Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Known Vulnerabilities

This page lists 13509 vulnerabilities in this category.

Critical: 1465 High: 3387 Medium: 7907 Low: 748 Information: 2
Vulnerability Name
CVE
CWE
Severity
Drupal Improper Access Control Vulnerability (CVE-2016-3162)
CVE-2016-3162
CWE-284
High
Drupal 7PK - Security Features Vulnerability (CVE-2016-3163)
CVE-2016-3163
-
High
Drupal Other Vulnerability (CVE-2016-3164)
CVE-2016-3164
-
High
phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-16650)
CVE-2018-16650
CWE-352
High
WordPress Other Vulnerability (CVE-2016-2222)
CVE-2016-2222
-
High
Ruby on Rails CVE-2019-5418 Vulnerability (CVE-2019-5418)
CVE-2019-5418
-
High
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2016-2161)
CVE-2016-2161
CWE-20
High
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-2041)
CVE-2016-2041
-
High
Jboss EAP Improper Input Validation Vulnerability (CVE-2020-1757)
CVE-2020-1757
CWE-20
High
Undertow Improper Input Validation Vulnerability (CVE-2020-1757)
CVE-2020-1757
CWE-20
High
Moodle Improper Input Validation Vulnerability (CVE-2020-1756)
CVE-2020-1756
CWE-20
High
Ruby on Rails Improper Input Validation Vulnerability (CVE-2016-2098)
CVE-2016-2098
CWE-20
High
OpenSSL Numeric Errors Vulnerability (CVE-2016-2105)
CVE-2016-2105
-
High
MySQL Numeric Errors Vulnerability (CVE-2016-2105)
CVE-2016-2105
-
High
OpenSSL Numeric Errors Vulnerability (CVE-2016-2106)
CVE-2016-2106
-
High
Ruby on Rails Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-5419)
CVE-2019-5419
CWE-770
High
OpenSSL Resource Management Errors Vulnerability (CVE-2016-2109)
CVE-2016-2109
-
High
ReviveAdserver Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability (CVE-2019-5440)
CVE-2019-5440
CWE-338
High
SharePoint Download of Code Without Integrity Check Vulnerability (CVE-2020-1595)
CVE-2020-1595
CWE-494
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-2157)
CVE-2016-2157
CWE-352
High
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2176)
CVE-2016-2176
CWE-119
High
WordPress Other Vulnerability (CVE-2016-2221)
CVE-2016-2221
-
High
Oracle HTTP Server Uncontrolled Search Path Element Vulnerability (CVE-2019-5443)
CVE-2019-5443
CWE-427
High
SharePoint Download of Code Without Integrity Check Vulnerability (CVE-2020-1576)
CVE-2020-1576
CWE-494
High
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2018-16890)
CVE-2018-16890
CWE-125
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-16854)
CVE-2018-16854
CWE-352
High
OpenSSL Resource Management Errors Vulnerability (CVE-2016-2179)
CVE-2016-2179
-
High
OpenSSL Out-of-bounds Read Vulnerability (CVE-2016-2180)
CVE-2016-2180
CWE-125
High
OpenSSL Numeric Errors Vulnerability (CVE-2016-2181)
CVE-2016-2181
-
High
Nexus Repository Manager Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2019-5475)
CVE-2019-5475
CWE-138
High
Nginx Uncontrolled Resource Consumption Vulnerability (CVE-2018-16844)
CVE-2018-16844
CWE-400
High
Nginx Uncontrolled Resource Consumption Vulnerability (CVE-2018-16843)
CVE-2018-16843
CWE-400
High
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
CVE-2016-2183
CWE-200
High
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
CVE-2016-2183
CWE-200
High
Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
CVE-2016-2183
CWE-200
High
PostgreSQL 7PK - Security Features Vulnerability (CVE-2016-2193)
CVE-2016-2193
-
High
MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-2325)
CVE-2012-2325
CWE-138
High
CakePHP 1.3.5 / 1.2.8 unserialize() vulnerability
CVE-2010-4335
CWE-20
High
JBoss Application Server Improper Privilege Management Vulnerability (CVE-2012-2312)
CVE-2012-2312
CWE-269
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29210)
CVE-2023-29210
CWE-94
High
Microsoft SQL Server CVE-2023-29356 Vulnerability (CVE-2023-29356)
CVE-2023-29356
-
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2024-38024)
CVE-2024-38024
CWE-502
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2024-38094)
CVE-2024-38094
CWE-502
High
SharePoint CVE-2024-38227 Vulnerability (CVE-2024-38227)
CVE-2024-38227
-
High
Microsoft SQL Server CVE-2023-29349 Vulnerability (CVE-2023-29349)
CVE-2023-29349
-
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29214)
CVE-2023-29214
CWE-94
High
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-29213)
CVE-2023-29213
CWE-352
High
SharePoint CVE-2024-38228 Vulnerability (CVE-2024-38228)
CVE-2024-38228
-
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29212)
CVE-2023-29212
CWE-94
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29211)
CVE-2023-29211
CWE-94
High
Oracle Database Server CVE-2010-2390 Vulnerability (CVE-2010-2390)
CVE-2010-2390
-
High
Moodle Incomplete Cleanup Vulnerability (CVE-2024-38275)
CVE-2024-38275
CWE-459
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-38276)
CVE-2024-38276
CWE-352
High
SharePoint CVE-2024-38018 Vulnerability (CVE-2024-38018)
CVE-2024-38018
-
High
Apache Tomcat Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-38286)
CVE-2024-38286
CWE-770
High
Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2006-1049)
CVE-2006-1049
CWE-138
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29209)
CVE-2023-29209
CWE-94
High
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-38472)
CVE-2024-38472
CWE-918
High
Joomla Other Vulnerability (CVE-2006-1028)
CVE-2006-1028
-
High
Apache HTTP Server Improper Encoding or Escaping of Output Vulnerability (CVE-2024-38473)
CVE-2024-38473
CWE-116
High
WordPress Other Vulnerability (CVE-2006-1012)
CVE-2006-1012
-
High
Apache HTTP Server NULL Pointer Dereference Vulnerability (CVE-2024-38477)
CVE-2024-38477
CWE-476
High
Apache Traffic Server CVE-2024-38479 Vulnerability (CVE-2024-38479)
CVE-2024-38479
-
High
GeoServer Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2024-38524)
CVE-2024-38524
CWE-200
High
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-29208)
CVE-2023-29208
CWE-668
High
Django Improper Handling of Length Parameter Inconsistency Vulnerability (CVE-2024-38875)
CVE-2024-38875
CWE-130
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2024-38023)
CVE-2024-38023
CWE-502
High
XWiki Other Vulnerability (CVE-2023-29507)
CVE-2023-29507
-
High
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2024-39573)
CVE-2024-39573
CWE-20
High
e107 Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-2099)
CVE-2010-2099
CWE-264
High
CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-1931)
CVE-2010-1931
CWE-138
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29522)
CVE-2023-29522
CWE-138
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29521)
CVE-2023-29521
CWE-138
High
Oracle Database Server CVE-2006-1877 Vulnerability (CVE-2006-1877)
CVE-2006-1877
-
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29519)
CVE-2023-29519
CWE-138
High