Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-4249)
CVE-2019-4249
CWE-707
Medium
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-4725)
CVE-2019-4725
CWE-707
Medium
PrestaShop Deserialization of Untrusted Data Vulnerability (CVE-2025-25692)
CVE-2025-25692
CWE-502
Medium
IBM WebSEAL Other Vulnerability (CVE-2019-4552)
CVE-2019-4552
-
Medium
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8980)
CVE-2024-8980
CWE-352
Medium
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8980)
CVE-2024-8980
CWE-352
Medium
PrestaShop Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2025-25691)
CVE-2025-25691
CWE-138
Medium
Atlassian Jira Incorrect Authorization Vulnerability (CVE-2019-3403)
CVE-2019-3403
CWE-863
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-4250)
CVE-2019-4250
CWE-707
Medium
IBM WebSEAL Missing Authorization Vulnerability (CVE-2019-4158)
CVE-2019-4158
CWE-862
Medium
PHP Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-1220)
CVE-2025-1220
CWE-918
Medium
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-4157)
CVE-2019-4157
CWE-707
Medium
IBM WebSEAL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2019-4156)
CVE-2019-4156
CWE-327
Medium
Django Improper Input Validation Vulnerability (CVE-2019-3498)
CVE-2019-3498
CWE-20
Medium
WordPress Ultimate Member Plugin CVE-2025-0318 Vulnerability (CVE-2025-0318)
CVE-2025-0318
-
Medium
IBM WebSEAL URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-4153)
CVE-2019-4153
CWE-601
Medium
PHP Inaccurate Comments Vulnerability (CVE-2025-1219)
CVE-2025-1219
CWE-1116
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-3578)
CVE-2019-3578
CWE-707
Medium
IBM WebSEAL Session Fixation Vulnerability (CVE-2019-4152)
CVE-2019-4152
CWE-384
Medium
IBM WebSEAL Inadequate Encryption Strength Vulnerability (CVE-2019-4151)
CVE-2019-4151
CWE-326
Medium
Next.js Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-56332)
CVE-2024-56332
CWE-770
Medium
Apache Traffic Server CVE-2024-56196 Vulnerability (CVE-2024-56196)
CVE-2024-56196
-
Medium
Ampache Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-51489)
CVE-2024-51489
CWE-352
Medium
Oracle Database Server CVE-2019-2956 Vulnerability (CVE-2019-2956)
CVE-2019-2956
-
Medium
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7874)
CVE-2019-7874
CWE-352
Medium
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7873)
CVE-2019-7873
CWE-352
Medium
MySQL CVE-2019-2948 Vulnerability (CVE-2019-2948)
CVE-2019-2948
-
Medium
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7872)
CVE-2019-7872
CWE-639
Medium
Oracle JRE CVE-2019-2949 Vulnerability (CVE-2019-2949)
CVE-2019-2949
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7869)
CVE-2019-7869
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7868)
CVE-2019-7868
CWE-707
Medium
MySQL CVE-2019-2950 Vulnerability (CVE-2019-2950)
CVE-2019-2950
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7867)
CVE-2019-7867
CWE-707
Medium
Jenkins URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2025-27625)
CVE-2025-27625
CWE-601
Medium
Apache Tomcat Uncontrolled Resource Consumption Vulnerability (CVE-2024-54677)
CVE-2024-54677
CWE-400
Medium
MySQL CVE-2019-2957 Vulnerability (CVE-2019-2957)
CVE-2019-2957
-
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-55635)
CVE-2024-55635
CWE-707
Medium
Oracle JRE CVE-2019-2958 Vulnerability (CVE-2019-2958)
CVE-2019-2958
-
Medium
XWikiplatform Missing Authorization Vulnerability (CVE-2024-55876)
CVE-2024-55876
CWE-862
Medium
MySQL CVE-2019-2960 Vulnerability (CVE-2019-2960)
CVE-2019-2960
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7866)
CVE-2019-7866
CWE-707
Medium
MySQL CVE-2019-2963 Vulnerability (CVE-2019-2963)
CVE-2019-2963
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7875)
CVE-2019-7875
CWE-707
Medium
MySQL CVE-2019-2946 Vulnerability (CVE-2019-2946)
CVE-2019-2946
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7863)
CVE-2019-7863
CWE-707
Medium
MySQL CVE-2019-2920 Vulnerability (CVE-2019-2920)
CVE-2019-2920
-
Medium
Oracle Database Server CVE-2019-2913 Vulnerability (CVE-2019-2913)
CVE-2019-2913
-
Medium
Magento Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-7889)
CVE-2019-7889
CWE-138
Medium
Craft CMS Files or Directories Accessible to External Parties Vulnerability (CVE-2024-52292)
CVE-2024-52292
CWE-552
Medium
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-7888)
CVE-2019-7888
CWE-200
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7887)
CVE-2019-7887
CWE-707
Medium
MySQL CVE-2019-2914 Vulnerability (CVE-2019-2914)
CVE-2019-2914
-
Medium
Apache Tomcat Inadequate Encryption Strength Vulnerability (CVE-2024-52317)
CVE-2024-52317
CWE-326
Medium
Apache Tomcat Inadequate Encryption Strength Vulnerability (CVE-2024-52318)
CVE-2024-52318
CWE-326
Medium
MySQL CVE-2019-2922 Vulnerability (CVE-2019-2922)
CVE-2019-2922
-
Medium
Oracle Database Server CVE-2019-2939 Vulnerability (CVE-2019-2939)
CVE-2019-2939
-
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-52701)
CVE-2024-52701
CWE-707
Medium
MySQL CVE-2019-2923 Vulnerability (CVE-2019-2923)
CVE-2019-2923
-
Medium
MySQL CVE-2019-2924 Vulnerability (CVE-2019-2924)
CVE-2019-2924
-
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-52702)
CVE-2024-52702
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7882)
CVE-2019-7882
CWE-707
Medium
MySQL CVE-2019-2938 Vulnerability (CVE-2019-2938)
CVE-2019-2938
-
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7881)
CVE-2019-7881
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7880)
CVE-2019-7880
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7877)
CVE-2019-7877
CWE-707
Medium
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7864)
CVE-2019-7864
CWE-639
Medium
MySQL CVE-2019-2966 Vulnerability (CVE-2019-2966)
CVE-2019-2966
-
Medium
Moodle Incorrect Authorization Vulnerability (CVE-2025-26531)
CVE-2025-26531
CWE-863
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7740)
CVE-2019-7740
CWE-707
Medium
TYPO3 Exposed Dangerous Method or Function Vulnerability (CVE-2024-55922)
CVE-2024-55922
CWE-749
Medium
TYPO3 Exposed Dangerous Method or Function Vulnerability (CVE-2024-55923)
CVE-2024-55923
CWE-749
Medium
MySQL CVE-2019-2991 Vulnerability (CVE-2019-2991)
CVE-2019-2991
-
Medium
TYPO3 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-55945)
CVE-2024-55945
CWE-352
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7742)
CVE-2019-7742
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7741)
CVE-2019-7741
CWE-707
Medium
«
1
...
74
75
76
...
181
»
