🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Invicti vs. Competitors
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
MSSP
Documentation
Vulnerability Database
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Missing Update
This page lists
23409 vulnerabilities
in this category.
Critical: 1513
High: 12591
Medium: 8518
Low: 783
Information: 4
Vulnerability Name
CVE
CWE
Severity
WordPress Plugin Membership For WooCommerce-Add Simple Membership Plans, Recurring Revenue, Product Tags & Send Emails To Members with WooCommerce Membership Arbitrary File Upload (2.1.6)
CVE-2022-4395
CWE-434
High
phpMyFAQ Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2006-6912)
CVE-2006-6912
CWE-138
High
phpMyFAQ Other Vulnerability (CVE-2006-6913)
CVE-2006-6913
-
High
WordPress Plugin Locatoraid Store Locator Cross-Site Request Forgery (3.9.11)
CVE-2023-25709
CWE-352
High
WordPress Plugin Link Juice Keeper Cross-Site Scripting (2.0.2)
CVE-2023-25793
CWE-79
High
phpMyAdmin Other Vulnerability (CVE-2006-6944)
CVE-2006-6944
-
High
Joomla Other Vulnerability (CVE-2006-7009)
CVE-2006-7009
-
High
WordPress Plugin Google Analytics Opt-Out Cross-Site Scripting (2.3.4)
CVE-2023-25712
CWE-79
High
Joomla Other Vulnerability (CVE-2006-7010)
CVE-2006-7010
-
High
Claroline Other Vulnerability (CVE-2006-7048)
CVE-2006-7048
-
High
WordPress Plugin JSON Content Importer Cross-Site Scripting (1.3.15)
CVE-2023-25485
CWE-79
High
WordPress Plugin Interactive SVG Image Map Builder Cross-Site Scripting (1.0)
CVE-2023-25704
CWE-79
High
WordPress Plugin Interactive Geo Maps Cross-Site Scripting (1.5.8)
CVE-2023-23866
CWE-79
High
Apache Tomcat Other Vulnerability (CVE-2006-7197)
CVE-2006-7197
-
High
WordPress Plugin Interactive Geo Maps Cross-Site Scripting (1.5.10)
CVE-2023-0731
CWE-79
High
WordPress Plugin Inline Tweet Sharer-Twitter Sharing Cross-Site Scripting (2.5.3)
CVE-2023-24005
CWE-79
High
WordPress Plugin Gutenberg Blocks by WordPress Download Manager Cross-Site Scripting (2.1.8)
CVE-2023-22713
CWE-79
High
WordPress Plugin Google Maps v3 Shortcode Cross-Site Scripting (1.2.1)
CVE-2023-23827
CWE-79
High
Oracle Application Server CVE-2007-0280 Vulnerability (CVE-2007-0280)
CVE-2007-0280
-
High
WordPress Plugin CSS JS Manager, Async JavaScript, Defer Render Blocking CSS supports WooCommerce Cross-Site Request Forgery (2.4.49)
CVE-2022-47154
CWE-352
High
WordPress Plugin wpDataTables-WordPress Data Table, Dynamic Tables & Table Charts Multiple Cross-Site Scripting Vulnerabilities (2.1.27)
CVE-2022-29432
CWE-79
High
WordPress Plugin Youzify-BuddyPress Community, User Profile, Social Network & Membership for WordPress Cross-Site Scripting (1.2.1)
CVE-2023-0059
CWE-79
High
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-0906)
CVE-2007-0906
CWE-119
High
WordPress Plugin Advanced Dynamic Pricing for WooCommerce Multiple Vulnerabilities (4.1.5)
CVE-2022-43491
CWE-862
High
WordPress Plugin Advanced Dynamic Pricing for WooCommerce Cross-Site Request Forgery (4.1.3)
CVE-2022-38095
CWE-352
High
PHP Other Vulnerability (CVE-2007-0909)
CVE-2007-0909
-
High
PHP Other Vulnerability (CVE-2007-0911)
CVE-2007-0911
-
High
WordPress Plugin Accept Stripe Donation-AidWP Security Bypass (2.8)
-
CWE-862
High
WordPress Plugin Accept Stripe Donation-AidWP Cross-Site Request Forgery (3.1.5)
CVE-2022-47422
CWE-352
High
WordPress Plugin 301 Redirects-Easy Redirect Manager Cross-Site Request Forgery (2.72)
-
CWE-352
High
WordPress Plugin Youzify-BuddyPress Community, User Profile, Social Network & Membership for WordPress SQL Injection (1.1.9)
CVE-2022-1950
CWE-89
High
WordPress Plugin Youzify-BuddyPress Community, User Profile, Social Network & Membership for WordPress Cross-Site Scripting (1.0.6)
CVE-2021-24443
CWE-79
High
TYPO3 Other Vulnerability (CVE-2007-1081)
CVE-2007-1081
-
High
WordPress Plugin ALD-Dropshipping and Fulfillment for AliExpress and WooCommerce Multiple Vulnerabilities (1.0.21)
CVE-2022-46811
CWE-862
High
WordPress Plugin Youtube shortcode Cross-Site Scripting (1.8.5)
CVE-2023-23687
CWE-79
High
WordPress Plugin Youtube Channel Gallery Cross-Site Scripting (2.4)
CVE-2022-4783
CWE-79
High
WordPress Improper Input Validation Vulnerability (CVE-2007-1277)
CVE-2007-1277
CWE-20
High
WordPress Plugin YARPP-Yet Another Related Posts Cross-Site Scripting (5.30.2)
CVE-2022-4471
CWE-79
High
WordPress Plugin YaMaps for WordPress Cross-Site Scripting (0.6.25)
CVE-2023-0270
CWE-79
High
WordPress Plugin Wufoo Shortcode Cross-Site Scripting (1.47)
-
CWE-79
High
phpMyAdmin Other Vulnerability (CVE-2007-1325)
CVE-2007-1325
-
High
WordPress Plugin Wufoo Shortcode Cross-Site Scripting (1.50)
-
CWE-79
High
WordPress Plugin Wufoo Shortcode Cross-Site Scripting (1.51)
CVE-2022-4679
CWE-79
High
WordPress Plugin WPZOOM Portfolio Cross-Site Scripting (1.2.1)
CVE-2022-4789
CWE-79
High
PHP Other Vulnerability (CVE-2007-0905)
CVE-2007-0905
-
High
WordPress Plugin All in One SEO-Best WordPress SEO-Easily Improve SEO Rankings & Increase Traffic Cross-Site Request Forgery (4.2.3.1)
CVE-2022-38093
CWE-352
High
WordPress Plugin Contact Form X Cross-Site Scripting (2.4)
CVE-2022-25601
CWE-79
High
XOOPS Other Vulnerability (CVE-2007-0377)
CVE-2007-0377
-
High
WordPress Plugin Conditional Payments for WooCommerce Cross-Site Request Forgery (2.3.1)
CVE-2022-46805
CWE-352
High
WordPress Plugin Complianz-GDPR/CCPA Cookie Consent SQL Injection (6.3.3)
CVE-2022-3494
CWE-89
High
WordPress Plugin Complianz-GDPR/CCPA Cookie Consent Cross-Site Scripting (5.5.2)
CVE-2022-0193
CWE-79
High
WordPress Plugin Complianz-GDPR/CCPA Cookie Consent Cross-Site Scripting (6.4.1)
CVE-2023-1069
CWE-79
High
WordPress Plugin Community by PeepSo-Social Network, Membership, Registration, User Profiles Multiple Cross-Site Request Forgery Vulnerabilities (6.0.2.0)
CVE-2023-25967
CWE-352
High
WordPress Plugin Clio Grow Cross-Site Scripting (1.0)
CVE-2023-22683
CWE-79
High
WordPress Plugin Click to Call or Chat Buttons Cross-Site Scripting (1.4.0)
CVE-2023-25710
CWE-79
High
WordPress Plugin Circles Gallery Cross-Site Scripting (1.0.10)
CVE-2023-23881
CWE-79
High
WordPress Plugin Cart All In One For WooCommerce Cross-Site Request Forgery (1.1.10)
CVE-2022-46806
CWE-352
High
Joomla Other Vulnerability (CVE-2007-0374)
CVE-2007-0374
-
High
WordPress Plugin Campaign URL Builder Cross-Site Scripting (1.8.1)
CVE-2023-0538
CWE-79
High
WordPress Plugin All in One SEO-Best WordPress SEO-Easily Improve SEO Rankings & Increase Traffic Multiple Cross-Site Scripting Vulnerabilities (4.2.9)
CVE-2023-0586
CWE-79
High
PHP Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2007-0455)
CVE-2007-0455
CWE-120
High
WordPress Other Vulnerability (CVE-2007-0539)
CVE-2007-0539
-
High
WordPress Plugin Calendar Event Multi View Security Bypass (1.4.13)
CVE-2023-23814
CWE-287
High
WordPress Plugin Broadcast Live Video-Live Streaming:HTML5, WebRTC, HLS, RTSP, RTMP Remote Code Execution (5.5.15)
CVE-2023-25699
CWE-94
High
WordPress Plugin Bing Site Verification using Meta Tag Cross-Site Scripting (1.0)
CVE-2023-23875
CWE-79
High
PostgreSQL Other Vulnerability (CVE-2007-0555)
CVE-2007-0555
-
High
WordPress Plugin AutomatorWP-The most flexible and powerful no-code automation for WordPress Cross-Site Request Forgery (2.5.0)
CVE-2023-23992
CWE-352
High
Zenphoto Other Vulnerability (CVE-2007-0616)
CVE-2007-0616
-
High
WordPress Plugin AutomatorWP-The most flexible and powerful no-code automation for WordPress Cross-Site Request Forgery (2.5.8)
-
CWE-352
High
WordPress Plugin Archivist-Custom Archive Templates Multiple Vulnerabilities (1.7.4)
CVE-2023-25490
CWE-352
High
WordPress Plugin All in One SEO-Best WordPress SEO-Easily Improve SEO Rankings & Increase Traffic Multiple Vulnerabilities (4.1.5.2)
CVE-2021-25037
CWE-287
High
WordPress Plugin Shield Security-Smart Bot Blocking & Intrusion Prevention Security Cross-Site Scripting (13.0.5)
CVE-2022-0211
CWE-79
High
WordPress Plugin Site Reviews Cross-Site Scripting (5.17.2)
CVE-2021-24973
CWE-79
High
MySQL Other Vulnerability (CVE-2002-1375)
CVE-2002-1375
-
High
WordPress Plugin Malware Scanner Privilege Escalation (4.7.2)
CVE-2024-2172
CWE-269
High
«
1
...
137
138
139
...
313
»