Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1107)
CVE-2020-1107
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1148)
CVE-2020-1148
CWE-707
Medium
SharePoint CVE-2020-1500 Vulnerability (CVE-2020-1500)
CVE-2020-1500
-
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1345)
CVE-2020-1345
CWE-707
Medium
SharePoint CVE-2020-1499 Vulnerability (CVE-2020-1499)
CVE-2020-1499
-
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1482)
CVE-2020-1482
CWE-707
Medium
Moodle CVE-2009-0501 Vulnerability (CVE-2009-0501)
CVE-2009-0501
-
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1456)
CVE-2020-1456
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1454)
CVE-2020-1454
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0502)
CVE-2009-0502
CWE-707
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-0580)
CVE-2009-0580
CWE-200
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1451)
CVE-2020-1451
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1450)
CVE-2020-1450
CWE-707
Medium
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-0590)
CVE-2009-0590
CWE-119
Medium
Ruby Improper Authentication Vulnerability (CVE-2009-0642)
CVE-2009-0642
CWE-287
Medium
SharePoint CVE-2020-1444 Vulnerability (CVE-2020-1444)
CVE-2020-1444
-
Medium
SharePoint CVE-2020-1443 Vulnerability (CVE-2020-1443)
CVE-2020-1443
-
Medium
SharePoint CVE-2020-1440 Vulnerability (CVE-2020-1440)
CVE-2020-1440
-
Medium
SharePoint Out-of-bounds Read Vulnerability (CVE-2020-1342)
CVE-2020-1342
CWE-125
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1177)
CVE-2020-1177
CWE-707
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-0783)
CVE-2009-0783
CWE-200
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0816)
CVE-2009-0816
CWE-707
Medium
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-0815)
CVE-2009-0815
CWE-200
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1183)
CVE-2020-1183
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1198)
CVE-2020-1198
CWE-707
Medium
OpenSSL Numeric Errors Vulnerability (CVE-2009-0789)
CVE-2009-0789
-
Medium
SharePoint CVE-2020-1205 Vulnerability (CVE-2020-1205)
CVE-2020-1205
-
Medium
Apache Tomcat Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0781)
CVE-2009-0781
CWE-707
Medium
Plone CMS Improper Authentication Vulnerability (CVE-2009-0662)
CVE-2009-0662
CWE-287
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1227)
CVE-2020-1227
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1297)
CVE-2020-1297
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1298)
CVE-2020-1298
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1318)
CVE-2020-1318
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1320)
CVE-2020-1320
CWE-707
Medium
SharePoint URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-1323)
CVE-2020-1323
CWE-601
Medium
phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23217)
CVE-2020-23217
CWE-707
Medium
Coppermine Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7186)
CVE-2008-7186
CWE-264
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-2231)
CVE-2020-2231
CWE-707
Medium
PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5335)
CVE-2008-5335
CWE-138
Medium
SugarCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-28956)
CVE-2020-28956
CWE-707
Medium
SugarCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-28955)
CVE-2020-28955
CWE-707
Medium
Zope Web Application Server Resource Management Errors Vulnerability (CVE-2008-5102)
CVE-2008-5102
-
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5113)
CVE-2008-5113
CWE-352
Medium
Moodle Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-5153)
CVE-2008-5153
CWE-59
Medium
Ruby on Rails Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5189)
CVE-2008-5189
CWE-352
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5249)
CVE-2008-5249
CWE-707
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5252)
CVE-2008-5252
CWE-352
Medium
GlassFish Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5266)
CVE-2008-5266
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5278)
CVE-2008-5278
CWE-707
Medium
Werkzeug WSGI URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-28724)
CVE-2020-28724
CWE-601
Medium
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5320)
CVE-2008-5320
CWE-138
Medium
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-28644)
CVE-2020-28644
CWE-352
Medium
Lodash Other Vulnerability (CVE-2020-28500)
CVE-2020-28500
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5432)
CVE-2008-5432
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-29003)
CVE-2020-29003
CWE-707
Medium
Oracle Application Server CVE-2008-5438 Vulnerability (CVE-2008-5438)
CVE-2008-5438
-
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5498)
CVE-2008-5498
CWE-200
Medium
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-5515)
CVE-2008-5515
CWE-22
Medium
axios Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-28168)
CVE-2020-28168
CWE-918
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-28040)
CVE-2020-28040
CWE-352
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-28038)
CVE-2020-28038
CWE-707
Medium
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5621)
CVE-2008-5621
CWE-352
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-28034)
CVE-2020-28034
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5644)
CVE-2008-5644
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5656)
CVE-2008-5656
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-27957)
CVE-2020-27957
CWE-707
Medium
MediaWiki Other Vulnerability (CVE-2020-27621)
CVE-2020-27621
-
Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5687)
CVE-2008-5687
CWE-264
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5688)
CVE-2008-5688
CWE-200
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-29002)
CVE-2020-29002
CWE-707
Medium
OpenSSL Improper Input Validation Vulnerability (CVE-2008-5077)
CVE-2008-5077
CWE-20
Medium
Jetty CVE-2020-27218 Vulnerability (CVE-2020-27218)
CVE-2020-27218
-
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-2103)
CVE-2020-2103
CWE-200
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-2230)
CVE-2020-2230
CWE-707
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-2229)
CVE-2020-2229
CWE-707
Medium