Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Missing Update
This page lists
22224 vulnerabilities
in this category.
Critical: 1394
High: 12186
Medium: 7891
Low: 749
Information: 4
Vulnerability Name
CVE
CWE
Severity
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35414)
CVE-2021-35414
CWE-707
Critical
WebLogic CVE-2020-2884 Vulnerability (CVE-2020-2884)
CVE-2020-2884
-
Critical
WebLogic CVE-2020-2883 Vulnerability (CVE-2020-2883)
CVE-2020-2883
-
Critical
phpMyFAQ Improper Authentication Vulnerability (CVE-2023-0311)
CVE-2023-0311
CWE-287
Critical
PHP Integer Overflow or Wraparound Vulnerability (CVE-2015-8394)
CVE-2015-8394
CWE-190
Critical
Oracle HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-40438)
CVE-2021-40438
CWE-918
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-1283)
CVE-2016-1283
CWE-119
Critical
Oracle HTTP Server Improper Input Validation Vulnerability (CVE-2020-35169)
CVE-2020-35169
CWE-20
Critical
WP Plugin Contact Form 7 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-35489)
CVE-2020-35489
CWE-434
Critical
WebLogic Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-23305)
CVE-2022-23305
CWE-138
Critical
Oracle Database Server CVE-2015-4794 Vulnerability (CVE-2015-4794)
CVE-2015-4794
-
Critical
phpMyFAQ Authentication Bypass by Capture-replay Vulnerability (CVE-2023-1886)
CVE-2023-1886
CWE-294
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-10160)
CVE-2016-10160
CWE-119
Critical
MediaWiki Improper Authentication Vulnerability (CVE-2021-36128)
CVE-2021-36128
CWE-287
Critical
phpMyFAQ Improper Access Control Vulnerability (CVE-2023-2429)
CVE-2023-2429
CWE-284
Critical
MediaWiki Other Vulnerability (CVE-2021-36126)
CVE-2021-36126
-
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-34265)
CVE-2022-34265
CWE-138
Critical
Magento Incorrect Authorization Vulnerability (CVE-2022-34256)
CVE-2022-34256
CWE-863
Critical
Internet Information Services Permissions, Privileges, and Access Controls Vulnerability (CVE-1999-1011)
CVE-1999-1011
CWE-264
Critical
phpMyFAQ Weak Password Requirements Vulnerability (CVE-2023-1753)
CVE-2023-1753
CWE-521
Critical
Plone CMS Missing Authentication for Critical Function Vulnerability (CVE-2020-35190)
CVE-2020-35190
CWE-306
Critical
Oracle HTTP Server Other Vulnerability (CVE-2020-35168)
CVE-2020-35168
-
Critical
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-31126)
CVE-2023-31126
CWE-707
Critical
Oracle HTTP Server Other Vulnerability (CVE-2020-35167)
CVE-2020-35167
-
Critical
Oracle HTTP Server Other Vulnerability (CVE-2020-35166)
CVE-2020-35166
-
Critical
FluxBB Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-9574)
CVE-2014-9574
CWE-22
Critical
Oracle HTTP Server Use of Insufficiently Random Values Vulnerability (CVE-2020-35163)
CVE-2020-35163
CWE-330
Critical
Apache HTTP Server Other Vulnerability (CVE-1999-0926)
CVE-1999-0926
-
Critical
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-30838)
CVE-2023-30838
CWE-707
Critical
WebLogic Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-23457)
CVE-2022-23457
CWE-22
Critical
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-0332)
CVE-2022-0332
CWE-138
Critical
Internet Information Services Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-1999-0874)
CVE-1999-0874
CWE-119
Critical
Sqlite CVE-2015-5895 Vulnerability (CVE-2015-5895)
CVE-2015-5895
-
Critical
Django Improper Input Validation Vulnerability (CVE-2023-31047)
CVE-2023-31047
CWE-20
Critical
MySQL CVE-2016-0639 Vulnerability (CVE-2016-0639)
CVE-2016-0639
-
Critical
WebLogic CVE-2016-0638 Vulnerability (CVE-2016-0638)
CVE-2016-0638
-
Critical
phpMyFAQ Weak Password Requirements Vulnerability (CVE-2023-0307)
CVE-2023-0307
CWE-521
Critical
Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-21016)
CVE-2021-21016
CWE-138
Critical
Sqlite Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2020-35527)
CVE-2020-35527
CWE-119
Critical
SharePoint Resource Management Errors Vulnerability (CVE-2015-0064)
CVE-2015-0064
-
Critical
Chamilo Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2023-34960)
CVE-2023-34960
CWE-138
Critical
Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-33816)
CVE-2021-33816
CWE-94
Critical
PHP Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2022-31631)
CVE-2022-31631
CWE-138
Critical
ZenCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-8352)
CVE-2015-8352
CWE-22
Critical
PHP Out-of-bounds Write Vulnerability (CVE-2022-31627)
CVE-2022-31627
CWE-787
Critical
GeoServer CVE-2023-35042 Vulnerability (CVE-2023-35042)
CVE-2023-35042
-
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-9912)
CVE-2014-9912
CWE-119
Critical
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-9546)
CVE-2020-9546
CWE-502
Critical
Pega Infinity Other Vulnerability (CVE-2022-24083)
CVE-2022-24083
-
Critical
Django Use of Hard-coded Credentials Vulnerability (CVE-2016-9013)
CVE-2016-9013
CWE-798
Critical
PHP Other Vulnerability (CVE-1999-0238)
CVE-1999-0238
-
Critical
ownCloud Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2015-4718)
CVE-2015-4718
CWE-138
Critical
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8707)
CVE-2015-8707
CWE-200
Critical
phpMyFAQ Weak Password Requirements Vulnerability (CVE-2022-3754)
CVE-2022-3754
CWE-521
Critical
GibbonEdu Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-34598)
CVE-2023-34598
CWE-22
Critical
Beego Framework CVE-2022-31259 Vulnerability (CVE-2022-31259)
CVE-2022-31259
-
Critical
PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-31181)
CVE-2022-31181
CWE-138
Critical
PrestaShop Improper Authentication Vulnerability (CVE-2021-21308)
CVE-2021-21308
CWE-287
Critical
Citrix NetScaler Memory Disclosure 'Citrix Bleed 2' (CVE-2025-5777)
CVE-2025-5349
CWE-457
Critical
SharePoint Other Vulnerability (CVE-2015-0085)
CVE-2015-0085
-
Critical
SharePoint Resource Management Errors Vulnerability (CVE-2015-0086)
CVE-2015-0086
-
Critical
Internet Information Services Other Vulnerability (CVE-1999-0233)
CVE-1999-0233
-
Critical
Envoy Proxy Improper Encoding or Escaping of Output Vulnerability (CVE-2023-35941)
CVE-2023-35941
CWE-116
Critical
WebLogic Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-21347)
CVE-2021-21347
CWE-434
Critical
WebLogic CVE-2021-21350 Vulnerability (CVE-2021-21350)
CVE-2021-21350
-
Critical
Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2015-8103)
CVE-2015-8103
CWE-502
Critical
MediaWiki Credentials Management Errors Vulnerability (CVE-2015-8009)
CVE-2015-8009
-
Critical
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2108)
CVE-2016-2108
CWE-119
Critical
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-34944)
CVE-2023-34944
CWE-434
Critical
Pega Infinity Deserialization of Untrusted Data Vulnerability (CVE-2022-24082)
CVE-2022-24082
CWE-502
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-35042)
CVE-2021-35042
CWE-138
Critical
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-33362)
CVE-2023-33362
CWE-138
Critical
Dot CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-6754)
CVE-2020-6754
CWE-22
Critical
Internet Information Services Other Vulnerability (CVE-1999-0407)
CVE-1999-0407
-
Critical
Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-21018)
CVE-2021-21018
CWE-138
Critical
«
1
...
13
14
15
...
297
»
