🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Invicti vs. Competitors
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
MSSP
Documentation
Vulnerability Database
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Known Vulnerabilities
This page lists
14981 vulnerabilities
in this category.
Critical: 1612
High: 4015
Medium: 8569
Low: 783
Information: 2
Vulnerability Name
CVE
CWE
Severity
Perl CVE-2016-6185 Vulnerability (CVE-2016-6185)
CVE-2016-6185
-
High
PHP CVE-2016-6174 Vulnerability (CVE-2016-6174)
CVE-2016-6174
-
High
WordPress CVE-2016-5839 Vulnerability (CVE-2016-5839)
CVE-2016-5839
-
High
WordPress Credentials Management Errors Vulnerability (CVE-2016-5838)
CVE-2016-5838
-
High
WordPress CVE-2016-5837 Vulnerability (CVE-2016-5837)
CVE-2016-5837
-
High
Squid Out-of-bounds Write Vulnerability (CVE-2019-12527)
CVE-2019-12527
CWE-787
High
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5835)
CVE-2016-5835
CWE-200
High
Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2019-12854)
CVE-2019-12854
CWE-119
High
WordPress CVE-2016-5832 Vulnerability (CVE-2016-5832)
CVE-2016-5832
-
High
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-12528)
CVE-2019-12528
CWE-200
High
SharePoint CVE-2020-17089 Vulnerability (CVE-2020-17089)
CVE-2020-17089
-
High
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-12830)
CVE-2019-12830
CWE-707
High
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5739)
CVE-2016-5739
CWE-200
High
MyBB Improper Input Validation Vulnerability (CVE-2019-12831)
CVE-2019-12831
CWE-20
High
phpMyAdmin Resource Management Errors Vulnerability (CVE-2016-5706)
CVE-2016-5706
-
High
PHP Improper Access Control Vulnerability (CVE-2016-5385)
CVE-2016-5385
CWE-284
High
PrestaShop Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-13461)
CVE-2019-13461
CWE-639
High
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-6289)
CVE-2016-6289
CWE-190
High
Liferay Portal Deserialization of Untrusted Data Vulnerability (CVE-2020-15842)
CVE-2020-15842
CWE-502
High
Werkzeug WSGI Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-14322)
CVE-2019-14322
CWE-22
High
EspoCRM Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2019-14351)
CVE-2019-14351
CWE-307
High
Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4472)
CVE-2016-4472
CWE-119
High
Nginx Other Vulnerability (CVE-2016-4450)
CVE-2016-4450
-
High
Sqlite Out-of-bounds Read Vulnerability (CVE-2021-31239)
CVE-2021-31239
CWE-125
High
Liferay DXP Deserialization of Untrusted Data Vulnerability (CVE-2020-15842)
CVE-2020-15842
CWE-502
High
Joomla CVE-2019-14654 Vulnerability (CVE-2019-14654)
CVE-2019-14654
-
High
Squid Insufficient Verification of Data Authenticity Vulnerability (CVE-2016-4553)
CVE-2016-4553
CWE-345
High
PHP Other Vulnerability (CVE-2016-4343)
CVE-2016-4343
-
High
Liferay Portal CVE-2020-15841 Vulnerability (CVE-2020-15841)
CVE-2020-15841
-
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4342)
CVE-2016-4342
CWE-119
High
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-4319)
CVE-2016-4319
CWE-352
High
Django Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-31542)
CVE-2021-31542
CWE-434
High
osTicket Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2019-14749)
CVE-2019-14749
CWE-1236
High
SharePoint Origin Validation Error Vulnerability (CVE-2020-16951)
CVE-2020-16951
CWE-346
High
Squid Insufficient Verification of Data Authenticity Vulnerability (CVE-2016-4554)
CVE-2016-4554
CWE-345
High
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-5096)
CVE-2016-5096
CWE-190
High
Rukovoditel Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-30224)
CVE-2021-30224
CWE-352
High
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-5095)
CVE-2016-5095
CWE-190
High
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-5094)
CVE-2016-5094
CWE-190
High
PHP Out-of-bounds Read Vulnerability (CVE-2016-5093)
CVE-2016-5093
CWE-125
High
SharePoint Origin Validation Error Vulnerability (CVE-2020-16952)
CVE-2020-16952
CWE-346
High
TYPO3 7PK - Security Features Vulnerability (CVE-2016-5091)
CVE-2016-5091
-
High
Django Uncontrolled Resource Consumption Vulnerability (CVE-2019-14232)
CVE-2019-14232
CWE-400
High
Apache Tomcat Improper Handling of Exceptional Conditions Vulnerability (CVE-2021-30639)
CVE-2021-30639
CWE-755
High
Django Uncontrolled Recursion Vulnerability (CVE-2019-14235)
CVE-2019-14235
CWE-674
High
Apache HTTP Server Improper Access Control Vulnerability (CVE-2016-4979)
CVE-2016-4979
CWE-284
High
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2016-4978)
CVE-2016-4978
CWE-502
High
Dot CMS Other Vulnerability (CVE-2016-4803)
CVE-2016-4803
-
High
Django Uncontrolled Resource Consumption Vulnerability (CVE-2019-14233)
CVE-2019-14233
CWE-400
High
CakePHP Improper Input Validation Vulnerability (CVE-2016-4793)
CVE-2016-4793
CWE-20
High
Squid Other Vulnerability (CVE-2016-4556)
CVE-2016-4556
-
High
Squid Improper Input Validation Vulnerability (CVE-2016-4555)
CVE-2016-4555
CWE-20
High
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-6211)
CVE-2016-6211
CWE-264
High
Squid Improper Input Validation Vulnerability (CVE-2019-12520)
CVE-2019-12520
CWE-20
High
Liferay Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2019-11444)
CVE-2019-11444
CWE-138
High
PostgreSQL Improper Access Control Vulnerability (CVE-2016-7048)
CVE-2016-7048
CWE-284
High
PHP Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2016-7125)
CVE-2016-7125
CWE-138
High
Jboss EAP Permission Issues Vulnerability (CVE-2016-7066)
CVE-2016-7066
-
High
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2016-7065)
CVE-2016-7065
CWE-502
High
OpenSSL Improper Access Control Vulnerability (CVE-2016-7054)
CVE-2016-7054
CWE-284
High
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2016-7053)
CVE-2016-7053
CWE-476
High
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2016-7052)
CVE-2016-7052
CWE-476
High
PHPFusion Code Execution Vulnerability (CVE-2019-12099)
CVE-2019-12099
-
High
TYPO3 Improper Input Validation Vulnerability (CVE-2019-11832)
CVE-2019-11832
CWE-20
High
ATutor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-12169)
CVE-2019-12169
CWE-434
High
Moodle Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2016-7038)
CVE-2016-7038
CWE-640
High
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-6896)
CVE-2016-6896
CWE-22
High
Mailman Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-6893)
CVE-2016-6893
CWE-352
High
Apache Tomcat Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-6817)
CVE-2016-6817
CWE-119
High
Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-6816)
CVE-2016-6816
CWE-20
High
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-19215)
CVE-2020-19215
CWE-138
High
PHP NULL Pointer Dereference Vulnerability (CVE-2016-7130)
CVE-2016-7130
CWE-476
High
Jboss EAP CVE-2016-6796 Vulnerability (CVE-2016-6796)
CVE-2016-6796
-
High
SharePoint NULL Pointer Dereference Vulnerability (CVE-2020-1069)
CVE-2020-1069
CWE-476
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-7418)
CVE-2016-7418
CWE-119
High
«
1
...
49
50
51
...
200
»