Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
AbanteCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10755)
CVE-2016-10755
CWE-138
High
Perl Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-1238)
CVE-2016-1238
CWE-264
High
Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-1240)
CVE-2016-1240
CWE-20
High
Nginx Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2016-1247)
CVE-2016-1247
CWE-59
High
IBM WebSEAL Improper Restriction of XML External Entity Reference Vulnerability (CVE-2019-4707)
CVE-2019-4707
CWE-611
High
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-1499)
CVE-2016-1499
CWE-200
High
Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2020-1967)
CVE-2020-1967
CWE-476
High
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2020-1967)
CVE-2020-1967
CWE-476
High
MySQL NULL Pointer Dereference Vulnerability (CVE-2020-1967)
CVE-2020-1967
CWE-476
High
Python NULL Pointer Dereference Vulnerability (CVE-2019-5010)
CVE-2019-5010
CWE-476
High
PHP Numeric Errors Vulnerability (CVE-2016-1904)
CVE-2016-1904
-
High
Apache HTTP Server Session Fixation Vulnerability (CVE-2018-17199)
CVE-2018-17199
CWE-384
High
Piwigo Improper Access Control Vulnerability (CVE-2016-10085)
CVE-2016-10085
CWE-284
High
IBM RTC Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-4252)
CVE-2019-4252
CWE-22
High
GlassFish Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-1950)
CVE-2016-1950
CWE-119
High
WildFly Application Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0793)
CVE-2016-0793
CWE-200
High
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0714)
CVE-2016-0714
CWE-264
High
Apache HTTP Server Cryptographic Issues Vulnerability (CVE-2016-0736)
CVE-2016-0736
-
High
Nginx Other Vulnerability (CVE-2016-0742)
CVE-2016-0742
-
High
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2019-3894)
CVE-2019-3894
CWE-264
High
Ruby on Rails Resource Management Errors Vulnerability (CVE-2016-0751)
CVE-2016-0751
-
High
Ruby on Rails Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-0752)
CVE-2016-0752
CWE-22
High
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-23127)
CVE-2020-23127
CWE-352
High
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0766)
CVE-2016-0766
CWE-264
High
PostgreSQL Improper Access Control Vulnerability (CVE-2016-0768)
CVE-2016-0768
CWE-284
High
PostgreSQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-0773)
CVE-2016-0773
CWE-119
High
IBM WebSEAL Improper Input Validation Vulnerability (CVE-2019-4036)
CVE-2019-4036
CWE-20
High
IBM WebSEAL CVE-2019-4135 Vulnerability (CVE-2019-4135)
CVE-2019-4135
-
High
Jenkins Improper Input Validation Vulnerability (CVE-2016-0792)
CVE-2016-0792
CWE-20
High
OpenSSL Other Vulnerability (CVE-2016-0797)
CVE-2016-0797
-
High
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-17858)
CVE-2018-17858
CWE-352
High
OpenSSL Resource Management Errors Vulnerability (CVE-2016-0798)
CVE-2016-0798
-
High
Jenkins Improper Input Validation Vulnerability (CVE-2018-1999002)
CVE-2018-1999002
CWE-20
High
Jenkins Improper Input Validation Vulnerability (CVE-2018-1999001)
CVE-2018-1999001
CWE-20
High
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10002)
CVE-2016-10002
CWE-200
High
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10003)
CVE-2016-10003
CWE-200
High
Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10007)
CVE-2016-10007
CWE-138
High
Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10008)
CVE-2016-10008
CWE-138
High
IBM WebSEAL CVE-2019-4145 Vulnerability (CVE-2019-4145)
CVE-2019-4145
-
High
osCommerce Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-18573)
CVE-2018-18573
CWE-94
High
osCommerce Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-18572)
CVE-2018-18572
CWE-434
High
MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10037)
CVE-2016-10037
CWE-22
High
MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10038)
CVE-2016-10038
CWE-22
High
MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10039)
CVE-2016-10039
CWE-22
High
Vanilla Forums Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10073)
CVE-2016-10073
CWE-200
High
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-1927)
CVE-2016-1927
-
High
Sqlite Use After Free Vulnerability (CVE-2019-5018)
CVE-2019-5018
CWE-416
High
Drupal Improper Access Control Vulnerability (CVE-2016-3165)
CVE-2016-3165
CWE-284
High
SharePoint Download of Code Without Integrity Check Vulnerability (CVE-2020-1453)
CVE-2020-1453
CWE-494
High
Nexus Repository Manager Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') Vulnerability (CVE-2018-16621)
CVE-2018-16621
CWE-138
High
Nexus Repository Manager Incorrect Authorization Vulnerability (CVE-2018-16620)
CVE-2018-16620
CWE-863
High
Oracle Database Server Improper Input Validation Vulnerability (CVE-2016-2381)
CVE-2016-2381
CWE-20
High
Perl Improper Input Validation Vulnerability (CVE-2016-2381)
CVE-2016-2381
CWE-20
High
Ruby on Rails Deserialization of Untrusted Data Vulnerability (CVE-2018-16476)
CVE-2018-16476
CWE-502
High
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2512)
CVE-2016-2512
CWE-707
High
ATutor Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-2539)
CVE-2016-2539
CWE-352
High
Ruby CVE-2018-16396 Vulnerability (CVE-2018-16396)
CVE-2018-16396
-
High
Squid Improper Input Validation Vulnerability (CVE-2016-2569)
CVE-2016-2569
CWE-20
High
Squid Improper Input Validation Vulnerability (CVE-2016-2570)
CVE-2016-2570
CWE-20
High
Squid Improper Input Validation Vulnerability (CVE-2016-2571)
CVE-2016-2571
CWE-20
High
Squid Improper Input Validation Vulnerability (CVE-2016-2572)
CVE-2016-2572
CWE-20
High
SharePoint CVE-2020-1460 Vulnerability (CVE-2020-1460)
CVE-2020-1460
-
High
SharePoint Download of Code Without Integrity Check Vulnerability (CVE-2020-1452)
CVE-2020-1452
CWE-494
High
phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2018-16651)
CVE-2018-16651
CWE-1236
High
IBM WebSEAL 7PK - Security Features Vulnerability (CVE-2016-3025)
CVE-2016-3025
-
High
e107 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-16388)
CVE-2018-16388
CWE-434
High
Drupal Deserialization of Untrusted Data Vulnerability (CVE-2019-6338)
CVE-2019-6338
CWE-502
High
Drupal Deserialization of Untrusted Data Vulnerability (CVE-2019-6340)
CVE-2019-6340
CWE-502
High
e107 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-15901)
CVE-2018-15901
CWE-352
High
Joomla CVE-2018-15881 Vulnerability (CVE-2018-15881)
CVE-2018-15881
-
High
Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-3092)
CVE-2016-3092
CWE-20
High
MongoDb Uncontrolled Resource Consumption Vulnerability (CVE-2016-3104)
CVE-2016-3104
CWE-400
High
Jboss EAP Improper Input Validation Vulnerability (CVE-2016-3110)
CVE-2016-3110
CWE-20
High
WebLogic CVE-2018-15756 Vulnerability (CVE-2018-15756)
CVE-2018-15756
-
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-3142)
CVE-2016-3142
CWE-119
High
«
1
...
43
44
45
...
181
»
