Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Oracle JRE CVE-2013-2466 Vulnerability (CVE-2013-2466)
CVE-2013-2466
-
Critical
Oracle JRE CVE-2013-2468 Vulnerability (CVE-2013-2468)
CVE-2013-2468
-
Critical
Liferay Portal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-42122)
CVE-2022-42122
CWE-138
Critical
Oracle JRE CVE-2013-2469 Vulnerability (CVE-2013-2469)
CVE-2013-2469
-
Critical
Oracle JRE CVE-2013-2470 Vulnerability (CVE-2013-2470)
CVE-2013-2470
-
Critical
Oracle JRE CVE-2013-2471 Vulnerability (CVE-2013-2471)
CVE-2013-2471
-
Critical
Oracle JRE CVE-2013-2472 Vulnerability (CVE-2013-2472)
CVE-2013-2472
-
Critical
Oracle JRE CVE-2013-2473 Vulnerability (CVE-2013-2473)
CVE-2013-2473
-
Critical
FluxBB CVE-2011-3621 Vulnerability (CVE-2011-3621)
CVE-2011-3621
-
Critical
Vanilla Forums Other Vulnerability (CVE-2011-3614)
CVE-2011-3614
-
Critical
Zope Web Application Server CVE-2011-3587 Vulnerability (CVE-2011-3587)
CVE-2011-3587
-
Critical
WordPress CVE-2011-3125 Vulnerability (CVE-2011-3125)
CVE-2011-3125
-
Critical
Plone CMS CVE-2011-3587 Vulnerability (CVE-2011-3587)
CVE-2011-3587
-
Critical
TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-3583)
CVE-2011-3583
CWE-138
Critical
Oracle JRE CVE-2011-3544 Vulnerability (CVE-2011-3544)
CVE-2011-3544
-
Critical
Dolibarr Improper Privilege Management Vulnerability (CVE-2022-43138)
CVE-2022-43138
CWE-269
Critical
SharePoint Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-3889)
CVE-2013-3889
CWE-119
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2011-3268)
CVE-2011-3268
CWE-119
Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-43168)
CVE-2022-43168
CWE-138
Critical
Moodle CVE-2021-36394 Vulnerability (CVE-2021-36394)
CVE-2021-36394
-
Critical
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-36393)
CVE-2021-36393
CWE-138
Critical
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-36392)
CVE-2021-36392
CWE-138
Critical
MediaWiki Improper Authentication Vulnerability (CVE-2021-36128)
CVE-2021-36128
CWE-287
Critical
MediaWiki Other Vulnerability (CVE-2021-36126)
CVE-2021-36126
-
Critical
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-3129)
CVE-2011-3129
CWE-264
Critical
Oracle JRE CVE-2013-1481 Vulnerability (CVE-2013-1481)
CVE-2013-1481
-
Critical
Oracle JRE CVE-2013-1479 Vulnerability (CVE-2013-1479)
CVE-2013-1479
-
Critical
Undertow CVE-2022-4492 Vulnerability (CVE-2022-4492)
CVE-2022-4492
-
Critical
Oracle Database Server CVE-2012-3220 Vulnerability (CVE-2012-3220)
CVE-2012-3220
-
Critical
MediaWiki CVE-2022-28205 Vulnerability (CVE-2022-28205)
CVE-2022-28205
-
Critical
MediaWiki CVE-2022-28206 Vulnerability (CVE-2022-28206)
CVE-2022-28206
-
Critical
MediaWiki CVE-2022-28209 Vulnerability (CVE-2022-28209)
CVE-2022-28209
-
Critical
MySQL CVE-2012-3163 Vulnerability (CVE-2012-3163)
CVE-2012-3163
-
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-28346)
CVE-2022-28346
CWE-138
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-28347)
CVE-2022-28347
CWE-138
Critical
Oracle JRE Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3174)
CVE-2012-3174
CWE-264
Critical
Apache HTTP Server Integer Overflow or Wraparound Vulnerability (CVE-2022-28615)
CVE-2022-28615
CWE-190
Critical
Grafana Missing Authentication for Critical Function Vulnerability (CVE-2022-28660)
CVE-2022-28660
CWE-306
Critical
Ruby Double Free Vulnerability (CVE-2022-28738)
CVE-2022-28738
CWE-415
Critical
WebLogic Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-23457)
CVE-2022-23457
CWE-22
Critical
Oracle JRE CVE-2012-3213 Vulnerability (CVE-2012-3213)
CVE-2012-3213
-
Critical
Oracle JRE CVE-2012-3342 Vulnerability (CVE-2012-3342)
CVE-2012-3342
-
Critical
Oracle JRE CVE-2012-3136 Vulnerability (CVE-2012-3136)
CVE-2012-3136
-
Critical
Oracle JRE CVE-2012-1541 Vulnerability (CVE-2012-1541)
CVE-2012-1541
-
Critical
Oracle JRE CVE-2012-1533 Vulnerability (CVE-2012-1533)
CVE-2012-1533
-
Critical
Oracle JRE CVE-2012-1532 Vulnerability (CVE-2012-1532)
CVE-2012-1532
-
Critical
Oracle JRE CVE-2012-1531 Vulnerability (CVE-2012-1531)
CVE-2012-1531
-
Critical
WebLogic Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-23305)
CVE-2022-23305
CWE-138
Critical
WebLogic Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2022-22965)
CVE-2022-22965
CWE-94
Critical
Spring Cloud Gateway Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression La Vulnerability (CVE-2022-22947)
CVE-2022-22947
CWE-138
Critical
Oracle HTTP Server Integer Overflow or Wraparound Vulnerability (CVE-2022-22721)
CVE-2022-22721
CWE-190
Critical
Apache HTTP Server Integer Overflow or Wraparound Vulnerability (CVE-2022-22721)
CVE-2022-22721
CWE-190
Critical
Oracle HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2022-22720)
CVE-2022-22720
CWE-444
Critical
PrestaShop Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2022-21686)
CVE-2022-21686
CWE-94
Critical
XWiki Inadequate Encryption Strength Vulnerability (CVE-2022-29161)
CVE-2022-29161
CWE-326
Critical
Envoy Proxy Improper Certificate Validation Vulnerability (CVE-2022-21654)
CVE-2022-21654
CWE-295
Critical
Oracle JRE CVE-2012-3143 Vulnerability (CVE-2012-3143)
CVE-2012-3143
-
Critical
Oracle JRE CVE-2012-1682 Vulnerability (CVE-2012-1682)
CVE-2012-1682
-
Critical
Werkzeug WSGI Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2022-29361)
CVE-2022-29361
-
Critical
WordPress CVE-2012-2400 Vulnerability (CVE-2012-2400)
CVE-2012-2400
-
Critical
Oracle HTTP Server Integer Overflow or Wraparound Vulnerability (CVE-2022-25315)
CVE-2022-25315
CWE-190
Critical
Oracle HTTP Server Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-25236)
CVE-2022-25236
CWE-668
Critical
Oracle HTTP Server Improper Encoding or Escaping of Output Vulnerability (CVE-2022-25235)
CVE-2022-25235
CWE-116
Critical
Atlassian Confluence Unauthenticated Remote Code Execution Vulnerability (CVE-2022-26134)
CVE-2022-26134
-
Critical
Atlassian Jira Incorrect Behavior Order: Validate Before Canonicalize Vulnerability (CVE-2022-26136)
CVE-2022-26136
CWE-180
Critical
Atlassian Confluence Incorrect Behavior Order: Validate Before Canonicalize Vulnerability (CVE-2022-26136)
CVE-2022-26136
CWE-180
Critical
Atlassian Confluence Incorrect Behavior Order: Validate Before Canonicalize Vulnerability (CVE-2022-26137)
CVE-2022-26137
CWE-180
Critical
Atlassian Jira Incorrect Behavior Order: Validate Before Canonicalize Vulnerability (CVE-2022-26137)
CVE-2022-26137
CWE-180
Critical
Grafana Cleartext Storage of Sensitive Information Vulnerability (CVE-2022-26148)
CVE-2022-26148
CWE-312
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-2376)
CVE-2012-2376
CWE-119
Critical
WordPress CVE-2012-2399 Vulnerability (CVE-2012-2399)
CVE-2012-2399
-
Critical
Dot CMS Other Vulnerability (CVE-2022-26352)
CVE-2022-26352
-
Critical
PHP Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2012-1823)
CVE-2012-1823
CWE-138
Critical
Magento Improper Input Validation Vulnerability (CVE-2022-24086)
CVE-2022-24086
CWE-20
Critical
Atlassian Jira CVE-2012-2926 Vulnerability (CVE-2012-2926)
CVE-2012-2926
-
Critical
«
1
...
8
9
10
...
181
»
