Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
OpenSSL Numeric Errors Vulnerability (CVE-2016-2106)
CVE-2016-2106
-
High
MySQL Numeric Errors Vulnerability (CVE-2016-2105)
CVE-2016-2105
-
High
OpenSSL Numeric Errors Vulnerability (CVE-2016-2105)
CVE-2016-2105
-
High
Ruby on Rails Improper Input Validation Vulnerability (CVE-2016-2098)
CVE-2016-2098
CWE-20
High
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-2041)
CVE-2016-2041
-
High
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-1927)
CVE-2016-1927
-
High
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2016-2161)
CVE-2016-2161
CWE-20
High
PHP Numeric Errors Vulnerability (CVE-2016-1904)
CVE-2016-1904
-
High
Liferay Portal Uncontrolled Resource Consumption Vulnerability (CVE-2025-62260)
CVE-2025-62260
CWE-400
High
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-1499)
CVE-2016-1499
CWE-200
High
Moodle Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2025-62399)
CVE-2025-62399
CWE-307
High
Nginx Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2016-1247)
CVE-2016-1247
CWE-59
High
Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-1240)
CVE-2016-1240
CWE-20
High
Perl Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-1238)
CVE-2016-1238
CWE-264
High
AbanteCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10755)
CVE-2016-10755
CWE-138
High
e107 Deserialization of Untrusted Data Vulnerability (CVE-2016-10753)
CVE-2016-10753
CWE-502
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-2157)
CVE-2016-2157
CWE-352
High
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2176)
CVE-2016-2176
CWE-119
High
Osclass Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10751)
CVE-2016-10751
CWE-22
High
Squid Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2025-62168)
CVE-2025-62168
CWE-209
High
Squid Improper Input Validation Vulnerability (CVE-2016-2569)
CVE-2016-2569
CWE-20
High
ATutor Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-2539)
CVE-2016-2539
CWE-352
High
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2512)
CVE-2016-2512
CWE-707
High
Perl Improper Input Validation Vulnerability (CVE-2016-2381)
CVE-2016-2381
CWE-20
High
Oracle Database Server Improper Input Validation Vulnerability (CVE-2016-2381)
CVE-2016-2381
CWE-20
High
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-59775)
CVE-2025-59775
CWE-918
High
Jetty Uncontrolled Resource Consumption Vulnerability (CVE-2025-5115)
CVE-2025-5115
CWE-400
High
WebLogic Missing Authentication for Critical Function Vulnerability (CVE-2025-61752)
CVE-2025-61752
CWE-306
High
WordPress Other Vulnerability (CVE-2016-2222)
CVE-2016-2222
-
High
Liferay DXP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2025-62254)
CVE-2025-62254
CWE-22
High
WordPress Other Vulnerability (CVE-2016-2221)
CVE-2016-2221
-
High
PostgreSQL 7PK - Security Features Vulnerability (CVE-2016-2193)
CVE-2016-2193
-
High
Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
CVE-2016-2183
CWE-200
High
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
CVE-2016-2183
CWE-200
High
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
CVE-2016-2183
CWE-200
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-62204)
CVE-2025-62204
CWE-502
High
OpenSSL Numeric Errors Vulnerability (CVE-2016-2181)
CVE-2016-2181
-
High
OpenSSL Out-of-bounds Read Vulnerability (CVE-2016-2180)
CVE-2016-2180
CWE-125
High
OpenSSL Resource Management Errors Vulnerability (CVE-2016-2179)
CVE-2016-2179
-
High
Piwigo Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2025-62406)
CVE-2025-62406
CWE-640
High
PHP Improper Input Validation Vulnerability (CVE-2016-10712)
CVE-2016-10712
CWE-20
High
Squid Improper Input Validation Vulnerability (CVE-2016-2571)
CVE-2016-2571
CWE-20
High
PostgreSQL Improper Access Control Vulnerability (CVE-2016-0768)
CVE-2016-0768
CWE-284
High
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10003)
CVE-2016-10003
CWE-200
High
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10002)
CVE-2016-10002
CWE-200
High
OpenSSL Resource Management Errors Vulnerability (CVE-2016-0798)
CVE-2016-0798
-
High
OpenSSL Other Vulnerability (CVE-2016-0797)
CVE-2016-0797
-
High
WildFly Application Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0793)
CVE-2016-0793
CWE-200
High
Jenkins Improper Input Validation Vulnerability (CVE-2016-0792)
CVE-2016-0792
CWE-20
High
Django Inefficient Algorithmic Complexity Vulnerability (CVE-2025-64460)
CVE-2025-64460
CWE-407
High
PostgreSQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-0773)
CVE-2016-0773
CWE-119
High
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0766)
CVE-2016-0766
CWE-264
High
Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10008)
CVE-2016-10008
CWE-138
High
Ruby on Rails Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-0752)
CVE-2016-0752
CWE-22
High
Ruby on Rails Resource Management Errors Vulnerability (CVE-2016-0751)
CVE-2016-0751
-
High
Apache Traffic Server Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2025-65114)
CVE-2025-65114
-
High
Nginx Other Vulnerability (CVE-2016-0742)
CVE-2016-0742
-
High
Apache HTTP Server Cryptographic Issues Vulnerability (CVE-2016-0736)
CVE-2016-0736
-
High
Envoy Proxy Improper Null Termination Vulnerability (CVE-2025-66220)
CVE-2025-66220
CWE-170
High
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0714)
CVE-2016-0714
CWE-264
High
XWikiplatform Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2025-66473)
CVE-2025-66473
CWE-770
High
Jenkins Improper Resource Shutdown or Release Vulnerability (CVE-2025-67635)
CVE-2025-67635
CWE-404
High
Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10007)
CVE-2016-10007
CWE-138
High
Django Inefficient Algorithmic Complexity Vulnerability (CVE-2025-64458)
CVE-2025-64458
CWE-407
High
Envoy Proxy NULL Pointer Dereference Vulnerability (CVE-2025-62409)
CVE-2025-62409
CWE-476
High
PHP Numeric Errors Vulnerability (CVE-2016-10158)
CVE-2016-10158
-
High
Riot.js Resource Management Errors Vulnerability (CVE-2016-10527)
CVE-2016-10527
-
High
ATutor Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10400)
CVE-2016-10400
CWE-22
High
PHP Improper Input Validation Vulnerability (CVE-2016-10397)
CVE-2016-10397
CWE-20
High
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10378)
CVE-2016-10378
CWE-138
High
Phusion Passenger Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-10345)
CVE-2016-10345
CWE-264
High
PHP NULL Pointer Dereference Vulnerability (CVE-2016-10162)
CVE-2016-10162
CWE-476
High
PHP Out-of-bounds Read Vulnerability (CVE-2016-10161)
CVE-2016-10161
CWE-125
High
Envoy Proxy Use After Free Vulnerability (CVE-2025-62504)
CVE-2025-62504
CWE-416
High
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-10159)
CVE-2016-10159
CWE-190
High