Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
Grafana Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-13379)
CVE-2020-13379
CWE-918
High
Cherokee NULL Pointer Dereference Vulnerability (CVE-2020-12845)
CVE-2020-12845
CWE-476
High
Envoy Proxy Other Vulnerability (CVE-2024-34363)
CVE-2024-34363
-
High
XWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2020-13654)
CVE-2020-13654
CWE-116
High
Dolibarr Incorrect Authorization Vulnerability (CVE-2020-12669)
CVE-2020-12669
CWE-863
High
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-34469)
CVE-2024-34469
CWE-707
High
Envoy Proxy Uncontrolled Resource Consumption Vulnerability (CVE-2020-12605)
CVE-2020-12605
CWE-400
High
Envoy Proxy Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2020-12604)
CVE-2020-12604
CWE-119
High
Envoy Proxy Uncontrolled Resource Consumption Vulnerability (CVE-2020-12603)
CVE-2020-12603
CWE-400
High
PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-12461)
CVE-2020-12461
CWE-138
High
Apache Tomcat Uncontrolled Resource Consumption Vulnerability (CVE-2020-11996)
CVE-2020-11996
CWE-400
High
Apache HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-11993)
CVE-2020-11993
CWE-444
High
WebLogic Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-11987)
CVE-2020-11987
CWE-918
High
Sqlite Use After Free Vulnerability (CVE-2020-13630)
CVE-2020-13630
CWE-416
High
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-13663)
CVE-2020-13663
CWE-352
High
Moodle Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2020-14322)
CVE-2020-14322
CWE-770
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-34008)
CVE-2024-34008
CWE-352
High
Moodle Incorrect Authorization Vulnerability (CVE-2020-14321)
CVE-2020-14321
CWE-863
High
Dolibarr Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-14209)
CVE-2020-14209
CWE-434
High
Atlassian Jira CVE-2020-14178 Vulnerability (CVE-2020-14178)
CVE-2020-14178
-
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-34007)
CVE-2024-34007
CWE-352
High
Atlassian Jira CVE-2020-14167 Vulnerability (CVE-2020-14167)
CVE-2020-14167
-
High
Squid NULL Pointer Dereference Vulnerability (CVE-2020-14058)
CVE-2020-14058
CWE-476
High
Apache HTTP Server NULL Pointer Dereference Vulnerability (CVE-2020-13950)
CVE-2020-13950
CWE-476
High
Apache Tomcat Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2020-13935)
CVE-2020-13935
CWE-835
High
Apache Tomcat Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2020-13934)
CVE-2020-13934
CWE-119
High
Moodle CVE-2024-34009 Vulnerability (CVE-2024-34009)
CVE-2024-34009
-
High
Drupal Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2020-13664)
CVE-2020-13664
CWE-138
High
Sqlite Use After Free Vulnerability (CVE-2020-13871)
CVE-2020-13871
CWE-416
High
Werkzeug WSGI Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-34069)
CVE-2024-34069
CWE-352
High
Joomla Improper Preservation of Permissions Vulnerability (CVE-2020-13763)
CVE-2020-13763
CWE-281
High
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-13760)
CVE-2020-13760
CWE-352
High
Drupal Improper Access Control Vulnerability (CVE-2020-13677)
CVE-2020-13677
CWE-284
High
Next.js Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2024-34350)
CVE-2024-34350
-
High
Drupal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-13671)
CVE-2020-13671
CWE-434
High
Drupal Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-13670)
CVE-2020-13670
CWE-668
High
Next.js Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-34351)
CVE-2024-34351
CWE-918
High
Apache Traffic Server Memory Disclosure Vulnerability (CVE-2020-17508)
CVE-2020-17508
-
High
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-17527)
CVE-2020-17527
CWE-200
High
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-27524)
CVE-2024-27524
CWE-707
High
concrete5 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-24986)
CVE-2020-24986
CWE-434
High
PostgreSQL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2020-25694)
CVE-2020-25694
CWE-327
High
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2020-25644)
CVE-2020-25644
CWE-400
High
Moodle Uncontrolled Resource Consumption Vulnerability (CVE-2020-25630)
CVE-2020-25630
CWE-400
High
GeoServer Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-29198)
CVE-2024-29198
CWE-918
High
Moodle Improper Access Control Vulnerability (CVE-2020-25629)
CVE-2020-25629
CWE-284
High
Ruby Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-25613)
CVE-2020-25613
CWE-444
High
Squid Improper Input Validation Vulnerability (CVE-2020-25097)
CVE-2020-25097
CWE-20
High
Envoy Proxy CVE-2020-25018 Vulnerability (CVE-2020-25018)
CVE-2020-25018
-
High
Envoy Proxy Other Vulnerability (CVE-2020-25017)
CVE-2020-25017
-
High
PHP-Fusion Improper Privilege Management Vulnerability (CVE-2020-24949)
CVE-2020-24949
CWE-269
High
PostgreSQL Arbitrary Code Execution Vulnerbality (CVE-2020-25696)
CVE-2020-25696
-
High
Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-29477)
CVE-2024-29477
CWE-94
High
Squid Improper Input Validation Vulnerability (CVE-2020-24606)
CVE-2020-24606
CWE-20
High
Django Incorrect Default Permissions Vulnerability (CVE-2020-24584)
CVE-2020-24584
CWE-276
High
Django Incorrect Default Permissions Vulnerability (CVE-2020-24583)
CVE-2020-24583
CWE-276
High
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-24554)
CVE-2020-24554
CWE-601
High
PHP CVE-2024-2757 Vulnerability (CVE-2024-2757)
CVE-2024-2757
-
High
Magento Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-24400)
CVE-2020-24400
CWE-138
High
SharePoint CVE-2024-30043 Vulnerability (CVE-2024-30043)
CVE-2024-30043
-
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2024-30044)
CVE-2024-30044
CWE-502
High
PostgreSQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-25695)
CVE-2020-25695
CWE-138
High
Moodle CVE-2020-25698 Vulnerability (CVE-2020-25698)
CVE-2020-25698
-
High
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-23127)
CVE-2020-23127
CWE-352
High
PrestaShop CVE-2020-26224 Vulnerability (CVE-2020-26224)
CVE-2020-26224
-
High
Prototype CVE-2020-27511 Vulnerability (CVE-2020-27511)
CVE-2020-27511
-
High
Jetty Uncontrolled Resource Consumption Vulnerability (CVE-2020-27223)
CVE-2020-27223
CWE-400
High
Envoy Proxy Detection of Error Condition Without Action Vulnerability (CVE-2024-27919)
CVE-2024-27919
CWE-390
High
Jetty Other Vulnerability (CVE-2020-27216)
CVE-2020-27216
-
High
Play Framework Out-of-bounds Write Vulnerability (CVE-2020-27196)
CVE-2020-27196
CWE-787
High
Play Framework Uncontrolled Recursion Vulnerability (CVE-2020-26883)
CVE-2020-26883
CWE-674
High
Play Framework Uncontrolled Recursion Vulnerability (CVE-2020-26882)
CVE-2020-26882
CWE-674
High
WordPress Improper Input Validation Vulnerability (CVE-2020-26596)
CVE-2020-26596
CWE-20
High
TYPO3 Cleartext Storage of Sensitive Information Vulnerability (CVE-2020-26228)
CVE-2020-26228
CWE-312
High
phpMyFAQ Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2024-28105)
CVE-2024-28105
CWE-434
High