Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Known Vulnerabilities

This page lists 13509 vulnerabilities in this category.

Critical: 1465 High: 3387 Medium: 7907 Low: 748 Information: 2
Vulnerability Name
CVE
CWE
Severity
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4030)
CVE-2011-4030
CWE-264
Critical
Oracle JRE CVE-2013-2434 Vulnerability (CVE-2013-2434)
CVE-2013-2434
-
Critical
Oracle JRE CVE-2013-2435 Vulnerability (CVE-2013-2435)
CVE-2013-2435
-
Critical
Oracle JRE CVE-2013-2436 Vulnerability (CVE-2013-2436)
CVE-2013-2436
-
Critical
Oracle JRE CVE-2013-2440 Vulnerability (CVE-2013-2440)
CVE-2013-2440
-
Critical
Oracle JRE CVE-2013-2459 Vulnerability (CVE-2013-2459)
CVE-2013-2459
-
Critical
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-40315)
CVE-2022-40315
CWE-138
Critical
OpenSSL Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2021-3711)
CVE-2021-3711
CWE-120
Critical
Oracle JRE CVE-2013-2462 Vulnerability (CVE-2013-2462)
CVE-2013-2462
-
Critical
Apache HTTP Server Other Vulnerability (CVE-2021-42013)
CVE-2021-42013
-
Critical
Apache HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2022-36760)
CVE-2022-36760
-
Critical
Oracle JRE CVE-2013-1484 Vulnerability (CVE-2013-1484)
CVE-2013-1484
-
Critical
Oracle JRE CVE-2013-1486 Vulnerability (CVE-2013-1486)
CVE-2013-1486
-
Critical
Claroline Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-37159)
CVE-2022-37159
CWE-434
Critical
Oracle JRE CVE-2013-1487 Vulnerability (CVE-2013-1487)
CVE-2013-1487
-
Critical
Oracle JRE Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-1493)
CVE-2013-1493
CWE-119
Critical
osTicket Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-42235)
CVE-2021-42235
CWE-138
Critical
Oracle JRE CVE-2013-1518 Vulnerability (CVE-2013-1518)
CVE-2013-1518
-
Critical
Oracle Database Server CVE-2013-1534 Vulnerability (CVE-2013-1534)
CVE-2013-1534
-
Critical
Oracle JRE CVE-2013-1537 Vulnerability (CVE-2013-1537)
CVE-2013-1537
-
Critical
Oracle JRE CVE-2013-1557 Vulnerability (CVE-2013-1557)
CVE-2013-1557
-
Critical
Oracle JRE CVE-2013-1558 Vulnerability (CVE-2013-1558)
CVE-2013-1558
-
Critical
Oracle JRE CVE-2013-1569 Vulnerability (CVE-2013-1569)
CVE-2013-1569
-
Critical
phpMyFAQ Weak Password Requirements Vulnerability (CVE-2022-3754)
CVE-2022-3754
CWE-521
Critical
PHP Integer Overflow or Wraparound Vulnerability (CVE-2022-37454)
CVE-2022-37454
CWE-190
Critical
Python Integer Overflow or Wraparound Vulnerability (CVE-2022-37454)
CVE-2022-37454
CWE-190
Critical
TYPO3 Improper Authentication Vulnerability (CVE-2011-4628)
CVE-2011-4628
CWE-287
Critical
Skipper Server-Side Request Forgery (SSRF) Vulnerability (CVE-2022-38580)
CVE-2022-38580
CWE-918
Critical
Grafana Externally Controlled Reference to a Resource in Another Sphere Vulnerability (CVE-2021-41244)
CVE-2021-41244
CWE-610
Critical
PostgreSQL Other Vulnerability (CVE-2013-1902)
CVE-2013-1902
-
Critical
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1903)
CVE-2013-1903
CWE-264
Critical
ProjectSend Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-40887)
CVE-2021-40887
CWE-22
Critical
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-40438)
CVE-2021-40438
CWE-918
Critical
Oracle HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-40438)
CVE-2021-40438
CWE-918
Critical
Moodle Improper Input Validation Vulnerability (CVE-2021-3943)
CVE-2021-3943
CWE-20
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-2091)
CVE-2013-2091
CWE-138
Critical
Dolibarr Improper Input Validation Vulnerability (CVE-2013-2093)
CVE-2013-2093
CWE-20
Critical
Oracle JRE CVE-2013-2460 Vulnerability (CVE-2013-2460)
CVE-2013-2460
-
Critical
Oracle JRE CVE-2013-2463 Vulnerability (CVE-2013-2463)
CVE-2013-2463
-
Critical
Oracle JRE CVE-2013-1480 Vulnerability (CVE-2013-1480)
CVE-2013-1480
-
Critical
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-48008)
CVE-2022-48008
CWE-434
Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-44945)
CVE-2022-44945
CWE-138
Critical
WebLogic CVE-2021-35617 Vulnerability (CVE-2021-35617)
CVE-2021-35617
-
Critical
Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-2715)
CVE-2011-2715
CWE-138
Critical
Apache Traffic Server Out-of-bounds Write Vulnerability (CVE-2021-35474)
CVE-2021-35474
CWE-787
Critical
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35414)
CVE-2021-35414
CWE-707
Critical
Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2022-45152)
CVE-2022-45152
CWE-918
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-35042)
CVE-2021-35042
CWE-138
Critical
Collabtive Improper Privilege Management Vulnerability (CVE-2013-5027)
CVE-2013-5027
CWE-269
Critical
Chamilo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-34187)
CVE-2021-34187
CWE-138
Critical
Sqlite Other Vulnerability (CVE-2022-46908)
CVE-2022-46908
-
Critical
Masa CMS Incorrect Authorization Vulnerability (CVE-2022-47002)
CVE-2022-47002
CWE-863
Critical
Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-33816)
CVE-2021-33816
CWE-94
Critical
Plone CMS Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-33509)
CVE-2021-33509
CWE-732
Critical
Elgg Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-2936)
CVE-2011-2936
CWE-138
Critical
Rukovoditel Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2022-48175)
CVE-2022-48175
CWE-138
Critical
Perl Out-of-bounds Write Vulnerability (CVE-2022-48522)
CVE-2022-48522
CWE-787
Critical
Oracle JRE CVE-2013-5777 Vulnerability (CVE-2013-5777)
CVE-2013-5777
-
Critical
Oracle JRE CVE-2013-5782 Vulnerability (CVE-2013-5782)
CVE-2013-5782
-
Critical
Oracle JRE CVE-2013-5787 Vulnerability (CVE-2013-5787)
CVE-2013-5787
-
Critical
Python Improper Restriction of XML External Entity Reference Vulnerability (CVE-2022-48565)
CVE-2022-48565
CWE-611
Critical
Oracle JRE CVE-2013-5788 Vulnerability (CVE-2013-5788)
CVE-2013-5788
-
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-4093)
CVE-2022-4093
CWE-138
Critical
Oracle JRE CVE-2013-5789 Vulnerability (CVE-2013-5789)
CVE-2013-5789
-
Critical
Oracle JRE CVE-2013-5805 Vulnerability (CVE-2013-5805)
CVE-2013-5805
-
Critical
Oracle JRE CVE-2013-5806 Vulnerability (CVE-2013-5806)
CVE-2013-5806
-
Critical
Oracle JRE CVE-2013-5809 Vulnerability (CVE-2013-5809)
CVE-2013-5809
-
Critical
SharePoint Improper Input Validation Vulnerability (CVE-2011-1989)
CVE-2011-1989
CWE-20
Critical
ownCloud Improper Privilege Management Vulnerability (CVE-2021-35946)
CVE-2021-35946
CWE-269
Critical
WordPress CVE-2011-3122 Vulnerability (CVE-2011-3122)
CVE-2011-3122
-
Critical
Oracle JRE CVE-2013-2464 Vulnerability (CVE-2013-2464)
CVE-2013-2464
-
Critical
Oracle Database Server CVE-2013-3751 Vulnerability (CVE-2013-3751)
CVE-2013-3751
-
Critical
Oracle JRE CVE-2013-2465 Vulnerability (CVE-2013-2465)
CVE-2013-2465
-
Critical
Liferay Portal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42120)
CVE-2022-42120
CWE-138
Critical
Liferay DXP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42120)
CVE-2022-42120
CWE-138
Critical