE-2020-0850
-
High
Apache Tomcat CVE-2020-0822 Vulnerability (CVE-2020-0822)
CVE-2020-0822
-
High
Microsoft SQL Server Remote Code Execution Vulnerability (CVE-2020-0618)
CVE-2020-0618
-
High
WebLogic CVE-2017-3506 Vulnerability (CVE-2017-3506)
CVE-2017-3506
-
High
WebLogic CVE-2017-3531 Vulnerability (CVE-2017-3531)
CVE-2017-3531
-
High
MySQL Integer Overflow or Wraparound Vulnerability (CVE-2017-3599)
CVE-2017-3599
CWE-190
High
Sqlite NULL Pointer Dereference Vulnerability (CVE-2019-9937)
CVE-2019-9937
CWE-476
High
Sqlite Out-of-bounds Read Vulnerability (CVE-2019-9936)
CVE-2019-9936
CWE-125
High
phpBB Improper Input Validation Vulnerability (CVE-2019-9826)
CVE-2019-9826
CWE-20
High
Drupal Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2017-6381)
CVE-2017-6381
CWE-829
High
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-9787)
CVE-2019-9787
CWE-352
High
Joomla Missing Authorization Vulnerability (CVE-2019-9713)
CVE-2019-9713
CWE-862
High
Security update: Hotfix available for ColdFusion
CVE-2013-0632
CWE-255
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2019-9675)
CVE-2019-9675
CWE-119
High
Python Uncontrolled Resource Consumption Vulnerability (CVE-2019-9674)
CVE-2019-9674
CWE-400
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2019-9640)
CVE-2019-9640
CWE-119
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2019-9639)
CVE-2019-9639
CWE-119
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2019-9638)
CVE-2019-9638
CWE-119
High
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2019-9637)
CVE-2019-9637
CWE-264
High
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2017-3730)
CVE-2017-3730
CWE-476
High
OpenSSL Out-of-bounds Read Vulnerability (CVE-2017-3731)
CVE-2017-3731
CWE-125
High
Nexus Repository Manager Incorrect Default Permissions Vulnerability (CVE-2019-9630)
CVE-2019-9630
CWE-276
High
OpenSSL Improper Input Validation Vulnerability (CVE-2017-3733)
CVE-2017-3733
CWE-20
High
PHP NULL Pointer Dereference Vulnerability (CVE-2017-6441)
CVE-2017-6441
CWE-476
High
PHP Improper Input Validation Vulnerability (CVE-2017-7189)
CVE-2017-7189
CWE-20
High
RubyGems Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-8323)
CVE-2019-8323
CWE-138
High
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-10678)
CVE-2017-10678
CWE-352
High
Magento Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2019-8154)
CVE-2019-8154
CWE-829
High
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-12616)
CVE-2017-12616
CWE-200
High
Apache Tomcat Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-12617)
CVE-2017-12617
CWE-434
High
Jboss EAP Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-12617)
CVE-2017-12617
CWE-434
High
Serendipity Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-8101)
CVE-2017-8101
CWE-352
High
Sqlite Use After Free Vulnerability (CVE-2020-13630)
CVE-2020-13630
CWE-416
High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13592)
CVE-2020-13592
CWE-138
High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13591)
CVE-2020-13591
CWE-138
High
Question2Answer Improper Input Validation Vulnerability (CVE-2017-12775)
CVE-2017-12775
CWE-20
High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13590)
CVE-2020-13590
CWE-138
High
Perl Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-12837)
CVE-2017-12837
CWE-119
High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13589)
CVE-2020-13589
CWE-138
High
Magento CVE-2019-8150 Vulnerability (CVE-2019-8150)
CVE-2019-8150
-
High
Magento Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-8151)
CVE-2019-8151
CWE-918
High
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-8155)
CVE-2019-8155
CWE-352
High
Varnish Cache Integer Overflow or Wraparound Vulnerability (CVE-2017-12425)
CVE-2017-12425
CWE-190
High
PHP Use After Free Vulnerability (CVE-2017-12934)
CVE-2017-12934
CWE-416
High
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-13588)
CVE-2020-13588
CWE-138
High
Ruby Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-14033)
CVE-2017-14033
CWE-119
High
«
1
...
35
36
37
...
181
»
