Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
MySQL CVE-2022-21301 Vulnerability (CVE-2022-21301)
CVE-2022-21301
-
Medium
Contao Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-24899)
CVE-2022-24899
CWE-707
Medium
Liferay Portal Origin Validation Error Vulnerability (CVE-2022-25146)
CVE-2022-25146
CWE-346
Medium
Liferay DXP Origin Validation Error Vulnerability (CVE-2022-25146)
CVE-2022-25146
CWE-346
Medium
Oracle JRE CVE-2022-21299 Vulnerability (CVE-2022-21299)
CVE-2022-21299
-
Medium
MySQL CVE-2022-21297 Vulnerability (CVE-2022-21297)
CVE-2022-21297
-
Medium
phpMyAdmin Other Vulnerability (CVE-2007-0341)
CVE-2007-0341
-
Medium
MySQL CVE-2022-21286 Vulnerability (CVE-2022-21286)
CVE-2022-21286
-
Medium
Drupal Incorrect Authorization Vulnerability (CVE-2022-25270)
CVE-2022-25270
CWE-863
Medium
Oracle Application Server Other Vulnerability (CVE-2007-0289)
CVE-2007-0289
-
Medium
Drupal Incorrect Authorization Vulnerability (CVE-2022-25274)
CVE-2022-25274
CWE-863
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-25276)
CVE-2022-25276
CWE-707
Medium
Oracle JRE CVE-2022-21294 Vulnerability (CVE-2022-21294)
CVE-2022-21294
-
Medium
Oracle JRE CVE-2022-21293 Vulnerability (CVE-2022-21293)
CVE-2022-21293
-
Medium
Oracle Application Server Other Vulnerability (CVE-2007-0285)
CVE-2007-0285
-
Medium
Oracle JRE CVE-2022-21291 Vulnerability (CVE-2022-21291)
CVE-2022-21291
-
Medium
MySQL CVE-2022-21290 Vulnerability (CVE-2022-21290)
CVE-2022-21290
-
Medium
MySQL CVE-2022-21289 Vulnerability (CVE-2022-21289)
CVE-2022-21289
-
Medium
MySQL CVE-2022-21288 Vulnerability (CVE-2022-21288)
CVE-2022-21288
-
Medium
MySQL CVE-2022-21287 Vulnerability (CVE-2022-21287)
CVE-2022-21287
-
Medium
WebLogic CVE-2022-21386 Vulnerability (CVE-2022-21386)
CVE-2022-21386
-
Medium
MySQL CVE-2022-21412 Vulnerability (CVE-2022-21412)
CVE-2022-21412
-
Medium
Oracle Database Server Other Vulnerability (CVE-2007-0278)
CVE-2007-0278
-
Medium
Joomla Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2022-23794)
CVE-2022-23794
CWE-209
Medium
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2022-22005)
CVE-2022-22005
CWE-502
Medium
SharePoint CVE-2022-21987 Vulnerability (CVE-2022-21987)
CVE-2022-21987
-
Medium
SharePoint CVE-2022-21968 Vulnerability (CVE-2022-21968)
CVE-2022-21968
-
Medium
SharePoint CVE-2022-21840 Vulnerability (CVE-2022-21840)
CVE-2022-21840
-
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-1285)
CVE-2007-1285
CWE-119
Medium
MediaWiki Other Vulnerability (CVE-2007-0894)
CVE-2007-0894
-
Medium
PHP Other Vulnerability (CVE-2007-1286)
CVE-2007-1286
-
Medium
PHP Other Vulnerability (CVE-2007-1287)
CVE-2007-1287
-
Medium
Grafana Incorrect Authorization Vulnerability (CVE-2022-21713)
CVE-2022-21713
CWE-863
Medium
JBoss Application Server Privilege Escalation Vulnerability (CVE-2007-1354)
CVE-2007-1354
-
Medium
Apache Tomcat Other Vulnerability (CVE-2007-1355)
CVE-2007-1355
-
Medium
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-21702)
CVE-2022-21702
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-22293)
CVE-2022-22293
CWE-707
Medium
Grafana Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-21673)
CVE-2022-21673
CWE-200
Medium
markdown-it Inefficient Regular Expression Complexity Vulnerability (CVE-2022-21670)
CVE-2022-21670
CWE-1333
Medium
PHP Other Vulnerability (CVE-2007-1375)
CVE-2007-1375
-
Medium
MediaWiki Other Vulnerability (CVE-2007-0788)
CVE-2007-0788
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23796)
CVE-2022-23796
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-21662)
CVE-2022-21662
CWE-707
Medium
MyBB Other Vulnerability (CVE-2007-0689)
CVE-2007-0689
-
Medium
PHP Other Vulnerability (CVE-2007-1378)
CVE-2007-1378
-
Medium
Envoy Proxy Improper Certificate Validation Vulnerability (CVE-2022-21657)
CVE-2022-21657
CWE-295
Medium
Envoy Proxy Improper Certificate Validation Vulnerability (CVE-2022-21656)
CVE-2022-21656
CWE-295
Medium
PHP Other Vulnerability (CVE-2007-1379)
CVE-2007-1379
-
Medium
Joomla URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-23798)
CVE-2022-23798
CWE-601
Medium
Ruby on Rails CVE-2022-23634 Vulnerability (CVE-2022-23634)
CVE-2022-23634
-
Medium
Lighttpd Out-of-bounds Write Vulnerability (CVE-2022-22707)
CVE-2022-22707
CWE-787
Medium
MySQL CVE-2022-21641 Vulnerability (CVE-2022-21641)
CVE-2022-21641
-
Medium
TYPO3 Insufficient Session Expiration Vulnerability (CVE-2022-23502)
CVE-2022-23502
CWE-613
Medium
MediaWiki Other Vulnerability (CVE-2007-1054)
CVE-2007-1054
-
Medium
PHP Numeric Errors Vulnerability (CVE-2007-1001)
CVE-2007-1001
-
Medium
MediaWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-1055)
CVE-2007-1055
CWE-94
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-0988)
CVE-2007-0988
CWE-119
Medium
Spring Cloud Gateway Improper Certificate Validation Vulnerability (CVE-2022-22946)
CVE-2022-22946
CWE-295
Medium
GibbonEdu Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-22868)
CVE-2022-22868
CWE-707
Medium
WebLogic Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2022-23437)
CVE-2022-23437
CWE-835
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-22818)
CVE-2022-22818
CWE-707
Medium
TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23494)
CVE-2022-23494
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2007-0908)
CVE-2007-0908
CWE-20
Medium
TYPO3 Improper Authentication Vulnerability (CVE-2022-23501)
CVE-2022-23501
CWE-287
Medium
WordPress Other Vulnerability (CVE-2007-1230)
CVE-2007-1230
-
Medium
PHP Other Vulnerability (CVE-2007-0907)
CVE-2007-0907
-
Medium
Ruby on Rails CVE-2022-23633 Vulnerability (CVE-2022-23633)
CVE-2022-23633
-
Medium
TYPO3 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression La Vulnerability (CVE-2022-23504)
CVE-2022-23504
CWE-138
Medium
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23552)
CVE-2022-23552
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23599)
CVE-2022-23599
CWE-707
Medium
Envoy Proxy Uncontrolled Recursion Vulnerability (CVE-2022-23606)
CVE-2022-23606
CWE-674
Medium
XWiki Incorrect Authorization Vulnerability (CVE-2022-23615)
CVE-2022-23615
CWE-863
Medium
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2022-23616)
CVE-2022-23616
CWE-138
Medium
XWiki Missing Authorization Vulnerability (CVE-2022-23617)
CVE-2022-23617
CWE-862
Medium
XWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-23618)
CVE-2022-23618
CWE-601
Medium