Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Known Vulnerabilities

This page lists 13509 vulnerabilities in this category.

Critical: 1465 High: 3387 Medium: 7907 Low: 748 Information: 2
Vulnerability Name
CVE
CWE
Severity
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2024-40597)
CVE-2024-40597
CWE-200
High
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2005-4875)
CVE-2005-4875
CWE-200
High
Jenkins Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-27901)
CVE-2023-27901
CWE-770
High
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2005-4836)
CVE-2005-4836
CWE-200
High
Jenkins Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-27900)
CVE-2023-27900
CWE-770
High
Jenkins Incorrect Authorization Vulnerability (CVE-2023-27899)
CVE-2023-27899
CWE-863
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29523)
CVE-2023-29523
CWE-138
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29524)
CVE-2023-29524
CWE-138
High
Django CVE-2024-41990 Vulnerability (CVE-2024-41990)
CVE-2024-41990
-
High
Envoy Proxy Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2024-32976)
CVE-2024-32976
CWE-835
High
SharePoint CVE-2023-33159 Vulnerability (CVE-2023-33159)
CVE-2023-33159
-
High
SharePoint CVE-2023-33157 Vulnerability (CVE-2023-33157)
CVE-2023-33157
-
High
XWikiplatform Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-31988)
CVE-2024-31988
CWE-352
High
XWikiplatform Missing Authorization Vulnerability (CVE-2024-31997)
CVE-2024-31997
CWE-862
High
WeBid Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2024-32166)
CVE-2024-32166
CWE-639
High
SharePoint CVE-2023-33134 Vulnerability (CVE-2023-33134)
CVE-2023-33134
-
High
SharePoint CVE-2023-33130 Vulnerability (CVE-2023-33130)
CVE-2023-33130
-
High
Apache HTTP Server Numeric Errors Vulnerability (CVE-2006-3747)
CVE-2006-3747
-
High
Envoy Proxy Reachable Assertion Vulnerability (CVE-2024-32475)
CVE-2024-32475
CWE-617
High
Envoy Proxy Use After Free Vulnerability (CVE-2024-32974)
CVE-2024-32974
CWE-416
High
Craft CMS Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-32679)
CVE-2023-32679
CWE-138
High
Envoy Proxy Integer Underflow (Wrap or Wraparound) Vulnerability (CVE-2024-32975)
CVE-2024-32975
CWE-191
High
osTicket Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-0605)
CVE-2010-0605
CWE-138
High
XWikiplatform Missing Authorization Vulnerability (CVE-2024-31987)
CVE-2024-31987
CWE-862
High
IBMHttpServer Observable Discrepancy Vulnerability (CVE-2023-32342)
CVE-2023-32342
CWE-203
High
SharePoint CVE-2024-32987 Vulnerability (CVE-2024-32987)
CVE-2024-32987
-
High
CubeCart Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2024-33438)
CVE-2024-33438
CWE-434
High
XWiki Incorrect Authorization Vulnerability (CVE-2023-32069)
CVE-2023-32069
CWE-863
High
Microsoft SQL Server CVE-2023-32028 Vulnerability (CVE-2023-32028)
CVE-2023-32028
-
High
Microsoft SQL Server CVE-2023-32027 Vulnerability (CVE-2023-32027)
CVE-2023-32027
-
High
Joomla Other Vulnerability (CVE-2006-3481)
CVE-2006-3481
-
High
OpenSSL Cryptographic Issues Vulnerability (CVE-2010-0742)
CVE-2010-0742
-
High
Microsoft SQL Server CVE-2023-32026 Vulnerability (CVE-2023-32026)
CVE-2023-32026
-
High
Microsoft SQL Server CVE-2023-32025 Vulnerability (CVE-2023-32025)
CVE-2023-32025
-
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-34001)
CVE-2024-34001
CWE-352
High
Oracle Database Server CVE-2010-0853 Vulnerability (CVE-2010-0853)
CVE-2010-0853
-
High
SharePoint CVE-2023-33160 Vulnerability (CVE-2023-33160)
CVE-2023-33160
-
High
SharePoint CVE-2023-33165 Vulnerability (CVE-2023-33165)
CVE-2023-33165
-
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-34007)
CVE-2024-34007
CWE-352
High
Apache Traffic Server CVE-2023-33933 Vulnerability (CVE-2023-33933)
CVE-2023-33933
-
High
Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2006-4475)
CVE-2006-4475
CWE-264
High
SharePoint CVE-2024-30043 Vulnerability (CVE-2024-30043)
CVE-2024-30043
-
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2024-30044)
CVE-2024-30044
CWE-502
High
Joomla CVE-2006-4472 Vulnerability (CVE-2006-4472)
CVE-2006-4472
-
High
SharePoint CVE-2024-30100 Vulnerability (CVE-2024-30100)
CVE-2024-30100
-
High
Zenphoto Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-4566)
CVE-2009-4566
CWE-138
High
Joomla CVE-2006-4470 Vulnerability (CVE-2006-4470)
CVE-2006-4470
-
High
Joomla CVE-2006-4469 Vulnerability (CVE-2006-4469)
CVE-2006-4469
-
High
Envoy Proxy Detection of Error Condition Without Action Vulnerability (CVE-2024-30255)
CVE-2024-30255
CWE-390
High
Contao Insufficient Session Expiration Vulnerability (CVE-2024-30262)
CVE-2024-30262
CWE-613
High
Chamilo Incorrect Authorization Vulnerability (CVE-2024-30616)
CVE-2024-30616
CWE-863
High
PHP Other Vulnerability (CVE-2006-4433)
CVE-2006-4433
-
High
TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-4855)
CVE-2009-4855
CWE-138
High
XWikiplatform Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-31986)
CVE-2024-31986
CWE-352
High
Chamilo CVE-2024-30619 Vulnerability (CVE-2024-30619)
CVE-2024-30619
-
High
Dolibarr Files or Directories Accessible to External Parties Vulnerability (CVE-2023-33568)
CVE-2023-33568
CWE-552
High
Apache Traffic Server CVE-2024-31309 Vulnerability (CVE-2024-31309)
CVE-2024-31309
-
High
Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-5045)
CVE-2009-5045
CWE-200
High
Ruby Improper Input Validation Vulnerability (CVE-2009-5147)
CVE-2009-5147
CWE-20
High
XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-31465)
CVE-2024-31465
CWE-94
High
Dolibarr Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-31503)
CVE-2024-31503
CWE-352
High
XWikiplatform Missing Authorization Vulnerability (CVE-2024-31981)
CVE-2024-31981
CWE-862
High
Ruby on Rails CVE-2006-4112 Vulnerability (CVE-2006-4112)
CVE-2006-4112
-
High
Ruby on Rails Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2006-4111)
CVE-2006-4111
CWE-94
High
XWikiplatform Missing Authorization Vulnerability (CVE-2024-31983)
CVE-2024-31983
CWE-862
High
XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-31984)
CVE-2024-31984
CWE-94
High
Oracle Database Server CVE-2010-0860 Vulnerability (CVE-2010-0860)
CVE-2010-0860
-
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-34008)
CVE-2024-34008
CWE-352
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29525)
CVE-2023-29525
CWE-138
High
Apache Tomcat Uncontrolled Resource Consumption Vulnerability (CVE-2024-34750)
CVE-2024-34750
CWE-400
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-30537)
CVE-2023-30537
CWE-94
High
WordPress Other Vulnerability (CVE-2006-2667)
CVE-2006-2667
-
High
Dolibarr Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2023-30253)
CVE-2023-30253
CWE-138
High
Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-30179)
CVE-2023-30179
CWE-94
High
MediaWiki Uncontrolled Resource Consumption Vulnerability (CVE-2024-34506)
CVE-2024-34506
CWE-400
High