Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
FluxBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35240)
CVE-2020-35240
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2007-4783)
CVE-2007-4783
CWE-20
Medium
Joomla Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4104)
CVE-2008-4104
CWE-59
Medium
Oracle Application Server CVE-2008-3975 Vulnerability (CVE-2008-3975)
CVE-2008-3975
-
Medium
Oracle Application Server CVE-2008-3977 Vulnerability (CVE-2008-3977)
CVE-2008-3977
-
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-35480)
CVE-2020-35480
CWE-200
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35479)
CVE-2020-35479
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35478)
CVE-2020-35478
CWE-707
Medium
MediaWiki Improper Input Validation Vulnerability (CVE-2020-35477)
CVE-2020-35477
CWE-20
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35474)
CVE-2020-35474
CWE-707
Medium
Oracle Application Server CVE-2008-4014 Vulnerability (CVE-2008-4014)
CVE-2008-4014
-
Medium
Oracle Application Server CVE-2008-4017 Vulnerability (CVE-2008-4017)
CVE-2008-4017
-
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35274)
CVE-2020-35274
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2013-4248)
CVE-2013-4248
CWE-20
Medium
MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4097)
CVE-2008-4097
CWE-264
Medium
MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4098)
CVE-2008-4098
CWE-59
Medium
Joomla Improper Input Validation Vulnerability (CVE-2008-4103)
CVE-2008-4103
CWE-20
Medium
WordPress Improper Input Validation Vulnerability (CVE-2008-4106)
CVE-2008-4106
CWE-20
Medium
MySQL Use of Externally-Controlled Format String Vulnerability (CVE-2008-3963)
CVE-2008-3963
CWE-134
Medium
Oracle Database Server CVE-2020-2969 Vulnerability (CVE-2020-2969)
CVE-2020-2969
-
Medium
PHP Numeric Errors Vulnerability (CVE-2008-4107)
CVE-2008-4107
-
Medium
Joomla Cryptographic Issues Vulnerability (CVE-2008-4122)
CVE-2008-4122
-
Medium
WebLogic CVE-2020-2966 Vulnerability (CVE-2020-2966)
CVE-2020-2966
-
Medium
phpBB CVE-2008-4125 Vulnerability (CVE-2008-4125)
CVE-2008-4125
-
Medium
Oracle HTTP Server CVE-2020-2952 Vulnerability (CVE-2020-2952)
CVE-2020-2952
-
Medium
WebLogic CVE-2020-2934 Vulnerability (CVE-2020-2934)
CVE-2020-2934
-
Medium
MySQL CVE-2020-2930 Vulnerability (CVE-2020-2930)
CVE-2020-2930
-
Medium
MySQL CVE-2020-2928 Vulnerability (CVE-2020-2928)
CVE-2020-2928
-
Medium
MySQL CVE-2020-2926 Vulnerability (CVE-2020-2926)
CVE-2020-2926
-
Medium
MySQL CVE-2020-2925 Vulnerability (CVE-2020-2925)
CVE-2020-2925
-
Medium
MySQL CVE-2020-2924 Vulnerability (CVE-2020-2924)
CVE-2020-2924
-
Medium
MySQL CVE-2020-2923 Vulnerability (CVE-2020-2923)
CVE-2020-2923
-
Medium
MySQL CVE-2020-2921 Vulnerability (CVE-2020-2921)
CVE-2020-2921
-
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3966)
CVE-2008-3966
CWE-707
Medium
Ruby Improper Authentication Vulnerability (CVE-2008-3905)
CVE-2008-3905
CWE-287
Medium
MySQL CVE-2020-2903 Vulnerability (CVE-2020-2903)
CVE-2020-2903
-
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3740)
CVE-2008-3740
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-36288)
CVE-2020-36288
CWE-707
Medium
Atlassian Jira Incorrect Authorization Vulnerability (CVE-2020-36287)
CVE-2020-36287
CWE-863
Medium
Atlassian Jira CVE-2020-36286 Vulnerability (CVE-2020-36286)
CVE-2020-36286
-
Medium
ownCloud Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-36252)
CVE-2020-36252
CWE-668
Medium
ownCloud Improper Privilege Management Vulnerability (CVE-2020-36251)
CVE-2020-36251
CWE-269
Medium
Atlassian Jira Incorrect Authorization Vulnerability (CVE-2020-36238)
CVE-2020-36238
CWE-863
Medium
Atlassian Jira CVE-2020-36237 Vulnerability (CVE-2020-36237)
CVE-2020-36237
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-36236)
CVE-2020-36236
CWE-707
Medium
Atlassian Jira CVE-2020-36235 Vulnerability (CVE-2020-36235)
CVE-2020-36235
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-36234)
CVE-2020-36234
CWE-707
Medium
Atlassian Jira Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2020-36231)
CVE-2020-36231
CWE-639
Medium
Drupal Other Vulnerability (CVE-2008-3661)
CVE-2008-3661
-
Medium
WordPress Ultimate Member Plugin CVE-2020-36170 Vulnerability (CVE-2020-36170)
CVE-2020-36170
-
Medium
Dot CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-3708)
CVE-2008-3708
CWE-22
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3742)
CVE-2008-3742
CWE-264
Medium
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-35614)
CVE-2020-35614
CWE-200
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35987)
CVE-2020-35987
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35986)
CVE-2020-35986
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35985)
CVE-2020-35985
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35984)
CVE-2020-35984
CWE-707
Medium
PHP-Fusion CVE-2020-35952 Vulnerability (CVE-2020-35952)
CVE-2020-35952
-
Medium
SeoPanel Cross-site Scripting (XSS) Vulnerability (CVE-2020-35930)
CVE-2020-35930
-
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35730)
CVE-2020-35730
CWE-707
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3743)
CVE-2008-3743
CWE-352
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3744)
CVE-2008-3744
CWE-352
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3745)
CVE-2008-3745
CWE-264
Medium
MediaWiki Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-35624)
CVE-2020-35624
-
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35622)
CVE-2020-35622
CWE-707
Medium
Ruby Improper Input Validation Vulnerability (CVE-2008-3790)
CVE-2008-3790
CWE-20
Medium
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-35615)
CVE-2020-35615
CWE-352
Medium
MySQL CVE-2020-2904 Vulnerability (CVE-2020-2904)
CVE-2020-2904
-
Medium
MySQL CVE-2020-2901 Vulnerability (CVE-2020-2901)
CVE-2020-2901
-
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-36290)
CVE-2020-36290
CWE-707
Medium
MySQL CVE-2020-2577 Vulnerability (CVE-2020-2577)
CVE-2020-2577
-
Medium
Oracle Database Server CVE-2020-2737 Vulnerability (CVE-2020-2737)
CVE-2020-2737
-
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4435)
CVE-2008-4435
CWE-707
Medium
MySQL CVE-2020-2686 Vulnerability (CVE-2020-2686)
CVE-2020-2686
-
Medium
MySQL CVE-2020-2679 Vulnerability (CVE-2020-2679)
CVE-2020-2679
-
Medium