Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Known Vulnerabilities

This page lists 13509 vulnerabilities in this category.

Critical: 1465 High: 3387 Medium: 7907 Low: 748 Information: 2
Vulnerability Name
CVE
CWE
Severity
Coppermine Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-3481)
CVE-2008-3481
CWE-94
High
Coppermine Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-3486)
CVE-2008-3486
CWE-22
High
Ruby Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3655)
CVE-2008-3655
CWE-264
High
Ruby Resource Management Errors Vulnerability (CVE-2008-3656)
CVE-2008-3656
-
High
Ruby Improper Input Validation Vulnerability (CVE-2008-3657)
CVE-2008-3657
CWE-20
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2008-3658)
CVE-2008-3658
CWE-119
High
XWiki Incorrect Authorization Vulnerability (CVE-2023-46244)
CVE-2023-46244
CWE-863
High
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-46242)
CVE-2023-46242
CWE-352
High
Oracle Database Server CVE-2007-3858 Vulnerability (CVE-2007-3858)
CVE-2007-3858
-
High
Werkzeug WSGI Out-of-bounds Write Vulnerability (CVE-2023-46136)
CVE-2023-46136
CWE-787
High
GibbonEdu Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-45880)
CVE-2023-45880
CWE-22
High
WebLogic CVE-2024-21234 Vulnerability (CVE-2024-21234)
CVE-2024-21234
-
High
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3747)
CVE-2008-3747
CWE-264
High
qdPM Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-45855)
CVE-2023-45855
CWE-22
High
Ampache Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3929)
CVE-2008-3929
CWE-59
High
MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-3965)
CVE-2008-3965
CWE-138
High
WebLogic CVE-2024-21260 Vulnerability (CVE-2024-21260)
CVE-2024-21260
-
High
MyBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3967)
CVE-2008-3967
CWE-264
High
MySQL CVE-2024-21272 Vulnerability (CVE-2024-21272)
CVE-2024-21272
-
High
WebLogic CVE-2024-21274 Vulnerability (CVE-2024-21274)
CVE-2024-21274
-
High
SharePoint CVE-2024-21318 Vulnerability (CVE-2024-21318)
CVE-2024-21318
-
High
SugarCRM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-46815)
CVE-2023-46815
CWE-434
High
XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-3296)
CVE-2008-3296
CWE-22
High
AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2024-21490)
CVE-2024-21490
CWE-1333
High
Python Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2008-3142)
CVE-2008-3142
CWE-120
High
WebLogic CVE-2024-21183 Vulnerability (CVE-2024-21183)
CVE-2024-21183
-
High
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-3997)
CVE-2007-3997
CWE-264
High
Oracle Database Server CVE-2024-21184 Vulnerability (CVE-2024-21184)
CVE-2024-21184
-
High
Ruby Numeric Errors Vulnerability (CVE-2008-2725)
CVE-2008-2725
-
High
Ruby Numeric Errors Vulnerability (CVE-2008-2726)
CVE-2008-2726
-
High
Lighttpd Other Vulnerability (CVE-2007-3949)
CVE-2007-3949
-
High
CubeCart Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2023-47675)
CVE-2023-47675
CWE-138
High
Opencart Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-47444)
CVE-2023-47444
CWE-94
High
Oracle Application Server Other Vulnerability (CVE-2007-3863)
CVE-2007-3863
-
High
Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-2999)
CVE-2008-2999
CWE-138
High
MyBB CVE-2008-3070 Vulnerability (CVE-2008-3070)
CVE-2008-3070
-
High
MyBB Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-3071)
CVE-2008-3071
CWE-22
High
Python Integer Overflow or Wraparound Vulnerability (CVE-2008-3143)
CVE-2008-3143
CWE-190
High
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46816)
CVE-2023-46816
CWE-94
High
Oracle Application Server Other Vulnerability (CVE-2007-3862)
CVE-2007-3862
-
High
Oracle Application Server Other Vulnerability (CVE-2007-3861)
CVE-2007-3861
-
High
Oracle Application Server Other Vulnerability (CVE-2007-3859)
CVE-2007-3859
-
High
Perl Out-of-bounds Write Vulnerability (CVE-2023-47039)
CVE-2023-47039
CWE-787
High
Perl Out-of-bounds Write Vulnerability (CVE-2023-47038)
CVE-2023-47038
CWE-787
High
Oracle Database Server Other Vulnerability (CVE-2007-3859)
CVE-2007-3859
-
High
Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-3223)
CVE-2008-3223
CWE-138
High
Joomla Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3227)
CVE-2008-3227
CWE-59
High
Joomla Configuration Vulnerability (CVE-2008-3228)
CVE-2008-3228
-
High
OpenVPN AS Divide By Zero Vulnerability (CVE-2023-46849)
CVE-2023-46849
CWE-369
High
Squid Incorrect Conversion between Numeric Types Vulnerability (CVE-2023-46848)
CVE-2023-46848
CWE-681
High
Squid Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2023-46847)
CVE-2023-46847
CWE-120
High
SharePoint CVE-2024-21426 Vulnerability (CVE-2024-21426)
CVE-2024-21426
-
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-3294)
CVE-2007-3294
CWE-119
High
XWiki CVE-2023-48241 Vulnerability (CVE-2023-48241)
CVE-2023-48241
-
High
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21686)
CVE-2024-21686
CWE-707
High
WordPress Other Vulnerability (CVE-2007-2821)
CVE-2007-2821
-
High
XWiki Improper Handling of Insufficient Privileges Vulnerability (CVE-2024-21648)
CVE-2024-21648
CWE-274
High
PleskWin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784)
CVE-2023-43784
CWE-668
High
PleskLin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784)
CVE-2023-43784
CWE-668
High
Atlassian Confluence Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-21672)
CVE-2024-21672
CWE-94
High
b2evolution Other Vulnerability (CVE-2007-2681)
CVE-2007-2681
-
High
Atlassian Confluence Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-21673)
CVE-2024-21673
CWE-94
High
Atlassian Confluence Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-21674)
CVE-2024-21674
CWE-94
High
Atlassian Confluence Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-21677)
CVE-2024-21677
CWE-22
High
PHP Other Vulnerability (CVE-2007-2511)
CVE-2007-2511
-
High
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21678)
CVE-2024-21678
CWE-707
High
Atlassian Confluence CVE-2024-21683 Vulnerability (CVE-2024-21683)
CVE-2024-21683
-
High
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21690)
CVE-2024-21690
CWE-707
High
Craft CMS CVE-2024-21622 Vulnerability (CVE-2024-21622)
CVE-2024-21622
-
High
b2evolution Other Vulnerability (CVE-2007-2358)
CVE-2007-2358
-
High
MyBB Other Vulnerability (CVE-2007-2212)
CVE-2007-2212
-
High
Roundcube Resource Management Errors Vulnerability (CVE-2008-5620)
CVE-2008-5620
-
High
Oracle Application Server Resource Management Errors Vulnerability (CVE-2007-2120)
CVE-2007-2120
-
High
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5624)
CVE-2008-5624
CWE-264
High
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5625)
CVE-2008-5625
CWE-264
High