Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Known Vulnerabilities

This page lists 13509 vulnerabilities in this category.

Critical: 1465 High: 3387 Medium: 7907 Low: 748 Information: 2
Vulnerability Name
CVE
CWE
Severity
WordPress CVE-2008-6767 Vulnerability (CVE-2008-6767)
CVE-2008-6767
-
Critical
MODX Improper Restriction of XML External Entity Reference Vulnerability (CVE-2020-25911)
CVE-2020-25911
CWE-611
Critical
Oracle Database Server CVE-2016-0499 Vulnerability (CVE-2016-0499)
CVE-2016-0499
-
Critical
Drupal Configuration Vulnerability (CVE-2008-6171)
CVE-2008-6171
-
Critical
PrestaShop CVE-2008-5791 Vulnerability (CVE-2008-5791)
CVE-2008-5791
-
Critical
WebLogic CVE-2016-0638 Vulnerability (CVE-2016-0638)
CVE-2016-0638
-
Critical
MySQL CVE-2016-0639 Vulnerability (CVE-2016-0639)
CVE-2016-0639
-
Critical
osTicket Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-24881)
CVE-2020-24881
CWE-918
Critical
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-24407)
CVE-2020-24407
CWE-434
Critical
phpList Incorrect Comparison Vulnerability (CVE-2020-23361)
CVE-2020-23361
CWE-697
Critical
Joomla Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') Vulnerability (CVE-2016-10033)
CVE-2016-10033
CWE-707
Critical
osCommerce Incorrect Comparison Vulnerability (CVE-2020-23360)
CVE-2020-23360
CWE-697
Critical
WeBid Incorrect Comparison Vulnerability (CVE-2020-23359)
CVE-2020-23359
CWE-697
Critical
OpenSSL Other Vulnerability (CVE-2016-0705)
CVE-2016-0705
-
Critical
MySQL Other Vulnerability (CVE-2016-0705)
CVE-2016-0705
-
Critical
Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-0718)
CVE-2016-0718
CWE-119
Critical
Nginx Other Vulnerability (CVE-2016-0746)
CVE-2016-0746
-
Critical
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0788)
CVE-2016-0788
CWE-264
Critical
Python Numeric Errors Vulnerability (CVE-2008-5031)
CVE-2008-5031
-
Critical
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0791)
CVE-2016-0791
CWE-200
Critical
WordPress Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2008-4796)
CVE-2008-4796
CWE-138
Critical
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-0799)
CVE-2016-0799
CWE-119
Critical
MyBB CVE-2020-22612 Vulnerability (CVE-2020-22612)
CVE-2020-22612
-
Critical
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-4769)
CVE-2008-4769
CWE-22
Critical
OpenSSL Out-of-bounds Write Vulnerability (CVE-2016-6303)
CVE-2016-6303
CWE-787
Critical
PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-15160)
CVE-2020-15160
CWE-138
Critical
Apache Traffic Server CVE-2015-5206 Vulnerability (CVE-2015-5206)
CVE-2015-5206
-
Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11820)
CVE-2020-11820
CWE-138
Critical
Oracle Database Server CVE-2006-5338 Vulnerability (CVE-2006-5338)
CVE-2006-5338
-
Critical
Oracle Database Server CVE-2006-5337 Vulnerability (CVE-2006-5337)
CVE-2006-5337
-
Critical
Oracle Database Server CVE-2006-5336 Vulnerability (CVE-2006-5336)
CVE-2006-5336
-
Critical
Oracle Database Server CVE-2006-5335 Vulnerability (CVE-2006-5335)
CVE-2006-5335
-
Critical
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-17485)
CVE-2017-17485
CWE-502
Critical
Oracle Database Server CVE-2006-5332 Vulnerability (CVE-2006-5332)
CVE-2006-5332
-
Critical
Nexus Repository Manager Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2017-17717)
CVE-2017-17717
CWE-327
Critical
Squid Integer Overflow or Wraparound Vulnerability (CVE-2020-11945)
CVE-2020-11945
CWE-190
Critical
Ruby Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2017-17790)
CVE-2017-17790
CWE-138
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-17897)
CVE-2017-17897
CWE-138
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-17899)
CVE-2017-17899
CWE-138
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-17900)
CVE-2017-17900
CWE-138
Critical
Rukovoditel Improper Input Validation Vulnerability (CVE-2020-11819)
CVE-2020-11819
CWE-20
Critical
Oracle Database Server CVE-2006-5341 Vulnerability (CVE-2006-5341)
CVE-2006-5341
-
Critical
Moodle Improper Input Validation Vulnerability (CVE-2006-4936)
CVE-2006-4936
CWE-20
Critical
Moodle Improper Input Validation Vulnerability (CVE-2006-4935)
CVE-2006-4935
CWE-20
Critical
PHP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2006-4812)
CVE-2006-4812
CWE-94
Critical
Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11817)
CVE-2020-11817
CWE-434
Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11816)
CVE-2020-11816
CWE-138
Critical
Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11815)
CVE-2020-11815
CWE-434
Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11812)
CVE-2020-11812
CWE-138
Critical
qdPM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11811)
CVE-2020-11811
CWE-434
Critical
Sqlite Use After Free Vulnerability (CVE-2020-11656)
CVE-2020-11656
CWE-416
Critical
PHP Other Vulnerability (CVE-2006-4485)
CVE-2006-4485
-
Critical
PHP Other Vulnerability (CVE-2006-4483)
CVE-2006-4483
-
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2006-4482)
CVE-2006-4482
CWE-119
Critical
phpMyAdmin CVE-2017-18264 Vulnerability (CVE-2017-18264)
CVE-2017-18264
-
Critical
Oracle Database Server CVE-2006-5339 Vulnerability (CVE-2006-5339)
CVE-2006-5339
-
Critical
Apache HTTP Server Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2020-11984)
CVE-2020-11984
CWE-120
Critical
Nginx Integer Overflow or Wraparound Vulnerability (CVE-2017-20005)
CVE-2017-20005
CWE-190
Critical
Oracle Application Server Other Vulnerability (CVE-2006-5361)
CVE-2006-5361
-
Critical
Roundcube Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-12640)
CVE-2020-12640
CWE-22
Critical
MongoDb CVE-2017-15535 Vulnerability (CVE-2017-15535)
CVE-2017-15535
-
Critical
osTicket Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-15580)
CVE-2017-15580
CWE-434
Critical
Joomla Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2024-27185)
CVE-2024-27185
-
Critical
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-16510)
CVE-2017-16510
CWE-138
Critical
Contao Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-16558)
CVE-2017-16558
CWE-138
Critical
Joomla Improper Authentication Vulnerability (CVE-2017-16634)
CVE-2017-16634
CWE-287
Critical
MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-16780)
CVE-2017-16780
CWE-352
Critical
Ruby on Rails CVE-2024-28103 Vulnerability (CVE-2024-28103)
CVE-2024-28103
-
Critical
Oracle Application Server Other Vulnerability (CVE-2006-5366)
CVE-2006-5366
-
Critical
Oracle Application Server Other Vulnerability (CVE-2006-5365)
CVE-2006-5365
-
Critical
Oracle Application Server Other Vulnerability (CVE-2006-5362)
CVE-2006-5362
-
Critical
Oracle Application Server Other Vulnerability (CVE-2006-5360)
CVE-2006-5360
-
Critical
Oracle Database Server Other Vulnerability (CVE-2006-5343)
CVE-2006-5343
-
Critical
Oracle Application Server CVE-2006-5359 Vulnerability (CVE-2006-5359)
CVE-2006-5359
-
Critical
Oracle Application Server Other Vulnerability (CVE-2006-5358)
CVE-2006-5358
-
Critical