Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
ownCloud Other Vulnerability (CVE-2022-25338)
CVE-2022-25338
-
Medium
ownCloud Other Vulnerability (CVE-2022-25339)
CVE-2022-25339
-
Medium
Drupal Incorrect Authorization Vulnerability (CVE-2022-25270)
CVE-2022-25270
CWE-863
Medium
Liferay DXP Origin Validation Error Vulnerability (CVE-2022-25146)
CVE-2022-25146
CWE-346
Medium
Liferay Portal Origin Validation Error Vulnerability (CVE-2022-25146)
CVE-2022-25146
CWE-346
Medium
Contao Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-24899)
CVE-2022-24899
CWE-707
Medium
XWiki Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-24897)
CVE-2022-24897
CWE-22
Medium
WebLogic Other Vulnerability (CVE-2022-24891)
CVE-2022-24891
-
Medium
XWiki Missing Authentication for Critical Function Vulnerability (CVE-2022-24820)
CVE-2022-24820
CWE-306
Medium
GibbonEdu Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23871)
CVE-2022-23871
CWE-707
Medium
XWiki Exposure of Private Personal Information to an Unauthorized Actor Vulnerability (CVE-2022-24819)
CVE-2022-24819
CWE-359
Medium
AngularJS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-25869)
CVE-2022-25869
CWE-707
Medium
Drupal Improper Input Validation Vulnerability (CVE-2022-24775)
CVE-2022-24775
CWE-20
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-24728)
CVE-2022-24728
CWE-707
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-24620)
CVE-2022-24620
CWE-707
Medium
SharePoint CVE-2022-24472 Vulnerability (CVE-2022-24472)
CVE-2022-24472
-
Medium
silverstripeCMS Session Fixation Vulnerability (CVE-2022-24444)
CVE-2022-24444
CWE-384
Medium
MongoDb Reachable Assertion Vulnerability (CVE-2022-24272)
CVE-2022-24272
CWE-617
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-26593)
CVE-2022-26593
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-26593)
CVE-2022-26593
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-26594)
CVE-2022-26594
CWE-707
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-26595)
CVE-2022-26595
CWE-276
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-26596)
CVE-2022-26596
CWE-707
Medium
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23552)
CVE-2022-23552
CWE-707
Medium
TYPO3 Insufficient Session Expiration Vulnerability (CVE-2022-23502)
CVE-2022-23502
CWE-613
Medium
MySQL CVE-2022-21592 Vulnerability (CVE-2022-21592)
CVE-2022-21592
-
Medium
MySQL CVE-2022-21625 Vulnerability (CVE-2022-21625)
CVE-2022-21625
-
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-21662)
CVE-2022-21662
CWE-707
Medium
Envoy Proxy Improper Certificate Validation Vulnerability (CVE-2022-21657)
CVE-2022-21657
CWE-295
Medium
Envoy Proxy Improper Certificate Validation Vulnerability (CVE-2022-21656)
CVE-2022-21656
CWE-295
Medium
MySQL CVE-2022-21641 Vulnerability (CVE-2022-21641)
CVE-2022-21641
-
Medium
MySQL CVE-2022-21640 Vulnerability (CVE-2022-21640)
CVE-2022-21640
-
Medium
MySQL CVE-2022-21638 Vulnerability (CVE-2022-21638)
CVE-2022-21638
-
Medium
MySQL CVE-2022-21637 Vulnerability (CVE-2022-21637)
CVE-2022-21637
-
Medium
MySQL CVE-2022-21635 Vulnerability (CVE-2022-21635)
CVE-2022-21635
-
Medium
MySQL CVE-2022-21633 Vulnerability (CVE-2022-21633)
CVE-2022-21633
-
Medium
MySQL CVE-2022-21632 Vulnerability (CVE-2022-21632)
CVE-2022-21632
-
Medium
Oracle JRE CVE-2022-21628 Vulnerability (CVE-2022-21628)
CVE-2022-21628
-
Medium
Oracle JRE CVE-2022-21626 Vulnerability (CVE-2022-21626)
CVE-2022-21626
-
Medium
Oracle JRE CVE-2022-21618 Vulnerability (CVE-2022-21618)
CVE-2022-21618
-
Medium
markdown-it Inefficient Regular Expression Complexity Vulnerability (CVE-2022-21670)
CVE-2022-21670
CWE-1333
Medium
MySQL CVE-2022-21617 Vulnerability (CVE-2022-21617)
CVE-2022-21617
-
Medium
WebLogic CVE-2022-21616 Vulnerability (CVE-2022-21616)
CVE-2022-21616
-
Medium
MySQL CVE-2022-21611 Vulnerability (CVE-2022-21611)
CVE-2022-21611
-
Medium
MySQL CVE-2022-21608 Vulnerability (CVE-2022-21608)
CVE-2022-21608
-
Medium
MySQL CVE-2022-21607 Vulnerability (CVE-2022-21607)
CVE-2022-21607
-
Medium
MySQL CVE-2022-21605 Vulnerability (CVE-2022-21605)
CVE-2022-21605
-
Medium
MySQL CVE-2022-21604 Vulnerability (CVE-2022-21604)
CVE-2022-21604
-
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-29251)
CVE-2022-29251
CWE-707
Medium
MySQL CVE-2022-21599 Vulnerability (CVE-2022-21599)
CVE-2022-21599
-
Medium
MySQL CVE-2022-21595 Vulnerability (CVE-2022-21595)
CVE-2022-21595
-
Medium
MySQL CVE-2022-21594 Vulnerability (CVE-2022-21594)
CVE-2022-21594
-
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-29252)
CVE-2022-29252
CWE-707
Medium
XWiki Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-29253)
CVE-2022-29253
CWE-22
Medium
Envoy Proxy NULL Pointer Dereference Vulnerability (CVE-2022-29224)
CVE-2022-29224
CWE-476
Medium
Grafana Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-21673)
CVE-2022-21673
CWE-200
Medium
TYPO3 Improper Authentication Vulnerability (CVE-2022-23501)
CVE-2022-23501
CWE-287
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28978)
CVE-2022-28978
CWE-707
Medium
Apache read beyond bounds in mod_isapi Vulnerability (CVE-2022-28330)
CVE-2022-28330
-
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28378)
CVE-2022-28378
CWE-707
Medium
Apache read beyond bounds via ap_rwrite() Vulnerability (CVE-2022-28614)
CVE-2022-28614
-
Medium
TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23494)
CVE-2022-23494
CWE-707
Medium
WebLogic Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2022-23437)
CVE-2022-23437
CWE-835
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28803)
CVE-2022-28803
CWE-707
Medium
Caddy Web Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-28923)
CVE-2022-28923
CWE-601
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-28977)
CVE-2022-28977
CWE-601
Medium
Liferay DXP URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-28977)
CVE-2022-28977
CWE-601
Medium
Spring Cloud Gateway Improper Certificate Validation Vulnerability (CVE-2022-22946)
CVE-2022-22946
CWE-295
Medium
GibbonEdu Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-22868)
CVE-2022-22868
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-22818)
CVE-2022-22818
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28978)
CVE-2022-28978
CWE-707
Medium
SharePoint CVE-2022-29108 Vulnerability (CVE-2022-29108)
CVE-2022-29108
-
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28979)
CVE-2022-28979
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28979)
CVE-2022-28979
CWE-707
Medium
Lighttpd Out-of-bounds Write Vulnerability (CVE-2022-22707)
CVE-2022-22707
CWE-787
Medium
«
1
...
89
90
91
...
181
»
