Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Liferay Portal Observable Discrepancy Vulnerability (CVE-2024-25146)
CVE-2024-25146
CWE-203
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13672)
CVE-2020-13672
CWE-707
Medium
Opencart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21515)
CVE-2024-21515
CWE-707
Medium
Liferay DXP Observable Discrepancy Vulnerability (CVE-2024-25146)
CVE-2024-25146
CWE-203
Medium
silverstripeCMS Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2019-19326)
CVE-2019-19326
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13761)
CVE-2020-13761
CWE-707
Medium
MySQL CVE-2024-20985 Vulnerability (CVE-2024-20985)
CVE-2024-20985
-
Medium
Next.js Use of Cache Containing Sensitive Information Vulnerability (CVE-2025-57752)
CVE-2025-57752
CWE-524
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13762)
CVE-2020-13762
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15139)
CVE-2020-15139
CWE-707
Medium
Liferay Portal Excessive Iteration Vulnerability (CVE-2024-25144)
CVE-2024-25144
CWE-834
Medium
Opencart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21516)
CVE-2024-21516
CWE-707
Medium
Java Unspesificed Vulnerability (CVE-2020-14803)
CVE-2020-14803
-
Medium
PHP NULL Pointer Dereference Vulnerability (CVE-2025-6491)
CVE-2025-6491
CWE-476
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13965)
CVE-2020-13965
CWE-707
Medium
Hesk Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13897)
CVE-2020-13897
CWE-707
Medium
PrestaShop Improper Authentication Vulnerability (CVE-2020-15079)
CVE-2020-15079
CWE-287
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-19210)
CVE-2019-19210
CWE-707
Medium
MySQL CVE-2024-21050 Vulnerability (CVE-2024-21050)
CVE-2024-21050
-
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16182)
CVE-2019-16182
CWE-707
Medium
Atlassian Jira CVE-2020-14168 Vulnerability (CVE-2020-14168)
CVE-2020-14168
-
Medium
EspoCRM URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-24818)
CVE-2024-24818
CWE-601
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14169)
CVE-2020-14169
CWE-707
Medium
MySQL CVE-2024-21051 Vulnerability (CVE-2024-21051)
CVE-2024-21051
-
Medium
MySQL CVE-2020-14804 Vulnerability (CVE-2020-14804)
CVE-2020-14804
-
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24816)
CVE-2024-24816
CWE-707
Medium
Next.js Improper Input Validation Vulnerability (CVE-2025-55173)
CVE-2025-55173
CWE-20
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-19206)
CVE-2019-19206
CWE-707
Medium
LimeSurvey CVE-2019-16180 Vulnerability (CVE-2019-16180)
CVE-2019-16180
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14173)
CVE-2020-14173
CWE-707
Medium
OpenVPN AS Improper Authentication Vulnerability (CVE-2020-15077)
CVE-2020-15077
CWE-287
Medium
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2025-59018)
CVE-2025-59018
CWE-200
Medium
Django Incorrect Default Permissions Vulnerability (CVE-2019-19118)
CVE-2019-19118
CWE-276
Medium
SharePoint Improper Authentication Vulnerability (CVE-2025-49706)
CVE-2025-49706
CWE-287
Medium
MySQL CVE-2024-21055 Vulnerability (CVE-2024-21055)
CVE-2024-21055
-
Medium
Atlassian Jira Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2020-14174)
CVE-2020-14174
CWE-639
Medium
phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15073)
CVE-2020-15073
CWE-707
Medium
Python Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16935)
CVE-2019-16935
CWE-707
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14175)
CVE-2020-14175
CWE-707
Medium
MySQL CVE-2024-21056 Vulnerability (CVE-2024-21056)
CVE-2024-21056
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14166)
CVE-2020-14166
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-19211)
CVE-2019-19211
CWE-707
Medium
Envoy Proxy Origin Validation Error Vulnerability (CVE-2020-15104)
CVE-2020-15104
CWE-346
Medium
Opencart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13980)
CVE-2020-13980
CWE-707
Medium
WebLogic CVE-2024-20986 Vulnerability (CVE-2024-20986)
CVE-2024-20986
-
Medium
Oracle HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2024-20991)
CVE-2024-20991
CWE-200
Medium
Apache HTTP Server Missing Authorization Vulnerability (CVE-2020-13938)
CVE-2020-13938
CWE-862
Medium
MySQL CVE-2024-20996 Vulnerability (CVE-2024-20996)
CVE-2024-20996
-
Medium
Apache Tomcat CVE-2020-13943 Vulnerability (CVE-2020-13943)
CVE-2020-13943
-
Medium
TYPO3 CVE-2024-25120 Vulnerability (CVE-2024-25120)
CVE-2024-25120
-
Medium
MySQL CVE-2020-14775 Vulnerability (CVE-2020-14775)
CVE-2020-14775
-
Medium
WebLogic CVE-2020-13956 Vulnerability (CVE-2020-13956)
CVE-2020-13956
-
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15083)
CVE-2020-15083
CWE-707
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13964)
CVE-2020-13964
CWE-707
Medium
LimeSurvey CVE-2019-16176 Vulnerability (CVE-2019-16176)
CVE-2019-16176
-
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14012)
CVE-2020-14012
CWE-707
Medium
Atlassian Jira CVE-2020-14165 Vulnerability (CVE-2020-14165)
CVE-2020-14165
-
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16178)
CVE-2019-16178
CWE-707
Medium
Apache Tomcat Session Fixation Vulnerability (CVE-2025-55668)
CVE-2025-55668
CWE-384
Medium
PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15081)
CVE-2020-15081
CWE-200
Medium
LimeSurvey Improper Certificate Validation Vulnerability (CVE-2019-16179)
CVE-2019-16179
CWE-295
Medium
TYPO3 CVE-2024-25119 Vulnerability (CVE-2024-25119)
CVE-2024-25119
-
Medium
TYPO3 CVE-2024-25118 Vulnerability (CVE-2024-25118)
CVE-2024-25118
-
Medium
Squid Improper Synchronization Vulnerability (CVE-2020-14059)
CVE-2020-14059
CWE-662
Medium
MySQL CVE-2024-21047 Vulnerability (CVE-2024-21047)
CVE-2024-21047
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14164)
CVE-2020-14164
CWE-707
Medium
MySQL CVE-2024-21049 Vulnerability (CVE-2024-21049)
CVE-2024-21049
-
Medium
PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15080)
CVE-2020-15080
CWE-200
Medium
Contao Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2025-57756)
CVE-2025-57756
CWE-200
Medium
MySQL CVE-2020-14786 Vulnerability (CVE-2020-14786)
CVE-2020-14786
-
Medium
Contao Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2025-57757)
CVE-2025-57757
CWE-200
Medium
MySQL CVE-2024-21239 Vulnerability (CVE-2024-21239)
CVE-2024-21239
-
Medium
Oracle JRE CVE-2024-21235 Vulnerability (CVE-2024-21235)
CVE-2024-21235
-
Medium
MySQL CVE-2024-21236 Vulnerability (CVE-2024-21236)
CVE-2024-21236
-
Medium
TYPO3 Insufficient Entropy Vulnerability (CVE-2025-59015)
CVE-2025-59015
CWE-331
Medium
«
1
...
65
66
67
...
181
»
