Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Missing Update

This page lists 23101 vulnerabilities in this category.

Critical: 1474 High: 12458 Medium: 8395 Low: 770 Information: 4
Vulnerability Name
CVE
CWE
Severity
WordPress Plugin WCFM-Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible Unspecified Vulnerability (6.5.12)
-
-
High
WordPress Plugin WooCommerce Admin Security Bypass (2.6.3)
-
CWE-284
High
CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-1931)
CVE-2010-1931
CWE-138
High
Python Integer Overflow or Wraparound Vulnerability (CVE-2010-1449)
CVE-2010-1449
CWE-190
High
PostgreSQL Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-1169)
CVE-2010-1169
CWE-94
High
WordPress Plugin WP HTML Author Bio Cross-Site Scripting (1.2.0)
CVE-2021-24545
CWE-79
High
WordPress Plugin WP Header Images Cross-Site Scripting (2.0.0)
CVE-2021-24798
CWE-79
High
WordPress Plugin WP Floating Menu-One page navigator, sticky menu for WordPress includes Backdoor [Only if downloaded via the vendor website] (1.4.4)
CVE-2021-24867
CWE-912
High
Internet Information Services Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-1256)
CVE-2010-1256
CWE-94
High
WordPress Plugin WP Debugging Security Bypass (2.10.2)
CVE-2021-24779
CWE-264
High
WordPress Plugin World Travel Information Cross-Site Scripting (1.0.0)
-
CWE-79
High
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1432)
CVE-2010-1432
CWE-200
High
Joomla Session Fixation Vulnerability (CVE-2010-1434)
CVE-2010-1434
CWE-384
High
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1447)
CVE-2010-1447
CWE-264
High
Python Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2010-1450)
CVE-2010-1450
CWE-120
High
WordPress Plugin WooCommerce Product Table Lite Cross-Site Scripting (2.3.0)
-
CWE-79
High
WordPress Plugin WordPress Slider-WP 1 Slider includes Backdoor [Only if downloaded via the vendor website] (1.2.9)
CVE-2021-24867
CWE-912
High
WordPress Plugin WordPress Popular Posts Cross-Site Scripting (5.3.5)
-
CWE-79
High
WordPress Plugin WordPress Email Template Designer-WP HTML Mail Cross-Site Scripting (3.0.9)
CVE-2022-0218
CWE-79
High
WordPress Plugin WordPress Easy Custom Js And Css Cross-Site Scripting (1.1.2)
-
CWE-79
High
WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.15)
CVE-2021-24773
CWE-79
High
WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.21)
CVE-2021-24969
CWE-79
High
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-1615)
CVE-2010-1615
CWE-138
High
WordPress Plugin WordPress Contact Forms by Cimatti Cross-Site Scripting (1.4.11)
CVE-2021-24744
CWE-79
High
WordPress Plugin WordPress Backend Customizer-Everest Admin Theme Lite includes Backdoor [Only if downloaded via the vendor website] (1.0.7)
CVE-2021-24867
CWE-912
High
WordPress Plugin WooCommerce Security Bypass (5.6.0)
-
CWE-284
High
WordPress Plugin Testimonial WordPress-AP Custom Testimonial includes Backdoor [Only if downloaded via the vendor website] (1.4.6)
CVE-2021-24867
CWE-912
High
WordPress Plugin TAuto Poster includes Backdoor [Only if downloaded via the vendor website] (1.4.5)
CVE-2021-24867
CWE-912
High
WordPress Plugin Permalink Manager Lite Unspecified Vulnerability (2.2.13.1)
-
-
High
WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker Multiple Vulnerabilities (7.3.6)
CVE-2022-0182
CWE-352
High
WordPress Plugin Responsive Products Showcase Listing for WordPress-WP Product Gallery Lite includes Backdoor [Only if downloaded via the vendor website] (1.1.1)
CVE-2021-24867
CWE-912
High
WordPress Plugin Responsive Notification Bar for WordPress-Apex Notification Bar Lite includes Backdoor [Only if downloaded via the vendor website] (2.0.4)
CVE-2021-24867
CWE-912
High
WordPress Plugin Responsive Media Gallery for WordPress-Everest Gallery Lite includes Backdoor [Only if downloaded via the vendor website] (1.0.8)
CVE-2021-24867
CWE-912
High
WordPress Plugin Responsive Clients Logo Gallery for WordPress-Smart Logo Showcase Lite includes Backdoor [Only if downloaded via the vendor website] (1.1.7)
CVE-2021-24867
CWE-912
High
WordPress Plugin Request a Quote Cross-Site Scripting (2.3.4)
CVE-2021-24489
CWE-79
High
WordPress Plugin Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Open Redirect (3.7.2.3)
-
CWE-601
High
WordPress Plugin Redirect 404 Error Page to Homepage or Custom Page with Logs Cross-Site Request Forgery (1.7.8)
CVE-2021-24767
CWE-352
High
WordPress Plugin Random Banner Cross-Site Scripting (4.1.4)
CVE-2022-0210
CWE-79
High
WordPress Plugin Qwizcards-online quizzes and flashcards Cross-Site Scripting (3.61)
CVE-2021-24706
CWE-79
High
WordPress Plugin Quiz Tool Lite Multiple Cross-Site Scripting Vulnerabilities (2.3.15)
CVE-2021-24701
CWE-79
High
WordPress Plugin qTranslate X Multiple Cross-Site Scripting Vulnerabilities (3.4.6.8)
-
CWE-79
High
WordPress Plugin Responsive WordPress Slider Cross-Site Scripting (2.2.0)
CVE-2021-24544
CWE-79
High
Ruby Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2010-2489)
CVE-2010-2489
CWE-119
High
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Security Bypass (2.5.1)
CVE-2021-24783
CWE-264
High
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Cross-Site Scripting (2.7.0)
-
CWE-79
High
Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-2679)
CVE-2010-2679
CWE-138
High
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Cross-Site Scripting (4.7.4)
CVE-2022-0233
CWE-79
High
WordPress Plugin Product Slider For WooCommerce Lite includes Backdoor [Only if downloaded via the vendor website] (1.1.5)
CVE-2021-24867
CWE-912
High
WordPress Plugin Print-O-Matic Cross-Site Scripting (2.0.2)
CVE-2021-24710
CWE-79
High
WordPress Plugin Pricing Table Builder-AP Pricing Tables Lite includes Backdoor [Only if downloaded via the vendor website] (1.1.2)
CVE-2021-24867
CWE-912
High
WordPress Plugin PI Button includes Backdoor [Only if downloaded via the vendor website] (3.3.3)
CVE-2021-24867
CWE-912
High
WordPress Plugin Phoenix Media Rename Security Bypass (3.4.2)
CVE-2021-24816
CWE-264
High
Oracle Database Server CVE-2010-2390 Vulnerability (CVE-2010-2390)
CVE-2010-2390
-
High
WordPress Plugin Responsive WordPress Timeline-Everest Timeline Lite includes Backdoor [Only if downloaded via the vendor website] (1.1.1)
CVE-2021-24867
CWE-912
High
WordPress Plugin Subscriptions & Memberships for PayPal Unspecified Vulnerability (1.1.5)
-
-
High
WordPress Plugin Smartest Way To Design & Customize WordPress Comments & Comment Form-WP Comment Designer Lite includes Backdoor [Only if downloaded via the vendor website] (2.0.3)
CVE-2021-24867
CWE-912
High
WordPress Plugin Subscriptions & Memberships for PayPal Cross-Site Scripting (1.1.2)
-
CWE-79
High
WordPress Plugin Stylish Price List Security Bypass (6.9.0)
CVE-2021-24770
CWE-863
High
WordPress Plugin Stylish Price List Security Bypass (6.8.14)
CVE-2021-24757
CWE-863
High
WordPress Plugin Storefront Footer Text Cross-Site Scripting (1.0.1)
CVE-2021-24607
CWE-79
High
WordPress Plugin St-Daily-Tip Cross-Site Request Forgery (4.7)
CVE-2021-24487
CWE-352
High
WordPress Plugin Sports Rankings and Lists Cross-Site Scripting (3.5)
-
CWE-79
High
e107 Other Vulnerability (CVE-2010-2098)
CVE-2010-2098
-
High
e107 Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-2099)
CVE-2010-2099
CWE-264
High
WordPress Plugin Social Review includes Backdoor [Only if downloaded via the vendor website] (1.0.8)
CVE-2021-24867
CWE-912
High
WordPress Plugin Social Auto Poster includes Backdoor [Only if downloaded via the vendor website] (2.1.3)
CVE-2021-24867
CWE-912
High
WordPress Plugin Smart Scroll Posts for WordPress includes Backdoor [Only if downloaded via the vendor website] (2.0.8)
CVE-2021-24867
CWE-912
High
WordPress Plugin Restaurant Menu by MotoPress Cross-Site Scripting (2.4.1)
CVE-2021-24722
CWE-79
High
WordPress Plugin Simple Download Monitor Multiple Vulnerabilities (3.9.5.1)
CVE-2021-24698
CWE-264
High
PHP Resource Management Errors Vulnerability (CVE-2010-2225)
CVE-2010-2225
-
High
WordPress Plugin Simple Download Monitor Multiple Cross-Site Scripting Vulnerabilities (3.9.4)
CVE-2021-24697
CWE-79
High
WordPress Plugin Simple Download Monitor Multiple Cross-Site Request Forgery Vulnerabilities (3.9.8)
CVE-2021-24696
CWE-352
High
WordPress Plugin Simple Download Monitor Cross-Site Scripting (3.9.10)
CVE-2021-24694
CWE-79
High
WordPress Plugin Similar Posts-Best Related Posts for WordPress Remote Code Execution (3.1.5)
CVE-2021-24537
CWE-94
High
WordPress Plugin Side Cart Woocommerce (Ajax) Cross-Site Request Forgery (2.0)
CVE-2022-0215
CWE-352
High