Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Missing Update

This page lists 23101 vulnerabilities in this category.

Critical: 1474 High: 12458 Medium: 8395 Low: 770 Information: 4
Vulnerability Name
CVE
CWE
Severity
WordPress Plugin WordPress Popups for Marketing and Email Newsletters, Lead Generation and Conversions by OptinMonster Cross-Site Scripting (2.6.0)
CVE-2021-39325
CWE-79
High
WordPress Plugin WordPress Photo Gallery-Image Gallery Cross-Site Request Forgery (1.0.6)
-
CWE-352
High
WordPress Plugin WordPress InviteBox for viral Refer-a-Friend Promotions Cross-Site Scripting (1.4.1)
CVE-2021-38359
CWE-79
High
WordPress Plugin WordPress Form Customizer-CF7 Customizer Cross-Site Scripting (1.6.1)
CVE-2021-24435
CWE-79
High
WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (3.2.12)
-
CWE-352
High
WordPress Plugin WordPress Automatic Security Bypass (3.53.2)
-
CWE-264
High
WordPress Plugin WordPress Affiliates-SliceWP Cross-Site Scripting (1.0.45)
-
CWE-79
High
WordPress Plugin WordPress Advanced Ticket System, Elite Support Helpdesk Cross-Site Scripting (1.0.63)
CVE-2021-24623
CWE-79
High
WordPress Plugin Woosaleskit Bar Cross-Site Scripting (1.0.0)
CVE-2021-24435
CWE-79
High
WordPress Plugin Woocommerce Payment Gateway per Category Cross-Site Scripting (2.0.10)
CVE-2021-38341
CWE-79
High
WordPress Plugin WP Learn Manager Cross-Site Scripting (1.1.2)
CVE-2021-24504
CWE-79
High
WordPress Plugin WP Mapa Politico Espana Cross-Site Scripting (3.6.2)
CVE-2021-24609
CWE-79
High
WordPress Plugin WooCommerce Dynamic Pricing & Discounts Multiple Vulnerabilities (2.4.1)
-
CWE-264
High
WordPress Plugin youForms for WordPress-Creating Forms for CopeCart Cross-Site Scripting (1.0.5)
CVE-2021-24596
CWE-79
High
WordPress Plugin Comment Link Remove and Other Comment Tools Cross-Site Request Forgery (2.1.4)
CVE-2021-24725
CWE-352
High
WordPress Plugin Chameleon CSS SQL Injection (1.2)
CVE-2021-24626
CWE-89
High
WordPress Plugin Catch Themes Demo Import Arbitrary File Upload (1.7)
CVE-2021-39352
CWE-434
High
WordPress Plugin Business Manager-WordPress ERP, HR, CRM, and Project Management Cross-Site Scripting (1.4.5)
CVE-2021-39332
CWE-79
High
WordPress Plugin Brizy-Page Builder Multiple Vulnerabilities (2.3.11)
CVE-2021-38346
CWE-434
High
WordPress Plugin Author Bio Box Cross-Site Scripting (3.3.1)
CVE-2021-39349
CWE-79
High
WordPress Plugin Advanced Custom Fields (ACF) Security Bypass (5.9.9)
-
CWE-264
High
WordPress Plugin Access Demo Importer Arbitrary File Upload (1.0.6)
CVE-2021-39317
CWE-434
High
WordPress Plugin ZoomSounds-WordPress Wave Audio Player with Playlist Directory Traversal (6.45)
CVE-2021-39316
CWE-22
High
WordPress Plugin YouTube Video Inserter Cross-Site Scripting (1.2.1.0)
CVE-2021-38327
CWE-79
High
WordPress Plugin You Shang Cross-Site Scripting (1.0.1)
CVE-2021-24597
CWE-79
High
WordPress Plugin WP Mobile Menu-The Mobile-Friendly Responsive Menu Cross-Site Scripting (2.8.2.2)
CVE-2021-24435
CWE-79
High
WordPress Plugin Yet Another bol.com Cross-Site Scripting (1.4)
CVE-2021-38330
CWE-79
High
WordPress Plugin Yandex Money button Cross-Site Scripting (2.3.3)
CVE-2021-24435
CWE-79
High
WordPress Plugin XforWooCommerce Security Bypass (1.6.4)
-
CWE-264
High
WordPress Plugin WPFront Notification Bar Cross-Site Scripting (2.0.0.07176)
CVE-2021-24601
CWE-79
High
WordPress Plugin WP-T-Wap Cross-Site Scripting (1.13.2)
CVE-2021-38331
CWE-79
High
WordPress Plugin WP Songbook Cross-Site Scripting (2.0.11)
CVE-2021-34655
CWE-79
High
WordPress Plugin WP SEO Tags Cross-Site Scripting (2.2.7)
CVE-2021-34665
CWE-79
High
WordPress Plugin WP Security Question Cross-Site Request Forgery (1.0.5)
-
CWE-352
High
WordPress Plugin WP Scrippets Cross-Site Scripting (1.5.1)
CVE-2021-38333
CWE-79
High
WordPress Plugin wp-publications Local File Inclusion (0.0)
CVE-2021-38360
CWE-22
High
WordPress Plugin WooCommerce Multi Currency-Currency Switcher Security Bypass (2.1.17)
-
CWE-264
High
WordPress Plugin Woocommerce Categories in gallery format Cross-Site Scripting (1.0.1)
CVE-2021-24435
CWE-79
High
WordPress Plugin Contact Form 7 Zendesk Cross-Site Scripting (1.0.7)
-
CWE-79
High
WordPress Plugin SMS Alert Order Notifications-WooCommerce Cross-Site Scripting (3.4.6)
CVE-2021-24588
CWE-79
High
WordPress Plugin spideranalyse Cross-Site Scripting (0.0.1)
CVE-2021-38350
CWE-79
High
WordPress Plugin SpeakOut! Email Petitions Cross-Site Scripting (2.13.2)
-
CWE-79
High
PmWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4453)
CVE-2011-4453
CWE-94
High
WordPress Plugin SP Rental Manager SQL Injection (1.5.3)
CVE-2021-38324
CWE-89
High
WordPress Plugin SP Project & Document Manager Cross-Site Scripting (4.25)
CVE-2021-38315
CWE-79
High
WordPress Plugin SP Project & Document Manager Arbitrary File Upload (4.22)
-
CWE-434
High
WordPress Plugin Software License Manager Cross-Site Scripting (4.4.9)
-
CWE-79
High
WordPress Plugin Software License Manager Cross-Site Scripting (4.4.7)
CVE-2021-24560
CWE-79
High
WordPress Plugin Software License Manager Cross-Site Request Forgery (4.5.0)
CVE-2021-24711
CWE-352
High
WordPress Plugin SMS OVH Cross-Site Scripting (0.1)
CVE-2021-38357
CWE-79
High
WordPress Plugin Smash Balloon Social Post Feed Cross-Site Scripting (2.19.1)
CVE-2021-24508
CWE-79
High
WordPress Plugin Stars Menu Cross-Site Scripting (1.0.1)
CVE-2021-24435
CWE-79
High
WordPress Plugin Smart Email Alerts Cross-Site Scripting (1.0.10)
CVE-2021-34642
CWE-79
High
WordPress Plugin Sitewide Notice WP Cross-Site Scripting (2.2)
CVE-2021-24592
CWE-79
High
WordPress Plugin Site Reviews Cross-Site Scripting (5.13.0)
CVE-2021-24603
CWE-79
High
WordPress Plugin simpleSAMLphp Authentication Cross-Site Scripting (0.7.0)
CVE-2021-38320
CWE-79
High
WordPress Plugin Simple Popup Newsletter Cross-Site Scripting (1.4.7)
CVE-2021-34658
CWE-79
High
WordPress Plugin Simple Matted Thumbnails Cross-Site Scripting (1.01)
CVE-2021-38339
CWE-79
High
WordPress Plugin Simple Behance Portfolio Cross-Site Scripting (0.2)
CVE-2021-34649
CWE-79
High
WordPress Plugin Sidebar Adder 2 Cross-Site Scripting (2.0.0)
CVE-2021-34666
CWE-79
High
WordPress Plugin Side Menu Lite-add sticky fixed buttons SQL Injection (2.2.5)
CVE-2021-24580
CWE-89
High
WordPress Plugin Side Menu Lite-add sticky fixed buttons SQL Injection (2.2.1)
-
CWE-89
High
WordPress Plugin Splash Header Cross-Site Scripting (1.20.7)
CVE-2021-24587
CWE-79
High
WordPress Plugin Station Pro Cross-Site Scripting (2.2.1)
CVE-2021-24435
CWE-79
High
WordPress Plugin Wise Agent Lead Capture Forms Cross-Site Scripting (1.0)
CVE-2021-38335
CWE-79
High
WordPress Plugin Two Factor Authentication Cross-Site Scripting (1.0.7)
-
CWE-79
High
WordPress Plugin WebHotelier for WordPress Cross-Site Scripting (1.5)
CVE-2021-24435
CWE-79
High
WordPress Plugin Warranties and Returns for WooCommerce Security Bypass (5.2.1)
-
CWE-264
High
WordPress Plugin W3SCloud Contact Form 7 to Zoho CRM Cross-Site Scripting (1.1.2)
CVE-2021-24435
CWE-79
High
WordPress Plugin Visual Link Preview Security Bypass (2.2.2)
CVE-2021-24635
CWE-264
High
WordPress Plugin Venture Event Manager Cross-Site Scripting (3.2.4)
CVE-2021-24435
CWE-79
High
WordPress Plugin VDZ Google Analytics or Google Tag Manager/GTM Cross-Site Scripting (1.5.5)
-
CWE-79
High
WordPress Plugin User Rights Access Manager Security Bypass (1.0.5)
-
CWE-264
High
WordPress Plugin User Activation Email Cross-Site Scripting (1.3.0)
CVE-2021-38325
CWE-79
High
WordPress Plugin underConstruction Cross-Site Scripting (1.18)
CVE-2021-39320
CWE-79
High