Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14673 vulnerabilities in this category.

Critical: 1573 High: 3882 Medium: 8446 Low: 770 Information: 2
Vulnerability Name
CVE
CWE
Severity
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-10160)
CVE-2016-10160
CWE-119
Critical
Piwigo Improper Access Control Vulnerability (CVE-2016-10105)
CVE-2016-10105
CWE-284
Critical
Serendipity Improper Access Control Vulnerability (CVE-2016-10082)
CVE-2016-10082
CWE-284
Critical
Joomla Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2016-10045)
CVE-2016-10045
CWE-138
Critical
WordPress Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2016-10045)
CVE-2016-10045
CWE-138
Critical
WordPress Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') Vulnerability (CVE-2016-10033)
CVE-2016-10033
CWE-707
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-1283)
CVE-2016-1283
CWE-119
Critical
Joomla Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') Vulnerability (CVE-2016-10033)
CVE-2016-10033
CWE-707
Critical
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-0799)
CVE-2016-0799
CWE-119
Critical
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0791)
CVE-2016-0791
CWE-200
Critical
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0788)
CVE-2016-0788
CWE-264
Critical
Nginx Other Vulnerability (CVE-2016-0746)
CVE-2016-0746
-
Critical
Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-0718)
CVE-2016-0718
CWE-119
Critical
Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-10752)
CVE-2016-10752
CWE-434
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-1903)
CVE-2016-1903
CWE-119
Critical
OpenSSL Other Vulnerability (CVE-2016-0705)
CVE-2016-0705
-
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2554)
CVE-2016-2554
CWE-119
Critical
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-3078)
CVE-2016-3078
CWE-190
Critical
PHP Incorrect Conversion between Numeric Types Vulnerability (CVE-2016-3074)
CVE-2016-3074
CWE-681
Critical
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-3065)
CVE-2016-3065
CWE-264
Critical
IBM WebSEAL Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2016-3028)
CVE-2016-3028
CWE-138
Critical
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2842)
CVE-2016-2842
CWE-119
Critical
ATutor Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-2555)
CVE-2016-2555
CWE-138
Critical
Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-2355)
CVE-2016-2355
CWE-138
Critical
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2108)
CVE-2016-2108
CWE-119
Critical
Ruby Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2339)
CVE-2016-2339
CWE-119
Critical
Ruby Out-of-bounds Write Vulnerability (CVE-2016-2338)
CVE-2016-2338
CWE-787
Critical
Ruby Other Vulnerability (CVE-2016-2337)
CVE-2016-2337
-
Critical
Ruby Other Vulnerability (CVE-2016-2336)
CVE-2016-2336
-
Critical
OpenSSL Out-of-bounds Write Vulnerability (CVE-2016-2182)
CVE-2016-2182
CWE-787
Critical
OpenSSL Integer Overflow or Wraparound Vulnerability (CVE-2016-2177)
CVE-2016-2177
CWE-190
Critical
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-2141)
CVE-2016-2141
CWE-264
Critical
MySQL Other Vulnerability (CVE-2016-0705)
CVE-2016-0705
-
Critical
MySQL CVE-2016-0639 Vulnerability (CVE-2016-0639)
CVE-2016-0639
-
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-3141)
CVE-2016-3141
CWE-119
Critical
Oracle JRE CVE-2013-0426 Vulnerability (CVE-2013-0426)
CVE-2013-0426
-
Critical
MediaWiki Credentials Management Errors Vulnerability (CVE-2015-8009)
CVE-2015-8009
-
Critical
ownCloud Improper Input Validation Vulnerability (CVE-2015-7699)
CVE-2015-7699
CWE-20
Critical
ownCloud Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2015-7698)
CVE-2015-7698
CWE-138
Critical
Oracle JRE Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0422)
CVE-2013-0422
CWE-264
Critical
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2015-7501)
CVE-2015-7501
CWE-502
Critical
Oracle JRE CVE-2013-0425 Vulnerability (CVE-2013-0425)
CVE-2013-0425
-
Critical
Oracle JRE CVE-2013-0428 Vulnerability (CVE-2013-0428)
CVE-2013-0428
-
Critical
ZenCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-8352)
CVE-2015-8352
CWE-22
Critical
GlassFish Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-7182)
CVE-2015-7182
CWE-119
Critical
Oracle JRE CVE-2013-0437 Vulnerability (CVE-2013-0437)
CVE-2013-0437
-
Critical
Oracle JRE CVE-2013-0441 Vulnerability (CVE-2013-0441)
CVE-2013-0441
-
Critical
Oracle JRE CVE-2013-0442 Vulnerability (CVE-2013-0442)
CVE-2013-0442
-
Critical
PHP Other Vulnerability (CVE-2015-6835)
CVE-2015-6835
-
Critical
PHP Other Vulnerability (CVE-2015-6834)
CVE-2015-6834
-
Critical
Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2015-8103)
CVE-2015-8103
CWE-502
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8383)
CVE-2015-8383
CWE-119
Critical
WebLogic CVE-2016-0638 Vulnerability (CVE-2016-0638)
CVE-2016-0638
-
Critical
Ruby on Rails CVE-2013-0277 Vulnerability (CVE-2013-0277)
CVE-2013-0277
-
Critical
Oracle Database Server CVE-2016-0499 Vulnerability (CVE-2016-0499)
CVE-2016-0499
-
Critical
MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-8974)
CVE-2015-8974
CWE-138
Critical
PHP Other Vulnerability (CVE-2015-8880)
CVE-2015-8880
-
Critical
PHP Other Vulnerability (CVE-2015-8876)
CVE-2015-8876
-
Critical
PHP Other Vulnerability (CVE-2015-8866)
CVE-2015-8866
-
Critical
PHP Other Vulnerability (CVE-2015-8835)
CVE-2015-8835
-
Critical
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8707)
CVE-2015-8707
CWE-200
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8386)
CVE-2015-8386
CWE-119
Critical
MediaWiki Credentials Management Errors Vulnerability (CVE-2015-8626)
CVE-2015-8626
-
Critical
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2015-8617)
CVE-2015-8617
CWE-134
Critical
Perl Out-of-bounds Read Vulnerability (CVE-2015-8608)
CVE-2015-8608
CWE-125
Critical
PHP Integer Overflow or Wraparound Vulnerability (CVE-2015-8394)
CVE-2015-8394
CWE-190
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8391)
CVE-2015-8391
CWE-119
Critical
PHP Use of Uninitialized Resource Vulnerability (CVE-2015-8390)
CVE-2015-8390
CWE-908
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8389)
CVE-2015-8389
CWE-119
Critical
PHP Double Free Vulnerability (CVE-2016-3132)
CVE-2016-3132
CWE-415
Critical
WebLogic CVE-2016-3499 Vulnerability (CVE-2016-3499)
CVE-2016-3499
-
Critical
Oracle JRE CVE-2013-0446 Vulnerability (CVE-2013-0446)
CVE-2013-0446
-
Critical
PHP Out-of-bounds Read Vulnerability (CVE-2016-6294)
CVE-2016-6294
CWE-125
Critical
phpMyAdmin Deserialization of Untrusted Data Vulnerability (CVE-2016-6620)
CVE-2016-6620
CWE-502
Critical
Artifactory Improper Input Validation Vulnerability (CVE-2016-6501)
CVE-2016-6501
CWE-20
Critical