Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-39117)
CVE-2021-39117
CWE-707
Medium
Atlassian Jira CVE-2021-39116 Vulnerability (CVE-2021-39116)
CVE-2021-39116
-
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42116)
CVE-2022-42116
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42117)
CVE-2022-42117
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42117)
CVE-2022-42117
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42118)
CVE-2022-42118
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42118)
CVE-2022-42118
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42119)
CVE-2022-42119
CWE-707
Medium
Atlassian Jira Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-39125)
CVE-2021-39125
CWE-200
Medium
Liferay DXP CVE-2022-42126 Vulnerability (CVE-2022-42126)
CVE-2022-42126
-
Medium
Liferay Portal CVE-2022-42126 Vulnerability (CVE-2022-42126)
CVE-2022-42126
-
Medium
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-39112)
CVE-2021-39112
CWE-601
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-39111)
CVE-2021-39111
CWE-707
Medium
Chamilo Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-38745)
CVE-2021-38745
CWE-94
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38269)
CVE-2021-38269
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38269)
CVE-2021-38269
CWE-707
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-38268)
CVE-2021-38268
CWE-276
Medium
Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2021-38268)
CVE-2021-38268
CWE-276
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38267)
CVE-2021-38267
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38267)
CVE-2021-38267
CWE-707
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-42127)
CVE-2022-42127
CWE-276
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38265)
CVE-2021-38265
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42115)
CVE-2022-42115
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42114)
CVE-2022-42114
CWE-707
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-42128)
CVE-2022-42128
CWE-276
Medium
XWiki Missing Authorization Vulnerability (CVE-2022-41929)
CVE-2022-41929
CWE-862
Medium
SharePoint CVE-2022-41122 Vulnerability (CVE-2022-41122)
CVE-2022-41122
-
Medium
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-3281)
CVE-2021-3281
CWE-22
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-41224)
CVE-2022-41224
CWE-707
Medium
Squid Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-41317)
CVE-2022-41317
CWE-668
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-3137)
CVE-2021-3137
CWE-707
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-41414)
CVE-2022-41414
CWE-276
Medium
SeoPanel Cross-site Scripting (XSS) Vulnerability (CVE-2021-3002)
CVE-2021-3002
-
Medium
Seo Panel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-39413)
CVE-2021-39413
CWE-707
Medium
Beego Framework Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-39391)
CVE-2021-39391
CWE-707
Medium
MediaWiki Observable Discrepancy Vulnerability (CVE-2022-41765)
CVE-2022-41765
CWE-203
Medium
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2022-41766)
CVE-2022-41766
CWE-732
Medium
MediaWiki CVE-2022-41767 Vulnerability (CVE-2022-41767)
CVE-2022-41767
-
Medium
XWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-41932)
CVE-2022-41932
CWE-770
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42114)
CVE-2022-42114
CWE-707
Medium
XWiki Insufficiently Protected Credentials Vulnerability (CVE-2022-41933)
CVE-2022-41933
CWE-522
Medium
XWiki Other Vulnerability (CVE-2022-41935)
CVE-2022-41935
-
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42110)
CVE-2022-42110
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42110)
CVE-2022-42110
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-39201)
CVE-2021-39201
CWE-707
Medium
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-39200)
CVE-2021-39200
CWE-200
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42111)
CVE-2022-42111
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42111)
CVE-2022-42111
CWE-707
Medium
Next.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-39178)
CVE-2021-39178
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42112)
CVE-2022-42112
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42112)
CVE-2022-42112
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42113)
CVE-2022-42113
CWE-707
Medium
Atlassian Jira Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-39127)
CVE-2021-39127
CWE-668
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38265)
CVE-2021-38265
CWE-707
Medium
Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2022-42128)
CVE-2022-42128
CWE-276
Medium
MySQL CVE-2021-35645 Vulnerability (CVE-2021-35645)
CVE-2021-35645
-
Medium
ownCloud CVE-2022-43679 Vulnerability (CVE-2022-43679)
CVE-2022-43679
-
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43167)
CVE-2022-43167
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43169)
CVE-2022-43169
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43170)
CVE-2022-43170
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43185)
CVE-2022-43185
CWE-707
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36150)
CVE-2021-36150
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36131)
CVE-2021-36131
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36130)
CVE-2021-36130
CWE-707
Medium
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-36129)
CVE-2021-36129
CWE-732
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43497)
CVE-2022-43497
CWE-707
Medium
MediaWiki Insecure Storage of Sensitive Information Vulnerability (CVE-2021-36127)
CVE-2021-36127
CWE-922
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43500)
CVE-2022-43500
CWE-707
Medium
WordPress Improper Authentication Vulnerability (CVE-2022-43504)
CVE-2022-43504
CWE-287
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43707)
CVE-2022-43707
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36398)
CVE-2021-36398
CWE-707
Medium
PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35976)
CVE-2021-35976
CWE-707
Medium
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35976)
CVE-2021-35976
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43708)
CVE-2022-43708
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35959)
CVE-2021-35959
CWE-707
Medium
«
1
...
82
83
84
...
181
»
