🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Missing Update
This page lists
23101 vulnerabilities
in this category.
Critical: 1474
High: 12458
Medium: 8395
Low: 770
Information: 4
Vulnerability Name
CVE
CWE
Severity
Plone CMS CVE-2017-1000483 Vulnerability (CVE-2017-1000483)
CVE-2017-1000483
-
Medium
Plone CMS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-1000484)
CVE-2017-1000484
CWE-601
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-1000509)
CVE-2017-1000509
CWE-707
Medium
WebLogic CVE-2017-10063 Vulnerability (CVE-2017-10063)
CVE-2017-10063
-
Medium
WebLogic CVE-2017-10148 Vulnerability (CVE-2017-10148)
CVE-2017-10148
-
Medium
MySQL CVE-2017-10294 Vulnerability (CVE-2017-10294)
CVE-2017-10294
-
Medium
WebLogic Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-10152)
CVE-2017-10152
CWE-200
Medium
MySQL CVE-2017-10165 Vulnerability (CVE-2017-10165)
CVE-2017-10165
-
Medium
MySQL CVE-2017-10167 Vulnerability (CVE-2017-10167)
CVE-2017-10167
-
Medium
WebLogic CVE-2017-10178 Vulnerability (CVE-2017-10178)
CVE-2017-10178
-
Medium
MySQL CVE-2017-10227 Vulnerability (CVE-2017-10227)
CVE-2017-10227
-
Medium
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-10268)
CVE-2017-10268
CWE-200
Medium
Oracle JRE CVE-2017-10274 Vulnerability (CVE-2017-10274)
CVE-2017-10274
-
Medium
MySQL CVE-2017-10276 Vulnerability (CVE-2017-10276)
CVE-2017-10276
-
Medium
MySQL CVE-2017-10279 Vulnerability (CVE-2017-10279)
CVE-2017-10279
-
Medium
Oracle JRE CVE-2017-10281 Vulnerability (CVE-2017-10281)
CVE-2017-10281
-
Medium
MySQL CVE-2017-10283 Vulnerability (CVE-2017-10283)
CVE-2017-10283
-
Medium
MySQL CVE-2017-10284 Vulnerability (CVE-2017-10284)
CVE-2017-10284
-
Medium
MySQL CVE-2017-10286 Vulnerability (CVE-2017-10286)
CVE-2017-10286
-
Medium
Oracle JRE CVE-2017-10293 Vulnerability (CVE-2017-10293)
CVE-2017-10293
-
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2017-12171)
CVE-2017-12171
CWE-20
Medium
Jboss EAP Incorrect Authorization Vulnerability (CVE-2017-12196)
CVE-2017-12196
CWE-863
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-1000223)
CVE-2017-1000223
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-17094)
CVE-2017-17094
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-15728)
CVE-2017-15728
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-15809)
CVE-2017-15809
CWE-707
Medium
Phusion Passenger Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-16355)
CVE-2017-16355
CWE-200
Medium
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-16633)
CVE-2017-16633
CWE-200
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-16781)
CVE-2017-16781
CWE-707
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-16856)
CVE-2017-16856
CWE-707
Medium
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-16862)
CVE-2017-16862
CWE-352
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-16863)
CVE-2017-16863
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-16864)
CVE-2017-16864
CWE-707
Medium
Atlassian Jira Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-16865)
CVE-2017-16865
CWE-918
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-16893)
CVE-2017-16893
CWE-138
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-17092)
CVE-2017-17092
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-17093)
CVE-2017-17093
CWE-707
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-17383)
CVE-2017-17383
CWE-707
Medium
WebLogic Improper Input Validation Vulnerability (CVE-2017-15707)
CVE-2017-15707
CWE-20
Medium
Pega Infinity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-17478)
CVE-2017-17478
CWE-707
Medium
Ruby Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2017-17742)
CVE-2017-17742
CWE-113
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-17775)
CVE-2017-17775
CWE-707
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-17822)
CVE-2017-17822
CWE-138
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-17823)
CVE-2017-17823
CWE-138
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-17824)
CVE-2017-17824
CWE-138
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-17825)
CVE-2017-17825
CWE-707
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-17826)
CVE-2017-17826
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-17868)
CVE-2017-17868
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-17971)
CVE-2017-17971
CWE-707
Medium
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-18033)
CVE-2017-18033
CWE-352
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-18039)
CVE-2017-18039
CWE-707
Medium
silverstripeCMS Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2017-18049)
CVE-2017-18049
CWE-138
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-15727)
CVE-2017-15727
CWE-707
Medium
Apache Tomcat Improperly Implemented Security Check for Standard Vulnerability (CVE-2017-15706)
CVE-2017-15706
CWE-358
Medium
Undertow Incorrect Authorization Vulnerability (CVE-2017-12196)
CVE-2017-12196
CWE-863
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14498)
CVE-2017-14498
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12645)
CVE-2017-12645
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12646)
CVE-2017-12646
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12647)
CVE-2017-12647
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12648)
CVE-2017-12648
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12649)
CVE-2017-12649
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12794)
CVE-2017-12794
CWE-707
Medium
silverstripeCMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-12849)
CVE-2017-12849
CWE-200
Medium
Sqlite Improper Input Validation Vulnerability (CVE-2017-13685)
CVE-2017-13685
CWE-20
Medium
CrushFTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14036)
CVE-2017-14036
CWE-707
Medium
CrushFTP Server Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2017-14037)
CVE-2017-14037
CWE-707
Medium
CrushFTP Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-14038)
CVE-2017-14038
CWE-601
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14239)
CVE-2017-14239
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14241)
CVE-2017-14241
CWE-707
Medium
SugarCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14510)
CVE-2017-14510
CWE-707
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-15362)
CVE-2017-15362
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14594)
CVE-2017-14594
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14618)
CVE-2017-14618
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14619)
CVE-2017-14619
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14718)
CVE-2017-14718
CWE-707
Medium
«
1
...
204
205
206
...
309
»
